Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft
File:                     b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json)
Hash identifier:          CYkfk9W1U6MXFoNiqcR9MCLC5PxuFACcGYkX0byfwX8=
Subject key identifier:   5B:21:10:63:DA:DD:52:3D:EC:5F:23:2A:2F:49:A0:0E:0B:45:D2:5C
Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07
Certificate issuer:       /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07
Certificate serial:       0137
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft
Manifest number:          012F
Signing time:             Fri 17 Jul 2026 06:51:23 +0000
Manifest this update:     Fri 17 Jul 2026 06:51:23 +0000
Manifest next update:     Fri 24 Jul 2026 06:51:23 +0000
Files and hashes:         1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: uVx9Nmalz+aDzemJfwPdDzvZF4lpC6MqnwSfIIRNf64=)
                          2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: 7y7RETYbuZ100fvQ4OZzDzZF974c+TgTdz2U9WNxBsM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl
                          rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:51:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 311 (0x137)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07
        Validity
            Not Before: Jul 17 06:51:23 2026 GMT
            Not After : Jul 24 06:51:23 2026 GMT
        Subject: CN=6a59d0eb-406e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:f6:79:2b:83:e6:4c:d0:39:05:d2:1e:3f:ff:
                    4f:19:59:39:fc:b6:18:ad:b2:2d:a2:08:04:4f:2e:
                    32:0f:4c:fa:24:5e:27:55:1f:ac:13:c5:14:73:3f:
                    57:cf:78:78:f3:cc:26:52:e9:9f:82:ac:b1:b0:9f:
                    92:55:00:46:84:05:ba:b1:e0:90:ee:f4:91:e4:59:
                    db:bc:5a:0a:c6:3d:b0:68:e4:09:f8:71:f5:3b:6d:
                    f1:a2:8f:0e:9a:8a:5a:ee:7c:75:21:d6:75:3b:3d:
                    a9:60:7f:40:00:d1:8b:c9:42:fc:67:23:44:9d:26:
                    90:c5:02:0e:7a:3d:0e:dc:c9:9b:8c:85:0f:65:65:
                    2f:b6:d5:e1:51:a0:2b:c1:57:c6:b4:e3:3e:5f:df:
                    a5:60:90:a0:93:59:f3:94:31:88:68:71:49:7a:15:
                    22:61:84:17:e5:fe:9e:64:bc:ac:f6:e4:d1:2d:da:
                    57:7d:2c:77:5c:3f:00:87:45:e2:da:12:09:43:08:
                    ba:15:f5:5b:5f:fb:d2:3e:8a:f1:5f:2d:02:ac:09:
                    93:07:f2:ac:24:23:4a:f6:1d:f2:58:24:6f:98:d6:
                    7e:06:52:a5:e1:e6:45:34:cc:fe:24:b5:f3:20:d3:
                    03:ec:21:00:fa:6f:0b:f1:68:c0:37:00:5e:d8:24:
                    91:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:21:10:63:DA:DD:52:3D:EC:5F:23:2A:2F:49:A0:0E:0B:45:D2:5C
            X509v3 Authority Key Identifier:
                keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         98:4b:89:b6:06:c6:c6:fa:9e:a4:01:62:d2:17:8f:e4:05:8a:
         91:0a:e5:f8:ad:c2:2c:3c:fc:c4:d0:de:76:9c:9c:1f:2c:0f:
         f5:97:de:eb:e0:de:5e:a8:82:be:63:e7:90:b6:18:19:41:15:
         15:1b:3b:3a:86:4e:e5:0f:39:8b:b4:71:b1:d9:56:87:70:fa:
         07:69:50:75:f2:29:36:b8:67:9a:b6:83:87:85:a9:d5:36:a1:
         c8:59:f3:7e:87:2b:15:ff:28:8b:d8:40:50:53:c1:d1:8c:86:
         fd:c0:8e:22:6e:47:3e:4a:4b:44:13:d6:6d:5c:ed:9b:9e:d7:
         2d:2f:ca:ea:f6:5e:de:b4:a7:af:a2:0c:af:e6:b3:cc:5e:64:
         3c:f1:a7:ce:06:10:b4:db:6f:99:ec:cf:38:9a:dc:8f:1f:c5:
         4f:59:4e:43:af:f2:8e:8a:75:ee:86:6a:88:92:f5:65:f0:3b:
         92:7f:84:e5:90:0a:10:bb:81:54:f7:60:7d:f5:fe:50:9c:9c:
         2e:fa:45:e6:31:9e:8b:7b:06:2e:c1:2e:83:2f:b0:35:b3:23:
         6f:fb:57:14:6e:5e:71:9a:cd:00:93:3c:99:45:68:62:33:47:
         01:46:99:4d:b5:3e:a2:88:be:63:68:7b:25:f5:b5:38:36:22:
         a3:bd:ea:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:14 2026 by rpki-client