Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.mft
File:                     mV1wqX9WsuAAuspuykNz5iB7uY0.mft (raw, json)
Hash identifier:          MUh73H904ABIytBXmVCi6DKpO/UrpTQ77z9Y09cfJJA=
Subject key identifier:   D5:A2:8C:27:5D:14:13:53:55:A9:F8:DC:1E:D4:48:5D:7B:AA:24:78
Authority key identifier: 99:5D:70:A9:7F:56:B2:E0:00:BA:CA:6E:CA:43:73:E6:20:7B:B9:8D
Certificate issuer:       /CN=A91EA850/serialNumber=995D70A97F56B2E000BACA6ECA4373E6207BB98D
Certificate serial:       69
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mV1wqX9WsuAAuspuykNz5iB7uY0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.mft
Manifest number:          67
Signing time:             Fri 17 Jul 2026 09:17:37 +0000
Manifest this update:     Fri 17 Jul 2026 09:17:37 +0000
Manifest next update:     Fri 24 Jul 2026 09:17:37 +0000
Files and hashes:         1: mV1wqX9WsuAAuspuykNz5iB7uY0.crl (hash: aQCkgDCUnRhEeFZ78ftI3FhscbCK+7IJer8xBZH4qSQ=)
                          2: CE6915C0ED3A11F0A5B7B5054B6F56BC.roa (hash: 18c0IjqREvvCbFh1OonuDqpoKVFbN0WBr8JimtNfp4Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.crl
                          rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mV1wqX9WsuAAuspuykNz5iB7uY0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 09:17:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 105 (0x69)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EA850, serialNumber=995D70A97F56B2E000BACA6ECA4373E6207BB98D
        Validity
            Not Before: Jul 17 09:17:37 2026 GMT
            Not After : Jul 24 09:17:37 2026 GMT
        Subject: CN=6a59f331-b7aa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:7f:e7:25:ae:17:af:5f:36:fe:ee:7c:0c:bb:
                    0a:30:99:f1:56:a9:72:15:4e:54:0d:71:d3:2e:51:
                    0f:88:da:1c:56:54:cb:bb:39:21:af:8e:2b:9d:3f:
                    9d:e9:57:64:97:d7:65:9c:07:15:a9:39:3f:10:03:
                    36:83:e1:28:3e:f9:67:fe:4d:c6:04:11:ed:b0:4f:
                    5e:38:1b:81:14:08:39:21:51:06:d5:9e:3c:b6:de:
                    dc:7b:b0:c4:ea:1a:45:dc:ad:b9:35:fe:b3:3a:ec:
                    06:36:bb:6d:11:ae:6a:65:07:ca:19:3f:55:84:05:
                    6e:cb:9a:e6:ac:52:2f:65:fb:7a:60:00:94:87:40:
                    0d:d1:81:ec:34:7f:14:82:1e:91:39:1a:12:6a:4e:
                    52:84:73:8d:01:c7:ac:c4:f8:4a:a7:54:fd:75:a5:
                    01:b7:63:fc:e7:e6:69:7b:40:e1:ba:5d:41:36:5f:
                    fd:09:c3:a0:59:60:00:1c:b8:9f:ad:a8:8c:b2:04:
                    64:c6:e3:a9:2b:f4:5a:15:f1:0a:41:96:4f:1c:a9:
                    b8:b3:66:c6:20:b9:76:73:b9:75:5e:7c:f8:c7:ca:
                    5a:c0:ac:90:04:a7:b2:3b:01:c3:2e:4f:b0:48:95:
                    8c:59:3f:7d:e0:bb:2d:fa:50:0c:ed:61:c3:26:36:
                    82:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:A2:8C:27:5D:14:13:53:55:A9:F8:DC:1E:D4:48:5D:7B:AA:24:78
            X509v3 Authority Key Identifier:
                keyid:99:5D:70:A9:7F:56:B2:E0:00:BA:CA:6E:CA:43:73:E6:20:7B:B9:8D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mV1wqX9WsuAAuspuykNz5iB7uY0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:ce:0a:30:cc:7b:ff:e7:66:93:15:87:0c:f4:4a:3b:2f:d4:
         fb:61:c2:6a:19:d5:09:4c:d6:94:b7:af:7f:89:99:47:ca:ff:
         93:fd:9c:cc:85:56:eb:03:44:49:21:98:76:ce:99:e3:30:c7:
         df:b8:d0:df:c2:99:21:24:87:7f:b8:b2:09:cb:a9:8f:40:11:
         e2:9c:bf:d7:f8:52:17:8b:ba:57:c3:01:16:f6:14:7a:49:27:
         71:13:7b:06:25:b1:50:4f:62:53:5d:6e:4d:17:2d:ef:31:5c:
         19:50:47:32:b5:70:c5:21:af:d5:4e:a8:b5:48:fa:cd:a4:14:
         58:90:e9:04:98:df:c8:53:b4:3c:05:54:0e:d3:16:06:d6:6e:
         2a:f2:70:9d:74:65:0a:ef:8e:c9:7a:ea:bc:a2:45:81:87:02:
         37:8f:8f:52:c2:f1:28:b9:0f:2b:75:70:3e:f3:06:db:5c:65:
         0d:ed:74:0d:35:82:f7:78:6a:9a:84:f4:58:c0:9b:23:6b:c5:
         a9:86:1e:d8:b8:f6:20:ae:40:7e:ce:4e:af:3d:27:ab:7b:51:
         c9:ff:b5:7e:57:0a:36:db:21:83:ed:82:8f:a7:44:5f:24:66:
         82:b1:9e:0e:b3:ce:8a:23:49:61:fd:fb:b9:86:44:8c:1c:ec:
         4d:44:89:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:14 2026 by rpki-client