Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
File:                     Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json)
Hash identifier:          4ncLfz64ch77gmSHoWMiYsH2fmsfl6Cuf1u8qdE80xE=
Subject key identifier:   6C:FF:AA:B7:22:E8:E0:52:03:17:EE:82:84:95:47:1D:F7:27:A2:39
Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B
Certificate issuer:       /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B
Certificate serial:       0139
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
Manifest number:          0131
Signing time:             Fri 17 Jul 2026 06:44:21 +0000
Manifest this update:     Fri 17 Jul 2026 06:44:20 +0000
Manifest next update:     Fri 24 Jul 2026 06:44:20 +0000
Files and hashes:         1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: u2wTGHl+HceIN+PjeKTvsG9zIxN6Vh8W6jZORDd2c/s=)
                          2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: FK/DlPDSG9WEqzNFstF7HVEnaAW4fzuMAjNc2Kwb/bg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl
                          rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:44:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 313 (0x139)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B
        Validity
            Not Before: Jul 17 06:44:20 2026 GMT
            Not After : Jul 24 06:44:20 2026 GMT
        Subject: CN=6a59cf45-0f25
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:6c:5a:0a:d5:fd:bd:16:4d:13:aa:33:83:b4:
                    1b:52:f8:9b:d2:89:f4:7d:22:fd:6b:a7:80:11:44:
                    40:f3:cf:d8:6f:3d:39:d6:47:de:d2:0e:4a:9a:b5:
                    f9:c6:d4:56:0a:2d:a1:21:33:00:31:ad:c6:b5:73:
                    2e:56:0a:f7:a1:a2:a9:8a:88:ef:a6:1d:1f:53:5f:
                    0f:77:6e:fb:3d:57:69:34:dc:c6:1c:91:9b:18:ca:
                    1b:78:22:02:57:76:7f:e5:e3:3f:36:0c:a4:04:b9:
                    62:c0:c4:2d:18:15:4b:0d:40:18:1a:25:b9:39:ac:
                    0d:32:b1:98:97:e7:dc:c0:39:c3:7d:c1:01:b0:b5:
                    10:3b:42:46:41:73:c6:1f:77:1f:8e:d6:0a:d5:4b:
                    24:57:be:75:41:d9:c9:6d:f0:43:45:ac:53:c8:5e:
                    74:4c:82:07:8d:97:85:90:eb:f9:cb:ff:6a:a5:d4:
                    c7:43:1b:b8:9c:bc:3d:9e:a7:ab:64:82:92:26:ae:
                    b2:12:74:d8:e3:cc:f6:11:dd:df:17:91:e9:2c:86:
                    d0:f9:a6:30:69:32:f4:1d:06:e1:01:ad:51:ad:3b:
                    d3:56:e7:11:9a:f7:43:09:f3:b1:c3:58:f3:20:0c:
                    4b:56:70:75:40:0b:45:c2:c4:60:ee:7e:39:f8:85:
                    e3:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:FF:AA:B7:22:E8:E0:52:03:17:EE:82:84:95:47:1D:F7:27:A2:39
            X509v3 Authority Key Identifier:
                keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:c7:0b:f1:cd:37:41:72:da:10:2a:68:b7:cb:60:c1:ea:c4:
         34:f8:e4:27:85:dd:83:d5:02:f3:73:12:c0:ac:2c:4a:eb:9a:
         aa:30:ae:5b:61:ab:53:65:e8:1a:b9:e2:da:40:21:40:a9:25:
         e9:56:1d:1b:2b:a5:0e:7f:c7:cd:07:f6:3d:50:72:84:2f:82:
         a1:b9:e2:b7:1e:da:77:23:e9:47:71:03:55:6e:85:88:b2:25:
         ba:3e:05:32:dd:27:66:2b:c9:67:1c:6d:0d:ff:bd:e4:21:e8:
         93:ed:ab:38:d7:8b:2f:91:76:c2:f1:d2:78:d4:17:65:95:96:
         77:15:45:74:67:92:c5:8b:2c:c0:b4:bc:c2:db:6a:48:26:6a:
         56:6f:4e:7a:11:76:54:4d:cb:6b:76:8f:cc:ff:4b:c0:4b:33:
         7a:67:9d:8b:92:26:9b:01:c0:60:6b:92:64:93:4d:86:74:a5:
         8f:68:09:55:81:ad:5f:3d:3b:7e:e4:a3:08:59:f6:e2:86:3c:
         e9:80:f5:e5:1c:5f:44:eb:f1:86:34:9b:7f:ee:48:b6:43:e1:
         e2:ab:7d:3d:4f:f0:0c:9b:b0:17:4d:57:a6:29:b8:22:3c:4c:
         67:ea:63:9c:f5:70:98:1d:5d:96:49:1e:8d:9b:4b:b8:ca:19:
         18:d8:f9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:22 2026 by rpki-client