Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
File:                     bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json)
Hash identifier:          o+4MQN8ruja4Vr3lPclbdr9F+n8pIremGhCqlLTDbmU=
Subject key identifier:   F9:76:18:4F:30:B2:A2:DE:23:9A:72:08:FE:FD:BB:17:C5:22:F9:35
Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02
Certificate issuer:       /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002
Certificate serial:       049E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
Manifest number:          045E
Signing time:             Wed 15 Jul 2026 00:58:02 +0000
Manifest this update:     Wed 15 Jul 2026 00:58:02 +0000
Manifest next update:     Wed 22 Jul 2026 00:58:02 +0000
Files and hashes:         1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: znjsfAcbUZNshLijzfntVsxEoS/PaAhE6dP7Uk+BJq4=)
                          2: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: dPxIUNEqYuFtJskM6HAN9FGSFnQOEAtn06dnZBLnvG8=)
                          3: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: tBey+DH64+Kn32UVWimcmMh2WoGFqT18gD06i2GEZsU=)
                          4: AD17704445F611EE97DF317CC4F9AE02.roa (hash: /vhmP+Y6Yb84j9vhzg0Zbk6HCi7aZS+Km8vmqSzsrmM=)
                          5: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: r+lrx7WpAI1BilPAcnEksEUaCu2KnCEQLhymAPB2i1s=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl
                          rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 22 Jul 2026 00:58:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1182 (0x49e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002
        Validity
            Not Before: Jul 15 00:58:02 2026 GMT
            Not After : Jul 22 00:58:02 2026 GMT
        Subject: CN=6a56db1a-c49c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:45:3d:30:a9:94:0b:55:4e:98:1b:41:33:92:
                    7f:81:b5:c5:6e:3b:33:9a:66:a3:65:5b:7c:b6:c4:
                    67:40:33:26:6a:84:52:ab:85:7c:3f:72:22:0c:9d:
                    7c:8a:a6:34:3d:ab:a3:00:b0:b1:cb:ca:fb:5e:cd:
                    7a:cf:b2:88:84:bd:70:59:7a:b7:41:2e:9a:4a:b0:
                    e0:0d:72:fd:76:1b:25:54:15:1a:4d:24:52:6f:5f:
                    c5:79:82:0a:d9:59:c9:ec:a1:f0:a3:c3:9a:fe:86:
                    bd:a1:4d:4d:97:80:bb:d3:12:6f:b3:9f:55:42:b0:
                    f8:1e:a9:23:5d:03:33:9c:93:37:c3:bf:ca:df:b6:
                    dd:d5:0b:09:a3:78:af:0f:c7:c2:a4:9e:ab:cc:be:
                    db:cd:3c:1e:71:b0:b9:8a:70:f0:b3:0e:16:b0:07:
                    c4:a8:f1:b5:de:19:0c:b6:44:ce:e5:1d:46:32:8e:
                    00:8b:b1:f2:04:e1:b8:48:99:72:f8:2e:f8:76:00:
                    7c:83:35:03:f9:98:b0:f8:31:78:b5:b3:14:47:20:
                    95:27:6f:6b:94:ec:16:bd:be:2a:6c:b1:6a:c4:95:
                    dc:f1:f1:a6:09:f5:b6:7b:9c:70:b7:e6:ee:89:62:
                    58:ec:e9:fe:1b:4b:b6:4c:db:0b:56:df:29:88:df:
                    fb:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F9:76:18:4F:30:B2:A2:DE:23:9A:72:08:FE:FD:BB:17:C5:22:F9:35
            X509v3 Authority Key Identifier:
                keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:fd:ca:58:2a:a6:94:2c:82:10:f5:ef:99:e3:28:6f:a1:d7:
         39:11:27:cb:47:c2:4e:9f:3b:14:2c:f5:d1:6c:a2:a4:f1:de:
         62:0d:d2:0b:18:23:f4:9c:e3:aa:ad:bf:7f:74:43:32:77:5e:
         35:27:a4:38:b6:da:06:67:c2:a4:e4:36:a0:84:96:98:79:52:
         20:f3:72:92:0d:65:63:12:d6:a8:07:bf:25:86:05:6a:73:f5:
         59:ee:23:70:8f:81:4a:11:bf:a7:24:0d:9f:57:6c:4d:2b:be:
         23:28:8e:67:e4:cc:ab:54:49:17:1b:a9:4c:ae:04:08:6a:30:
         96:81:48:02:6e:de:92:24:7e:4f:ba:f8:51:34:97:31:ed:6d:
         ce:25:2a:08:b7:c3:f7:23:67:33:3e:7b:5d:46:44:cf:e5:10:
         45:f7:5a:43:df:b6:10:39:14:16:d8:d9:4a:d1:02:7a:f3:23:
         70:92:cd:ee:b0:c6:85:69:fe:a4:a3:ac:41:5b:6b:87:e7:33:
         05:8c:1e:4d:43:6c:30:d5:cd:22:cf:11:d4:bb:b2:d6:15:14:
         f7:c4:67:1d:af:b8:0c:88:6f:06:d8:7c:28:34:4c:02:2b:5a:
         5a:b5:31:cc:46:bf:46:1b:9b:a0:d0:d5:d1:f9:c1:59:a4:94:
         4d:60:82:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 16 15:49:26 2026 by rpki-client