Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft
File:                     Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json)
Hash identifier:          EIstfc9VE1t36Rr1c4dyCDfProgBPjUUIMtcDqRmQGQ=
Subject key identifier:   4D:46:2B:39:82:D4:CA:B3:0D:18:93:82:D3:01:EB:91:A7:9B:5E:71
Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7
Certificate issuer:       /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7
Certificate serial:       0123
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft
Manifest number:          011F
Signing time:             Fri 17 Jul 2026 06:57:49 +0000
Manifest this update:     Fri 17 Jul 2026 06:57:49 +0000
Manifest next update:     Fri 24 Jul 2026 06:57:49 +0000
Files and hashes:         1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: D3N2AqBEhHuXWhjbJHhB6RSBGYuJu7lHMAQWHJJRVaE=)
                          2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: VYzj3AeenQpibuJcJi+RGSfALT2kN6QBqvlUfKfEKWM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl
                          rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:57:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 291 (0x123)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7
        Validity
            Not Before: Jul 17 06:57:49 2026 GMT
            Not After : Jul 24 06:57:49 2026 GMT
        Subject: CN=6a59d26d-cb8c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:70:3c:38:3a:8b:f2:de:ec:1e:60:7f:9b:a9:
                    a2:bb:7a:63:59:52:09:a0:c9:85:b0:fd:a1:cc:24:
                    4a:8c:e0:30:bb:c1:18:9a:fa:8c:76:10:99:8b:26:
                    4c:fc:58:6a:0d:dc:be:94:0c:74:11:a6:bc:8d:3f:
                    ad:ed:a4:ee:9d:bd:63:41:1b:33:e3:0a:09:18:78:
                    19:fc:cd:2e:68:e0:13:b6:16:2c:6b:62:38:cb:fa:
                    1b:c6:04:a5:0a:62:30:43:d3:41:0b:b7:b5:d4:be:
                    f6:7d:7e:6b:c3:0d:39:eb:e9:0a:ba:d9:74:3a:64:
                    6b:20:ae:e4:66:9b:5d:d9:dc:ba:e3:39:8e:fc:20:
                    3c:55:34:73:02:2d:30:f1:34:71:f5:eb:3e:88:ac:
                    32:9d:a4:13:f2:37:e1:c6:c7:07:24:02:46:61:ec:
                    b2:e2:74:5f:40:6b:8a:3d:0d:67:ec:41:68:1e:e3:
                    d6:d6:f7:3e:7f:eb:c1:c4:28:a6:fc:dd:5f:6b:fb:
                    9b:a9:b9:0d:80:ec:03:e3:53:72:2c:33:4c:cc:a3:
                    d4:ec:1c:6f:66:2a:7c:8f:f4:70:be:dc:63:5e:26:
                    68:5b:c5:99:04:cb:a2:f6:c7:3e:94:d4:af:80:3c:
                    40:7e:11:a4:d3:59:f7:81:e3:ff:bb:be:c0:60:fa:
                    23:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:46:2B:39:82:D4:CA:B3:0D:18:93:82:D3:01:EB:91:A7:9B:5E:71
            X509v3 Authority Key Identifier:
                keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:4a:f1:9b:d7:1a:af:5a:56:ca:ee:16:0c:67:a0:dd:c2:17:
         fc:5a:aa:a7:27:0f:5f:fc:eb:cf:a3:3a:8d:3e:50:ec:0b:8c:
         5b:56:f6:73:83:1d:e0:73:5a:ed:7c:a2:14:a8:6a:e4:65:47:
         40:8b:1a:69:13:e8:45:bb:ab:f4:11:e5:5e:57:64:34:88:b0:
         17:18:df:cd:ab:22:5c:26:24:04:29:3a:99:30:48:5f:1e:93:
         e5:90:aa:65:90:6c:51:4b:5a:0b:5d:75:59:f2:a7:b6:ac:34:
         72:d0:6b:56:c3:74:e8:bf:4c:b6:0d:6f:a2:22:0d:51:c3:b4:
         bb:2f:ab:df:24:73:82:9c:d5:98:ed:c1:ef:c4:fb:a8:9c:db:
         a7:e7:17:7a:48:b5:f0:9d:8f:bf:df:d2:fa:b4:59:9b:53:32:
         90:63:c1:6a:f2:5c:55:76:58:83:b1:56:c9:9c:7d:4d:c2:f1:
         e8:a1:94:45:39:15:66:b4:fc:d3:86:81:df:1f:ed:9e:29:c6:
         bd:c4:b2:c2:bb:c1:fe:b7:f3:a7:77:d9:9d:c2:04:f6:1f:0f:
         b1:4f:32:80:f4:e2:7a:e4:db:ec:f5:8a:fc:28:2e:19:57:27:
         5d:f9:36:e0:53:5c:15:5b:95:06:ea:ba:3d:50:60:59:2e:10:
         bb:0e:f4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:23:04 2026 by rpki-client