Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft
File:                     bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft (raw, json)
Hash identifier:          d8nIdAQ94Tc09qzbnwbv0PBUuLNKy0qOc4fhj/FZ3Cw=
Subject key identifier:   DF:6A:E9:74:E0:FB:B3:2A:65:D9:40:CA:A8:51:1B:D7:DB:50:74:4C
Authority key identifier: 6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4
Certificate issuer:       /CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4
Certificate serial:       031C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft
Manifest number:          0315
Signing time:             Fri 17 Jul 2026 01:49:24 +0000
Manifest this update:     Fri 17 Jul 2026 01:49:24 +0000
Manifest next update:     Fri 24 Jul 2026 01:49:24 +0000
Files and hashes:         1: bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl (hash: s8Xm0ATcQQgRlN6+phsNfzMZ8fz3zFvFUjqA3CQ65nw=)
                          2: FB1F8158242A11ED9547B486C4F9AE02.roa (hash: qOTgX26Zanjyv6Lj/0iXY/YLtNoeVOf7TQ8Rw4nq2og=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl
                          rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:49:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 796 (0x31c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C95AA, serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4
        Validity
            Not Before: Jul 17 01:49:24 2026 GMT
            Not After : Jul 24 01:49:24 2026 GMT
        Subject: CN=6a598a24-3451
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:73:65:92:eb:ad:bc:47:74:30:27:58:d7:b2:
                    77:c2:aa:11:ae:00:be:21:30:43:b3:e3:ee:ab:dd:
                    84:6d:76:1b:22:2b:20:69:c3:42:f7:61:bc:00:66:
                    2e:e3:7a:83:a0:32:b4:0c:49:d0:4b:70:38:18:f7:
                    c5:64:48:4c:51:43:1c:94:4a:8e:69:a1:ea:fe:58:
                    a5:d5:8f:3f:aa:24:6c:9c:4a:05:c4:d7:1b:2f:df:
                    63:1f:04:34:40:b4:11:90:0a:d4:a8:6e:f5:3c:d2:
                    80:0f:24:cc:9b:6b:33:8c:98:73:a6:96:66:93:f3:
                    c0:79:4e:30:7d:8b:98:86:33:1c:93:9d:6c:62:e5:
                    2c:68:4f:11:04:21:3e:fa:cd:05:71:42:6d:bc:73:
                    18:2e:e6:2b:73:1c:d4:cc:76:c9:96:24:ac:55:4d:
                    76:de:9a:1f:a8:f7:69:03:6c:69:ca:f8:dc:b1:83:
                    c4:8b:f8:2a:a1:cb:13:f9:18:f2:a8:47:72:fa:32:
                    64:b2:89:0a:e5:27:f7:59:7c:eb:f8:77:26:4a:3c:
                    6e:ad:ae:da:cd:12:cf:ee:03:e3:ed:73:1d:40:f5:
                    8c:04:f2:bd:1f:f1:35:db:35:36:10:72:17:0a:29:
                    5b:dc:d9:ac:19:32:de:1f:ab:09:3a:21:d8:c7:f7:
                    68:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:6A:E9:74:E0:FB:B3:2A:65:D9:40:CA:A8:51:1B:D7:DB:50:74:4C
            X509v3 Authority Key Identifier:
                keyid:6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:40:58:1c:7d:13:93:74:0c:29:e0:df:8e:d1:55:8c:21:b1:
         75:03:cd:76:42:4f:c0:d2:7a:f9:fd:dd:12:35:de:0c:39:3b:
         89:b3:c3:da:d4:22:9f:c0:89:a3:ad:73:1e:5f:57:c2:ac:43:
         19:e8:02:5c:aa:63:e0:64:f2:62:49:5c:ff:ed:a1:be:4f:da:
         bf:e6:3b:25:13:de:5a:00:6e:9c:51:c0:44:79:87:b5:fb:51:
         85:6e:b0:4b:f0:f8:c9:65:a2:6c:66:a1:8d:44:80:0c:6f:ac:
         8a:0d:9e:6e:c7:77:6f:2a:e7:29:86:33:d1:24:9a:7a:80:ff:
         2b:2e:de:e4:54:19:fd:c9:9a:44:c8:e9:d3:75:5f:44:a1:51:
         8f:a2:05:d7:b7:eb:35:db:0f:30:f7:a3:a5:f0:c6:75:44:7c:
         e8:1b:84:9d:9a:00:ed:f6:6e:83:43:51:af:c0:46:be:ae:f2:
         67:31:af:f6:71:e7:88:69:60:62:a9:62:79:f8:6d:1e:ee:b9:
         23:49:da:3f:39:05:2d:4f:9e:e3:13:ba:7c:3e:b6:79:77:94:
         96:e6:66:7c:bd:51:a3:e8:eb:62:74:7e:5d:9c:fb:41:4e:8e:
         6c:5d:0e:9b:af:96:90:b6:9d:a1:a2:c6:7b:4c:28:b6:82:d2:
         ab:ef:7e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:32:03 2026 by rpki-client