Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
File:                     bhQyTH_rm8iZLUocPkWehqPxjuE.mft (raw, json)
Hash identifier:          r2pRN6bokEAuI4/dElYMH6Xes5C5DiMDGn/tImYSRlA=
Subject key identifier:   E3:72:2F:B3:AC:02:C2:92:6D:34:4C:3C:6B:6B:FA:CD:62:C0:6F:D1
Authority key identifier: 6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1
Certificate issuer:       /CN=A91CDC08/serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1
Certificate serial:       53
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
Manifest number:          51
Signing time:             Sun 05 Jul 2026 09:00:54 +0000
Manifest this update:     Sun 05 Jul 2026 09:00:54 +0000
Manifest next update:     Sun 12 Jul 2026 09:00:54 +0000
Files and hashes:         1: bhQyTH_rm8iZLUocPkWehqPxjuE.crl (hash: 5NEhkiiEgFMHlqosmKkK9bn8EIkDCJcPSa3vZauDnXY=)
                          2: 2508F7B8001611F18F2C9137416F56BC.roa (hash: kk4e8+otr3vEuo88eNfz1XFH7SDaG9Z2aCSEpZsnIgI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.crl
                          rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 09:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 83 (0x53)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CDC08, serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1
        Validity
            Not Before: Jul  5 09:00:54 2026 GMT
            Not After : Jul 12 09:00:54 2026 GMT
        Subject: CN=6a4a1d46-81ba
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:70:c5:7d:4b:13:89:5d:47:56:36:fb:9c:6f:
                    1e:c7:4b:d3:d5:67:29:49:93:ff:eb:a3:00:45:ff:
                    7b:f0:86:5e:9a:ea:a7:d9:f0:0c:d1:e1:75:cd:bc:
                    cd:cd:16:37:7a:51:ba:9a:03:e2:70:8f:2e:20:22:
                    ba:63:96:b3:00:14:7f:80:dc:79:bd:64:ba:ec:31:
                    22:a9:ac:21:34:ac:41:5e:66:1d:7f:45:c8:3f:be:
                    69:5a:f6:72:7b:bd:71:f1:b7:cf:62:85:1c:b6:1e:
                    5f:49:e3:63:78:79:ff:e4:77:d3:64:19:f3:50:52:
                    6c:7a:65:ac:67:1b:bf:9f:42:9e:0e:4c:08:3e:71:
                    d0:06:be:cb:0c:8d:ce:32:09:ec:bc:be:29:b2:9a:
                    b0:5d:23:07:89:eb:60:49:d2:47:83:24:7b:e3:5c:
                    c0:33:cd:2c:57:9b:5a:80:3b:80:ea:c8:c7:6d:42:
                    21:d7:0d:35:18:d1:82:79:14:55:bf:34:47:ae:89:
                    0a:4f:6a:14:fa:2a:44:cf:9f:8b:bc:8c:67:55:b7:
                    32:7e:16:fa:ec:f3:ba:11:c9:4a:9d:f5:0a:16:63:
                    60:f7:f1:7c:1a:d1:32:90:92:74:de:64:7a:0a:0d:
                    f1:29:48:79:89:af:3e:a5:ba:ed:fc:e8:71:73:64:
                    0d:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:72:2F:B3:AC:02:C2:92:6D:34:4C:3C:6B:6B:FA:CD:62:C0:6F:D1
            X509v3 Authority Key Identifier:
                keyid:6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:b3:ba:2f:e6:aa:a0:4b:cd:d1:72:66:02:af:5f:6b:f7:9e:
         67:dd:5e:73:02:91:27:11:0c:2b:39:35:28:d6:05:50:0d:04:
         54:6d:9a:99:73:22:0b:35:a3:78:89:59:78:6e:9d:e4:67:89:
         7f:20:7e:5d:48:d1:44:32:39:1e:9a:ed:aa:15:43:29:86:d2:
         66:e0:4f:e8:0e:87:9f:f6:5c:10:76:20:a3:a8:fb:0f:34:25:
         39:cc:13:72:5c:6a:52:85:d6:46:ac:49:f9:5c:db:9c:4e:58:
         fe:e8:47:71:ca:3f:5d:eb:a0:cf:5d:61:22:f4:1f:bb:68:6c:
         3a:a2:54:95:d9:40:95:c2:a3:d5:48:e4:e3:20:75:e4:d1:df:
         74:98:78:6d:d0:42:00:19:13:1c:35:bc:f9:36:a4:53:65:dd:
         f4:8a:ee:c2:7d:39:8c:5a:dd:8d:c9:80:fc:dc:b3:1c:6d:b8:
         f5:36:17:df:0b:97:ca:8d:ac:b1:a0:34:97:e9:cb:c1:d9:af:
         e4:70:dd:ba:f2:0d:3b:9d:b8:26:cf:bf:6a:52:87:b1:58:31:
         27:2b:8b:e6:44:40:ad:00:0e:ca:ca:22:ae:75:a8:73:4d:f6:
         da:d4:b4:b2:b3:ec:80:ff:2c:23:30:08:78:74:3e:72:97:7e:
         08:0b:14:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 12:34:37 2026 by rpki-client