Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft
File:                     i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json)
Hash identifier:          FQefVWKt8hZXzXC8n2l6/iLizim3b4eNtKN7XougENc=
Subject key identifier:   0B:65:BE:1E:77:1C:9F:F7:95:F4:E9:DA:83:CD:EA:9B:EC:4F:E4:23
Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A
Certificate issuer:       /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A
Certificate serial:       0162
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft
Manifest number:          015C
Signing time:             Fri 17 Jul 2026 06:08:46 +0000
Manifest this update:     Fri 17 Jul 2026 06:08:46 +0000
Manifest next update:     Fri 24 Jul 2026 06:08:46 +0000
Files and hashes:         1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: qSrz0elZARTH3PFCRFFULqiEckXon7+0O2odVi9V3Q8=)
                          2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: /pgTpJCeELO0vx7ey0ylXFhJZdDNJrts1Zcttp5czrc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl
                          rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:08:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 354 (0x162)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A
        Validity
            Not Before: Jul 17 06:08:46 2026 GMT
            Not After : Jul 24 06:08:46 2026 GMT
        Subject: CN=6a59c6ee-cb6d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:18:56:7b:b7:b3:62:32:96:c8:2e:63:35:9f:
                    f2:4e:02:f4:56:0b:59:59:4c:cb:a9:63:42:bf:1e:
                    bf:79:a2:c8:b6:39:ec:56:ba:ad:07:19:bd:11:ad:
                    03:64:ae:6f:9b:e3:fd:23:5d:6a:ce:ff:87:c5:07:
                    61:da:fa:b7:f3:37:6d:2a:6b:6a:20:ea:d6:f1:79:
                    c4:d0:26:89:52:1d:58:c9:fb:bb:82:e1:47:c8:65:
                    1d:c5:83:c7:ae:76:2b:8c:19:27:0d:0d:9f:29:77:
                    7f:a8:c1:4c:50:15:e5:c3:38:68:76:13:7c:c5:e2:
                    10:ae:23:48:4d:2e:1d:b9:64:82:aa:70:c1:c8:f6:
                    5c:0f:3c:bf:5f:8c:79:2e:32:9d:c0:2a:87:93:82:
                    54:a6:70:b2:7e:67:4d:4f:8d:bd:85:23:7c:a3:c2:
                    c6:83:b3:3f:33:b6:c8:1a:75:8a:dd:79:db:f8:10:
                    b4:8a:95:db:d1:11:c8:60:de:1f:08:34:fc:db:59:
                    d9:c6:e8:30:eb:9e:5a:c2:a5:0b:45:36:eb:80:67:
                    ae:40:f4:3c:9a:da:dc:b5:c7:05:83:18:57:0f:57:
                    6a:ea:d9:8b:91:4d:be:30:b3:28:0b:44:a3:42:99:
                    c9:36:21:43:a5:19:6c:9f:f8:c3:91:9d:50:b4:54:
                    ca:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:65:BE:1E:77:1C:9F:F7:95:F4:E9:DA:83:CD:EA:9B:EC:4F:E4:23
            X509v3 Authority Key Identifier:
                keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         f6:6d:7c:3b:7d:23:96:55:84:26:b9:12:de:8b:4a:4d:af:f5:
         61:33:20:1e:31:d2:21:06:69:c1:52:21:94:64:26:76:71:3f:
         63:8d:b2:7d:24:81:8b:1f:ca:42:70:3e:c1:39:30:50:39:11:
         dd:7b:05:22:32:61:a9:69:cc:24:73:76:8b:bc:e0:91:df:56:
         7f:cd:e0:20:da:fb:b2:99:1e:34:8a:21:f3:6c:96:ce:84:6f:
         33:2a:8f:33:2d:33:f5:22:56:5e:b8:7b:4c:65:61:b3:6f:95:
         86:c3:aa:b0:14:c6:f0:03:b9:61:36:98:49:41:f6:58:56:94:
         02:39:05:72:a1:b1:1d:78:06:72:77:b5:e8:a9:c3:0e:80:98:
         68:ae:7c:17:04:92:97:25:65:a9:9a:df:ce:e3:39:e9:a6:1a:
         f6:6a:e9:90:21:62:77:22:97:fc:c5:53:76:b8:01:48:45:6e:
         6d:37:f4:fc:f1:f7:54:b5:a2:11:ce:41:0e:99:3b:7c:d6:88:
         bf:a0:e2:71:36:cc:df:bf:91:4c:b0:12:5c:4b:c9:d9:6c:4d:
         18:9f:55:b4:31:83:73:ab:d4:a4:33:bb:8c:b5:d4:6e:a4:2b:
         7d:ce:0c:f9:bc:82:ef:90:b1:0a:03:78:62:b0:a8:56:b6:8a:
         ad:1f:1d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:09 2026 by rpki-client