Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
File:                     IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json)
Hash identifier:          q+zANsdd1RMj6xvf2NFsS1dY/CTL0C8pN0tJA55gaBM=
Subject key identifier:   E1:5B:E6:0E:E1:E8:E5:A6:30:EC:2E:5D:12:7D:22:CA:08:F6:C5:99
Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8
Certificate issuer:       /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
Certificate serial:       05CF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
Manifest number:          05C1
Signing time:             Sun 12 Jul 2026 23:09:38 +0000
Manifest this update:     Sun 12 Jul 2026 23:09:37 +0000
Manifest next update:     Sun 19 Jul 2026 23:09:37 +0000
Files and hashes:         1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: gNu80mHH6qiO+hUjacXVi9Y8MbUEOZo3/wkf6ZDG/mA=)
                          2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl
                          rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 19 Jul 2026 23:09:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1487 (0x5cf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
        Validity
            Not Before: Jul 12 23:09:37 2026 GMT
            Not After : Jul 19 23:09:37 2026 GMT
        Subject: CN=6a541eb2-ea32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:5f:f5:58:71:51:7e:cf:5a:52:1f:87:36:4e:
                    8b:3f:91:29:1a:b3:cb:f2:ca:e9:ba:24:8d:87:02:
                    14:cc:b3:30:23:c3:88:35:9b:5d:81:a9:7b:e6:e8:
                    c9:7d:10:d4:92:48:0d:3d:a2:22:ec:5a:6d:7e:2b:
                    15:0c:74:cb:a4:aa:cd:a1:6c:23:2b:9b:08:6c:1b:
                    db:3d:6c:6b:6f:ae:95:7e:b3:d5:6f:e5:5f:42:91:
                    bd:6b:4d:67:0b:24:f7:db:ce:54:15:f2:03:3e:e8:
                    76:4c:72:4e:b4:ed:d2:db:da:1f:86:a8:89:85:f7:
                    73:1c:5e:d2:21:68:2e:67:7f:0d:42:98:4b:65:25:
                    4e:a0:37:35:d0:24:dc:b6:52:56:e8:4a:ee:e1:03:
                    2a:21:c4:35:0e:99:19:fa:4c:76:87:bd:ea:c3:3e:
                    68:19:f1:57:be:71:ab:4e:ce:87:9b:e2:b5:c7:fd:
                    b9:52:76:3c:6a:f2:38:12:4b:9e:50:62:60:9d:f3:
                    54:b2:1f:30:5a:9f:3d:1d:11:6e:92:65:c8:2a:4b:
                    bc:5f:81:da:a1:08:2d:1e:c6:30:02:06:82:e8:cf:
                    76:4c:bc:ab:2e:98:2f:4c:1d:6f:48:32:11:1b:62:
                    e6:5d:06:9a:54:1e:47:08:92:92:d0:ed:24:e7:cf:
                    ce:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:5B:E6:0E:E1:E8:E5:A6:30:EC:2E:5D:12:7D:22:CA:08:F6:C5:99
            X509v3 Authority Key Identifier:
                keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:47:36:3c:9b:06:7a:34:0a:f1:3e:d3:33:7a:6a:2d:83:e8:
         cf:10:7b:20:20:5b:bb:10:d2:ee:48:89:11:5d:21:51:bf:90:
         56:ac:40:44:22:32:ab:48:de:d6:92:b5:28:9f:55:09:7d:0d:
         cb:f5:41:de:be:f6:09:39:14:02:07:fe:b6:70:6d:b2:d5:0f:
         b8:aa:31:4b:97:6f:97:c4:9a:32:b6:93:c0:66:8f:e5:f3:08:
         2c:ab:7e:05:e1:d7:e7:97:39:aa:f7:9b:66:75:88:a6:22:88:
         5c:66:ed:e2:37:24:a9:8f:28:28:bf:87:78:e9:09:3d:a7:31:
         11:e2:f4:2a:b2:c2:b5:b0:1f:2e:67:aa:7a:4a:4d:a4:a9:eb:
         3b:fb:48:5f:8f:3b:4b:31:76:f0:29:cc:1c:0a:23:49:9c:98:
         55:13:4c:5b:70:ef:39:5c:e1:a9:9d:30:58:41:65:3a:c7:58:
         28:d8:ec:b3:07:20:6a:d8:ae:7e:7c:68:06:5d:c9:b9:b6:52:
         55:9f:67:ce:1b:77:0e:c5:c1:cb:39:77:4f:43:40:e0:f4:3d:
         86:6c:cf:d8:14:fa:24:b0:52:ae:29:a1:9a:2f:32:71:27:cb:
         0d:03:ae:10:6f:df:3e:44:57:3e:a3:47:02:bb:56:1b:1b:63:
         10:2e:e6:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 20:40:22 2026 by rpki-client