Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
File:                     lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json)
Hash identifier:          fhfQielTtPe5QQ7gmviaC0XTGT5Apd+zR3aB+4SUwD4=
Subject key identifier:   6F:C9:0A:EE:D6:B2:39:FF:65:84:61:CE:A9:D0:23:E8:F8:83:5D:E2
Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93
Certificate issuer:       /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93
Certificate serial:       04BB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
Manifest number:          04AE
Signing time:             Fri 17 Jul 2026 00:31:47 +0000
Manifest this update:     Fri 17 Jul 2026 00:31:46 +0000
Manifest next update:     Fri 24 Jul 2026 00:31:46 +0000
Files and hashes:         1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: SkZv7+KrIeW2EhdovF+h7xCUi3ZgKOEzkSFxoxWlT9s=)
                          2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: 89nb39WeO+2Ub6Nf3O9bYYBJxsIA87zSaSarp1B+j1E=)
                          3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: 1pV5x+wzFKlIURLdK4W0ATECc1pPeoL8XQh/coLs8yw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl
                          rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:31:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1211 (0x4bb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93
        Validity
            Not Before: Jul 17 00:31:46 2026 GMT
            Not After : Jul 24 00:31:46 2026 GMT
        Subject: CN=6a5977f3-dfb1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:35:13:b7:95:13:0f:47:a9:62:cd:63:4d:3c:
                    33:dd:19:15:50:8d:82:ac:60:d1:59:cc:c0:15:a8:
                    96:95:bd:aa:36:52:f5:da:a2:64:90:ed:50:c2:64:
                    51:11:b2:09:bb:b1:f0:97:3b:a9:9f:4d:a9:98:7b:
                    f8:90:72:0a:49:1c:5c:81:39:0a:a5:f1:a5:64:3a:
                    0a:8e:d0:26:2a:f2:6b:ba:ff:f1:39:9f:e8:2d:44:
                    13:ac:2d:58:ba:c5:4f:9d:a0:dc:77:59:f2:dc:29:
                    dc:6b:45:d3:a2:2f:93:e3:d7:48:02:73:2e:55:fa:
                    e4:6c:68:35:cb:f7:f2:ac:f4:50:0a:24:e1:fb:12:
                    2a:19:1d:75:f6:79:45:b1:3d:fd:bd:c8:07:72:f6:
                    a2:d1:9c:00:c9:9c:e9:0e:9a:aa:a0:57:3c:7d:17:
                    be:1a:5a:35:fd:88:5b:07:8c:2c:c6:9b:a2:bd:18:
                    bd:49:ee:b2:4c:06:7b:4e:dd:17:58:80:e3:0a:b9:
                    df:f0:5b:97:2d:2a:bd:09:cd:d5:6a:cf:3e:f6:ba:
                    c9:ef:31:a3:ed:79:ea:ce:cf:ac:91:96:d6:22:2d:
                    32:f9:94:07:fc:61:c3:3c:03:d2:0c:96:42:87:84:
                    10:15:0a:4b:b0:25:48:d8:b6:79:3e:fd:51:ee:81:
                    81:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:C9:0A:EE:D6:B2:39:FF:65:84:61:CE:A9:D0:23:E8:F8:83:5D:E2
            X509v3 Authority Key Identifier:
                keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:50:d1:37:2d:0e:5e:00:2e:9b:4d:0b:a2:49:09:f5:7d:a1:
         a5:e5:5d:8a:d6:6f:e3:75:45:d1:86:e8:b4:76:51:18:31:4c:
         74:85:f1:08:fb:e7:42:14:7a:eb:98:13:4b:7f:f0:ba:69:5d:
         5f:bd:09:bb:74:17:13:ad:10:96:ee:88:ab:a5:60:fd:11:54:
         cd:35:02:29:b9:24:e1:6d:65:f4:fa:c7:5c:43:d8:4e:96:03:
         ec:b5:12:70:ec:fc:a1:b1:c0:1f:2d:99:a6:97:6b:ae:d0:14:
         b4:fc:50:1d:12:ba:67:5d:3e:fc:c6:00:d0:f8:18:5e:81:01:
         76:c9:9d:e4:8f:2c:68:17:a6:54:43:0e:14:76:7f:23:a5:ec:
         56:d7:00:15:06:8f:31:3b:c6:a1:01:cc:38:f0:26:a6:f2:d1:
         ba:95:23:db:ac:1f:ec:e1:3c:bf:88:54:60:de:d8:c1:53:19:
         e4:a8:79:a5:3b:9a:26:bb:5b:1e:98:97:4e:e0:e8:42:01:05:
         f2:d3:53:b7:9b:6d:52:37:2d:8d:61:f2:ca:f5:fd:d5:1f:81:
         99:e0:53:2a:94:e3:04:bd:20:3c:0e:d2:2a:73:d4:ad:e6:52:
         2b:c0:40:d8:14:26:76:d5:fe:ad:46:06:d1:61:28:c8:d2:96:
         fa:26:da:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:10:10 2026 by rpki-client