Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft
File:                     _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json)
Hash identifier:          OQ/i2aaW9H1AQ5sntdDGSXtYRHwD09g9OlFWmMUuxhk=
Subject key identifier:   CE:BB:34:19:7F:EF:0B:26:CD:A2:9B:58:EE:96:DF:14:FE:18:06:F7
Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F
Certificate issuer:       /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F
Certificate serial:       21EE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft
Manifest number:          21C1
Signing time:             Thu 16 Jul 2026 15:56:57 +0000
Manifest this update:     Thu 16 Jul 2026 15:56:56 +0000
Manifest next update:     Thu 23 Jul 2026 15:56:56 +0000
Files and hashes:         1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: vJWVybMB97kGJqfRwKBgpWMO5GUp5/RzBHOhTKaPYJQ=)
                          2: C0C6DAC87F6711F181B5257061A30FBC.roa (hash: OfIiAki8IW4fs926cKPoDrtf9KHpGa7Y2DwLDDbwHEE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl
                          rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:56:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8686 (0x21ee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F
        Validity
            Not Before: Jul 16 15:56:56 2026 GMT
            Not After : Jul 23 15:56:56 2026 GMT
        Subject: CN=6a58ff48-a5b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:f6:33:15:df:ba:51:cc:95:c5:db:14:4a:ab:
                    b7:99:fa:5e:17:ea:34:9d:ef:0a:06:71:2f:18:9b:
                    8e:2a:82:e8:46:fb:6b:79:42:ff:43:62:6d:47:fc:
                    8a:6a:6d:3c:36:81:f8:aa:7e:d5:db:a2:5e:90:71:
                    fe:b3:51:89:aa:09:bf:04:47:d1:1f:2c:e5:57:9f:
                    51:b7:7e:38:4c:26:fd:1c:a9:3e:e8:15:ad:69:cd:
                    31:e0:4a:93:02:b7:a3:fd:d8:4f:70:a6:e5:73:c4:
                    bd:26:ea:db:a9:bf:b3:fe:19:10:e7:c1:02:72:51:
                    1f:44:95:da:54:ba:2a:d7:90:ab:c2:8c:b4:b3:3a:
                    3d:13:8b:05:f2:23:4c:34:ba:cc:44:84:54:32:04:
                    56:02:1a:b6:c0:73:5c:26:84:cd:43:da:03:8d:64:
                    bb:63:79:e3:1b:03:a8:2e:52:5c:cc:8b:42:d0:cc:
                    36:5c:60:fc:d8:01:a2:b7:fd:cb:f9:f7:1a:8d:e7:
                    2a:9b:a9:d0:dc:ea:fa:3f:4a:06:7f:9b:ab:29:5e:
                    95:82:17:b4:a4:b5:a5:a0:97:9c:8d:d5:23:04:27:
                    5f:14:be:19:20:d6:9c:8d:05:77:b8:48:84:0b:2c:
                    41:fd:23:c9:8a:5d:a2:f4:92:7f:4c:87:7f:db:a4:
                    82:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:BB:34:19:7F:EF:0B:26:CD:A2:9B:58:EE:96:DF:14:FE:18:06:F7
            X509v3 Authority Key Identifier:
                keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:48:f6:27:43:de:9e:6b:bc:6f:d0:f2:8a:b5:2b:1c:50:ce:
         44:cf:a1:02:77:e4:bd:ee:ac:d8:08:80:25:5a:67:a9:ef:2a:
         3d:bb:b7:c2:33:36:d6:b0:78:34:4e:aa:b9:d0:f2:cf:95:81:
         6f:cb:8c:8a:7f:cd:a4:c4:ba:2a:f6:9b:3f:91:2c:b7:bd:a7:
         25:82:3c:ee:5d:ef:4d:6e:89:10:96:92:0a:b0:5b:a5:a5:38:
         ea:45:c0:05:46:e3:54:e2:0c:f9:a3:3d:6e:5d:7b:88:7b:fc:
         ba:21:9f:3c:d7:f9:ed:f6:7a:3f:9f:c3:88:69:c8:29:6f:dc:
         3a:10:9b:6e:68:b6:3a:ae:f5:5b:94:e0:5f:13:5e:35:31:07:
         87:d8:93:f4:48:29:60:40:30:4c:92:f3:66:bc:df:18:01:52:
         20:11:a5:21:2e:0e:02:ab:ac:2c:62:17:21:40:70:5d:71:3c:
         4b:f6:b3:8f:72:5d:6f:49:f0:7b:8b:bf:2a:df:e8:80:f5:3a:
         d3:3c:75:2a:74:d1:df:09:2b:20:fe:30:3e:e8:1a:4e:ee:78:
         94:4f:22:c9:5b:49:08:5e:ee:27:f6:1e:f2:7f:e1:19:98:c7:
         b9:60:7a:2d:12:9c:3c:1a:b1:3e:f5:9a:ba:09:2c:09:f2:23:
         51:ec:09:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:07:46 2026 by rpki-client