Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft
File:                     phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json)
Hash identifier:          Aw2s9G9NgKuC6/WLodBRmNPzaRRQRNTvG4m6lKd1uEI=
Subject key identifier:   6D:2E:6C:00:D1:12:1D:6D:E4:A7:FE:3F:3C:89:DF:9B:CB:A4:F0:BA
Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D
Certificate issuer:       /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D
Certificate serial:       024E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft
Manifest number:          0245
Signing time:             Fri 17 Jul 2026 03:21:52 +0000
Manifest this update:     Fri 17 Jul 2026 03:21:51 +0000
Manifest next update:     Fri 24 Jul 2026 03:21:51 +0000
Files and hashes:         1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: zcrymPMOH+A38CVBpMqfAhTU+7HdZgq4Q/k9s9BfzpE=)
                          2: 939530627B6311F0BF7B4936C4F9AE02.roa (hash: ZFhHCFeUOh6APH456On8FdyIkUmcfvvz5IW62S7F69c=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl
                          rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 03:21:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 590 (0x24e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D
        Validity
            Not Before: Jul 17 03:21:51 2026 GMT
            Not After : Jul 24 03:21:51 2026 GMT
        Subject: CN=6a599fcf-c504
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:cf:ad:fa:86:ed:3b:96:da:d4:51:07:de:6e:
                    c4:03:a0:7c:31:ac:11:15:86:2c:60:13:15:95:b3:
                    f0:65:86:c2:40:32:1c:f0:97:ec:ce:9c:98:f8:ec:
                    56:b5:57:be:30:76:63:ef:1a:e1:d4:95:a9:ef:92:
                    60:f1:1d:ef:af:69:47:58:12:e6:74:f2:89:5a:da:
                    e9:74:c9:7c:99:f0:9c:49:18:81:f7:95:47:58:1e:
                    4a:f2:43:22:84:f3:af:48:24:13:07:40:74:53:5a:
                    3e:f7:1c:c1:bd:18:fb:18:6b:2b:86:51:99:3e:3c:
                    76:ca:61:2b:7a:2a:ff:bb:e2:1e:36:28:cf:da:9b:
                    ee:c9:f3:78:10:4d:ec:c1:4f:ae:0f:91:0a:dc:5f:
                    f6:07:89:2f:82:8f:2b:0f:49:70:d5:fd:3c:bb:0f:
                    e5:be:fe:8b:2e:09:96:a8:e1:bb:b7:a8:30:fc:df:
                    ad:94:85:fc:94:9f:7d:8b:bc:31:a9:9e:6b:74:de:
                    8a:63:06:a2:75:97:8f:d0:b3:1e:18:8d:e0:08:82:
                    2d:36:93:53:9e:86:71:35:10:68:df:e0:57:26:4e:
                    f2:55:11:ab:7a:45:bf:0e:86:94:b1:ea:98:84:b6:
                    a1:3a:7d:6a:5b:af:b3:ce:0d:7e:df:2c:c6:62:0b:
                    0e:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:2E:6C:00:D1:12:1D:6D:E4:A7:FE:3F:3C:89:DF:9B:CB:A4:F0:BA
            X509v3 Authority Key Identifier:
                keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:08:3c:10:49:ff:02:81:81:83:7a:78:93:03:7b:df:94:a5:
         a0:e1:83:34:d7:28:6f:83:9c:8d:b9:82:14:09:01:59:58:69:
         22:bb:16:c9:56:e6:98:a0:61:fe:b2:2d:28:50:cf:2a:dd:1b:
         f3:f2:7f:2f:dc:36:a5:32:c9:b5:20:dd:02:da:df:e7:b0:37:
         aa:49:5a:33:e3:b7:d4:2f:f7:29:f2:d0:f9:76:c5:fa:48:97:
         64:a1:14:bf:94:85:46:88:15:da:76:c7:97:3f:ae:3e:4e:6e:
         9b:75:78:41:87:65:61:9c:2b:ad:0b:a3:13:94:9c:4a:b6:61:
         bc:03:e7:85:44:b7:9d:2c:d6:4d:3b:5d:d0:11:79:1a:86:3b:
         61:00:0b:15:6e:ec:d2:32:ed:a6:2f:ad:3c:ee:8c:3c:70:00:
         a2:3f:38:bb:c0:16:23:01:bc:41:f8:c6:84:dd:9f:de:e9:1e:
         9e:58:f9:d9:d7:94:e2:c8:87:52:53:43:b9:ee:bb:34:2d:9f:
         cd:dc:52:c1:68:8e:f2:f8:e2:53:45:8f:a4:ac:d5:6a:98:b4:
         d0:27:b2:11:49:aa:69:f4:5d:11:5f:39:8e:73:22:48:f7:e4:
         90:ec:98:59:27:97:6b:11:d4:9f:6e:06:89:5a:43:a3:f2:6c:
         0d:b6:70:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:39 2026 by rpki-client