Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft
File:                     MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json)
Hash identifier:          BGRKFGRNYSBAGBDj8OhM2h2N3GVVu4KKtifylrPqYJE=
Subject key identifier:   B5:9A:E3:6B:75:DC:ED:75:90:10:A3:3C:CD:B5:29:26:F1:9F:ED:E1
Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62
Certificate issuer:       /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462
Certificate serial:       0198
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft
Manifest number:          0192
Signing time:             Thu 16 Jul 2026 15:45:14 +0000
Manifest this update:     Thu 16 Jul 2026 15:45:14 +0000
Manifest next update:     Thu 23 Jul 2026 15:45:14 +0000
Files and hashes:         1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: cO1NRHmas0TMNco36FjYN55q+5Bkpp2i4iuzkjFGqg0=)
                          2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: CoBKPTaGKggKkbkoCo2Dk6F6z5lZTZfgxUsgOyih/d4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl
                          rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:45:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 408 (0x198)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462
        Validity
            Not Before: Jul 16 15:45:14 2026 GMT
            Not After : Jul 23 15:45:14 2026 GMT
        Subject: CN=6a58fc8a-96c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:b1:09:46:03:ac:a8:a9:e2:79:ce:d5:06:c7:
                    93:1f:e7:21:f5:35:a4:da:21:f1:80:bf:93:14:3d:
                    25:09:1b:cc:13:2e:13:34:68:e4:3d:01:b0:db:a9:
                    70:9c:89:ba:68:ba:9f:1c:86:6e:b5:77:84:a3:63:
                    1f:37:c5:30:d8:85:25:07:57:96:93:91:80:92:9c:
                    8b:67:56:2d:eb:ba:6f:9e:5e:ad:f4:02:e5:45:cd:
                    93:1a:49:eb:ad:a2:b5:39:b7:26:d7:d1:70:f0:dd:
                    4f:42:28:31:b1:d6:75:62:4f:fe:af:e0:c1:94:42:
                    56:c7:c9:b0:fe:7a:e4:ae:c3:29:cb:ac:1d:7f:8d:
                    be:6b:b9:73:dd:f8:b2:71:9b:bf:69:10:be:73:1b:
                    53:5d:07:5f:69:66:a3:21:8e:3b:6c:e0:26:da:61:
                    1f:e8:c1:fa:a2:b8:19:6f:83:d8:a3:e2:62:e7:32:
                    7c:8a:24:c5:76:db:a8:f8:ae:d0:83:c6:eb:27:cc:
                    ac:d2:b0:8d:80:6b:34:0b:ec:c4:3d:65:af:ec:c7:
                    f1:43:cc:f1:0c:ea:4b:a9:c2:f7:a4:40:c1:e6:0a:
                    b1:a6:57:b0:7b:fe:76:74:1d:47:6c:1a:37:5d:f2:
                    87:09:f9:bf:0c:f8:c7:3f:ea:74:01:62:91:ce:44:
                    1e:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:9A:E3:6B:75:DC:ED:75:90:10:A3:3C:CD:B5:29:26:F1:9F:ED:E1
            X509v3 Authority Key Identifier:
                keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:4b:5a:d1:2f:6f:d4:1d:25:d4:f2:d6:ca:20:32:ee:7f:ba:
         9d:e4:47:38:52:b6:7a:d0:ad:88:32:37:3d:d8:96:71:76:93:
         35:1a:6d:b6:9d:14:3b:70:cf:2a:06:d2:87:bd:55:5a:09:30:
         aa:c4:f5:02:e5:8d:0a:10:24:f0:6b:3a:58:15:8c:84:94:91:
         9c:46:9c:be:b3:55:09:cd:7e:2a:3c:24:e9:a7:a6:c9:a8:3d:
         3f:37:bf:68:47:24:d2:5c:61:fd:f3:a5:5b:89:77:dd:8d:53:
         1d:05:cd:cd:a7:be:4e:8a:31:eb:ab:49:6c:f5:3a:52:e8:a3:
         d2:7d:52:d0:df:13:6e:db:3a:e6:3e:f8:d2:8a:bc:20:6d:e8:
         ae:9a:d0:11:60:98:fd:b4:db:a2:a7:31:80:18:4e:72:d5:7e:
         58:df:b0:80:94:31:09:d8:f9:3f:68:b2:87:79:ab:23:07:91:
         1e:76:26:eb:5f:92:2c:3e:d9:13:1a:92:2b:2f:ba:e3:43:b0:
         96:ba:59:f3:55:c4:1e:52:fd:12:c9:be:fc:8b:5a:67:c7:c0:
         28:d1:42:f6:bc:ad:9d:7f:b8:17:92:97:c1:bf:29:d1:ff:c5:
         de:28:39:e3:c7:7e:b8:bf:26:f6:a1:8a:59:f9:da:f6:86:76:
         17:b6:40:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:09 2026 by rpki-client