Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft
File:                     hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json)
Hash identifier:          ABqq9SMWHKVpSocPg2rKKifJucwVV5R5V6lhQzegFEw=
Subject key identifier:   90:A0:0D:B1:E9:89:D6:9B:2A:07:B1:0C:29:73:BB:FB:B5:A8:15:73
Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0
Certificate issuer:       /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0
Certificate serial:       0163
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft
Manifest number:          015B
Signing time:             Fri 17 Jul 2026 06:10:44 +0000
Manifest this update:     Fri 17 Jul 2026 06:10:44 +0000
Manifest next update:     Fri 24 Jul 2026 06:10:44 +0000
Files and hashes:         1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: awSkMfgArEhpjxueEU0F4QC3LXelaYc1Oc89cL3fZk4=)
                          2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: tcJP6ckIisiXaSRaPvtWnl6KwRGfZck/uk3eudyqJEo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl
                          rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:10:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 355 (0x163)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0
        Validity
            Not Before: Jul 17 06:10:44 2026 GMT
            Not After : Jul 24 06:10:44 2026 GMT
        Subject: CN=6a59c764-3565
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:9c:63:43:10:09:53:13:86:f6:15:61:5a:ec:
                    b5:a7:32:55:c3:2d:23:5a:25:9b:34:1c:ea:ce:76:
                    60:3f:89:d8:af:33:d7:18:be:5e:3a:6f:df:9a:57:
                    23:78:d9:46:94:04:63:5a:a6:f9:cc:89:6c:4b:04:
                    6c:2a:de:97:6b:20:35:d2:0e:36:dc:d5:58:71:f6:
                    b8:c8:9f:8e:86:bf:2b:ce:cf:83:49:a2:93:23:ba:
                    53:5d:1b:40:03:51:e1:67:9b:52:b3:66:82:0b:7d:
                    ce:4f:36:a2:77:c7:44:be:46:fc:0c:71:38:92:c2:
                    64:27:89:15:b9:fd:e8:00:ad:6b:cb:f0:c0:9a:09:
                    f6:a1:e7:be:87:ca:bb:02:c9:5d:fe:30:5b:b6:74:
                    03:70:66:33:68:ce:cb:61:11:81:32:3b:63:4f:f2:
                    d5:7f:33:46:17:7a:fc:19:b8:af:0b:96:79:07:d3:
                    e1:0b:0a:5f:c3:14:bd:fd:54:ce:05:d3:b2:fc:a0:
                    a5:f7:95:da:27:ee:50:9d:3d:30:96:41:c5:1d:7f:
                    bb:be:26:e5:19:e1:92:f4:66:9d:92:4e:ca:cb:50:
                    e8:e0:10:f1:e2:98:88:0a:d2:36:78:da:8e:c4:0b:
                    6f:0d:2c:22:ea:9f:84:81:0e:55:ae:dd:90:3e:b6:
                    fa:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:A0:0D:B1:E9:89:D6:9B:2A:07:B1:0C:29:73:BB:FB:B5:A8:15:73
            X509v3 Authority Key Identifier:
                keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:66:8d:d4:23:31:ca:cb:09:f4:e7:f9:40:52:30:a4:91:b1:
         75:55:dc:b5:4c:2b:bf:bd:e9:69:44:dc:70:7a:cf:89:7b:48:
         79:f9:11:7c:33:ad:9d:3b:ed:a8:0b:c9:ed:4c:44:3a:81:6f:
         77:3b:63:02:6a:65:41:9b:b4:72:b0:2e:ed:32:17:ca:4c:86:
         5b:2f:85:ca:99:5a:fb:ba:61:ee:ca:40:d3:ae:75:cb:ca:f1:
         6c:73:6e:b6:df:ee:17:fb:57:5e:2d:56:6c:07:b2:3a:03:fb:
         fb:a4:b1:45:12:10:d7:c5:28:76:f1:b6:79:df:79:f3:e2:3e:
         90:4f:f9:d8:39:ba:a3:70:1c:78:e1:34:33:a3:75:e1:f4:a3:
         e0:17:d1:c5:2b:b7:c5:40:b9:6d:d2:50:03:3f:a5:a5:a6:b0:
         12:09:06:19:d4:a9:b4:24:8b:16:3b:fd:77:2e:68:ca:5b:8f:
         43:1a:5b:14:2a:7e:a0:f1:df:49:1c:bb:80:62:8b:74:2c:d5:
         5e:17:11:f4:dc:50:6a:9e:1d:a7:0b:48:45:a0:4a:92:23:b4:
         6a:4f:51:20:4e:14:c2:8e:d5:50:a6:e0:99:6c:54:72:73:1e:
         3d:29:37:99:db:ba:97:5a:2c:e2:94:92:67:8e:36:d9:81:66:
         4b:92:2b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:44 2026 by rpki-client