Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft
File:                     5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft (raw, json)
Hash identifier:          EKwLxVtKNUiOiFN2KLSU029urc6rDM+K2pXMjI8mifE=
Subject key identifier:   82:D4:0F:E0:DB:8B:53:0C:2F:39:BD:7C:B3:DD:AB:0B:CA:91:52:74
Authority key identifier: E6:4E:02:17:74:35:AE:F1:CB:FD:62:4E:26:67:E6:96:9A:AF:AA:FF
Certificate issuer:       /CN=A91D60CF/serialNumber=E64E02177435AEF1CBFD624E2667E6969AAFAAFF
Certificate serial:       017F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft
Manifest number:          017F
Signing time:             Sun 05 Jul 2026 05:07:29 +0000
Manifest this update:     Sun 05 Jul 2026 05:07:28 +0000
Manifest next update:     Sun 12 Jul 2026 05:07:28 +0000
Files and hashes:         1: 5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl (hash: ngjLAK7d1Qf/tFBaSTRSpcK+vOOemC0XsT3HgiPiFd8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl
                          rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:07:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 383 (0x17f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D60CF, serialNumber=E64E02177435AEF1CBFD624E2667E6969AAFAAFF
        Validity
            Not Before: Jul  5 05:07:28 2026 GMT
            Not After : Jul 12 05:07:28 2026 GMT
        Subject: CN=6a49e691-6dc8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:cc:8f:fb:64:57:43:f3:70:1a:e5:19:e5:b7:
                    c4:16:af:c0:a2:ef:0a:6d:50:bf:c5:f6:41:15:6c:
                    e5:69:d8:86:4c:cd:2e:61:c3:07:5c:33:af:af:4e:
                    7c:69:61:84:2f:ec:29:02:c6:0d:03:20:89:7a:96:
                    cd:e4:60:ff:a4:2a:1b:2a:b9:bf:cf:2f:45:8a:7f:
                    11:3e:88:9e:20:97:d5:a4:97:02:65:a5:57:1e:4a:
                    fb:c7:47:a0:78:77:48:61:c0:65:d6:46:78:c1:69:
                    cf:1f:cb:93:cf:59:b2:d4:d0:a7:58:9d:28:b1:a8:
                    57:17:dd:70:ab:0d:27:12:5a:fe:30:ad:c5:38:a4:
                    3b:1c:14:0c:60:d7:47:0e:44:a7:e3:3a:bd:be:5f:
                    83:1f:22:99:cd:ab:48:67:01:10:ab:e1:77:73:41:
                    4e:b1:f5:e7:cd:b5:8f:02:16:19:f4:68:45:91:47:
                    81:4c:63:4e:6e:fc:82:d1:cc:fd:b4:c9:23:0d:b7:
                    3d:f1:64:12:47:04:6c:66:22:be:2f:a3:05:9e:63:
                    82:a8:33:39:28:d2:2c:d0:bb:4f:2f:02:e1:fb:fe:
                    30:f4:b7:2d:c7:97:29:0f:c3:73:47:8a:4e:13:e0:
                    1c:e2:6e:6e:7b:b1:41:72:64:7d:e7:6f:86:1d:91:
                    07:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:D4:0F:E0:DB:8B:53:0C:2F:39:BD:7C:B3:DD:AB:0B:CA:91:52:74
            X509v3 Authority Key Identifier:
                keyid:E6:4E:02:17:74:35:AE:F1:CB:FD:62:4E:26:67:E6:96:9A:AF:AA:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:95:01:13:26:b1:3e:e1:52:e7:b2:61:6d:c1:47:c5:79:05:
         e0:9e:3c:58:9f:15:71:fb:ab:6f:fd:e5:f2:e6:e2:6f:2e:3a:
         48:d5:a9:f7:c7:6c:d0:00:c9:da:70:e9:c1:ec:04:bf:65:b8:
         7e:15:02:71:c6:ee:f6:1c:74:ed:d3:88:4e:6a:18:fc:e8:0c:
         59:0d:63:d9:d4:b4:42:5a:a8:70:7c:d5:68:c5:36:0e:95:85:
         ab:65:44:71:01:b4:b9:87:c7:cc:03:bd:5d:91:03:45:3e:0b:
         12:bf:16:2a:59:25:65:17:55:c7:45:f3:29:c6:2b:fb:ea:bc:
         09:59:54:a5:e9:7c:cf:4b:1b:55:dd:c3:c4:50:7f:5a:2b:84:
         dc:be:ee:0c:db:0e:b7:99:93:fa:0d:b9:a2:d1:cc:8d:4b:83:
         00:79:86:e5:10:d2:a2:e2:77:b7:e7:d0:e9:c1:18:4e:67:88:
         49:62:d9:f9:7d:b5:9b:d3:90:08:d7:bf:0e:14:c4:18:a0:8b:
         c0:b3:98:44:b4:c2:e6:f8:cb:73:af:75:f0:91:c0:cd:96:67:
         72:a5:51:8d:ff:46:52:a9:4d:b5:9e:16:a8:66:93:93:09:a4:
         c6:57:a5:bc:f1:c4:4b:dc:bc:38:20:36:53:14:79:fc:10:18:
         3c:a4:c5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:43:33 2026 by rpki-client