Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft
File:                     h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json)
Hash identifier:          4CJEWAGAQUO9uZXO0IkXPuSwGLez4vu2Ul1stCzPDtw=
Subject key identifier:   2E:88:D1:98:00:B1:BD:D2:7D:21:48:E1:1A:B9:79:3F:52:A2:B0:67
Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C
Certificate issuer:       /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C
Certificate serial:       15ED
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft
Manifest number:          15D8
Signing time:             Wed 08 Jul 2026 16:59:27 +0000
Manifest this update:     Wed 08 Jul 2026 16:59:26 +0000
Manifest next update:     Wed 15 Jul 2026 16:59:26 +0000
Files and hashes:         1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: CUf2oyKOASUIaZUsyhX/IikruBFNgx81UKmh9pYHnow=)
                          2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: IPwUYf1i7UXpGfgy42YQLyz0KFiyyYobrDQbSdSHXgY=)
                          3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: jueJlQIp/n088nFesAl2o/XwQiao4sKjxZsgZFyb2lM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl
                          rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 15 Jul 2026 16:59:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5613 (0x15ed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C
        Validity
            Not Before: Jul  8 16:59:26 2026 GMT
            Not After : Jul 15 16:59:26 2026 GMT
        Subject: CN=6a4e81ef-bfef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:dc:04:30:6d:0c:2e:1d:d1:6e:3c:3f:df:75:
                    aa:f1:83:4a:99:4c:a1:1b:36:69:25:da:b5:e2:82:
                    d0:ce:11:68:23:f5:c2:80:5b:9e:8e:0e:f4:18:ac:
                    e5:19:2b:da:bd:2c:ad:47:7a:1a:06:dd:44:2a:5b:
                    84:04:a8:d6:1c:7d:50:c3:1c:e5:39:42:9c:e2:e5:
                    7f:f3:09:ac:a1:6d:d3:5c:d5:87:13:a9:d0:79:45:
                    17:00:65:1b:15:a3:1b:b3:18:3c:2d:08:c9:16:9f:
                    c1:d3:58:8f:cb:25:f3:c9:df:0c:11:8a:ff:05:24:
                    e4:e4:0d:f8:d2:75:83:dc:de:cd:39:87:6e:8d:df:
                    d3:e3:30:14:2f:b4:93:13:91:6c:d8:6f:94:33:71:
                    3c:d5:d1:e7:10:58:3c:b4:54:2e:ff:53:ce:44:c7:
                    d4:9b:59:ed:44:3c:35:58:8b:56:31:b2:01:0a:87:
                    c2:48:c0:e0:a7:fd:f8:30:67:d6:59:e7:d9:5c:2e:
                    e0:2d:82:ab:73:bc:54:8d:1b:ad:6c:dc:09:3a:48:
                    28:36:66:01:d0:cc:24:b4:8b:1a:cb:68:50:f8:38:
                    e9:a7:70:17:d9:d2:3f:a7:55:23:69:85:1e:0b:8b:
                    57:e4:2d:d1:11:ae:c4:e4:79:bd:8c:02:80:93:ca:
                    37:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:88:D1:98:00:B1:BD:D2:7D:21:48:E1:1A:B9:79:3F:52:A2:B0:67
            X509v3 Authority Key Identifier:
                keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:6f:bf:d8:4a:dc:23:2c:af:ae:96:2b:e9:30:2b:7b:f8:3c:
         bb:df:c6:90:26:72:60:5b:88:48:93:62:da:48:02:80:55:08:
         35:b7:32:c1:9e:78:e9:f9:a7:30:92:b4:9b:47:44:24:9e:a2:
         69:11:c1:33:e3:f2:65:b4:4b:d7:de:62:ed:df:94:41:e0:32:
         7b:fc:4b:d8:db:1f:f9:d8:29:47:ff:16:61:3b:04:bc:90:71:
         bf:2e:98:47:e6:f8:b4:9b:03:5a:d0:9d:77:36:9e:a2:1d:6b:
         b1:98:cc:22:d0:37:e3:61:88:60:b2:98:1e:81:9c:28:7d:e5:
         33:de:7e:04:f0:06:92:d4:90:92:f4:90:a4:ce:82:72:6b:78:
         7b:3d:02:ec:51:1b:e9:41:13:a2:1f:f9:eb:8a:ea:a7:3d:68:
         63:23:dc:44:2d:2a:9a:be:bd:3a:f1:02:d2:d2:bb:75:4a:5e:
         19:ee:aa:e8:13:1f:73:0b:fc:fe:b3:c3:5c:35:4d:97:7a:71:
         89:3a:5a:38:d4:51:43:55:05:35:8b:e1:18:c5:e3:44:b7:fb:
         7d:a5:17:b7:95:5a:93:5d:22:62:ca:ee:da:a9:a4:fa:b0:be:
         44:9a:a7:1d:ee:d7:e2:79:38:78:b2:f2:d5:f6:a7:e6:cb:6f:
         65:f3:1d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:31:51 2026 by rpki-client