Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft
File:                     bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json)
Hash identifier:          UnN1ySHxwZfy+M6q7BxxJyRWDgmd3Ht6NSPw5gRMn6A=
Subject key identifier:   67:2B:6A:23:0F:82:7A:1C:7D:31:D8:76:B1:1C:2C:C7:6F:F5:0C:E0
Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3
Certificate issuer:       /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3
Certificate serial:       01CF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft
Manifest number:          01CB
Signing time:             Fri 17 Jul 2026 04:44:02 +0000
Manifest this update:     Fri 17 Jul 2026 04:44:01 +0000
Manifest next update:     Fri 24 Jul 2026 04:44:01 +0000
Files and hashes:         1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: EA173Mn2nTzd5qr9gI6+w3jS2sS6cNTLIL+INF98B/4=)
                          2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: b/pfyAz5rp6mzw6WWGb7CmVVosPd7X9N4rdBir+XR2M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl
                          rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:44:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 463 (0x1cf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3
        Validity
            Not Before: Jul 17 04:44:01 2026 GMT
            Not After : Jul 24 04:44:01 2026 GMT
        Subject: CN=6a59b311-5c83
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:d2:6a:3d:98:0c:57:1d:4c:02:61:41:fc:37:
                    f0:53:17:61:d5:00:0e:4f:b4:07:13:44:df:4a:5b:
                    bc:a8:0f:59:85:ad:3f:08:b6:e6:49:da:f1:35:29:
                    2c:5b:c5:0b:42:bb:2c:d0:8d:da:99:a4:17:93:3c:
                    f8:f6:41:e5:b0:f5:95:90:82:4c:80:71:d8:b3:d9:
                    7b:04:4c:2d:85:b1:6f:a7:a0:0c:7f:12:c8:c7:4f:
                    ac:8a:df:3a:42:e7:8f:14:59:78:3a:d9:5c:0d:25:
                    37:08:9f:97:eb:08:63:f3:a0:24:35:7a:1e:1f:af:
                    24:e1:a4:30:fa:2c:6b:e3:7f:4d:e3:8d:d1:79:2b:
                    41:05:d5:39:fa:60:8e:4a:eb:da:71:84:24:68:94:
                    76:04:da:30:38:bf:65:c7:44:fc:2d:31:24:a2:64:
                    2a:80:f3:ea:82:62:64:28:b9:37:11:91:8b:db:e9:
                    71:48:3a:16:68:2f:85:f7:7e:3b:10:8b:b5:90:7d:
                    46:a5:a1:f1:9f:f6:e6:16:a0:4f:19:e9:ae:8b:e1:
                    20:36:f0:57:38:5a:b2:22:72:95:de:3b:fb:42:a2:
                    a9:24:95:33:f8:0f:6a:d2:f0:16:73:06:ee:19:67:
                    e8:8d:1e:90:eb:2b:e3:07:ff:5c:79:42:60:2e:35:
                    45:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:2B:6A:23:0F:82:7A:1C:7D:31:D8:76:B1:1C:2C:C7:6F:F5:0C:E0
            X509v3 Authority Key Identifier:
                keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:33:46:22:50:96:19:b8:aa:98:b8:87:30:4a:53:01:78:0e:
         45:40:5d:a8:22:48:22:8f:7b:64:7b:4f:01:ad:39:c6:24:4c:
         5c:83:3e:d9:10:34:1b:64:bd:d0:8c:69:b1:42:11:67:60:aa:
         98:7f:a1:d4:63:23:43:57:c1:86:42:a5:d0:f2:ed:1e:1d:03:
         fc:72:71:b7:a6:fb:1d:c0:ba:dd:b2:85:87:67:28:ff:8c:ea:
         61:fb:e8:59:f6:ec:e0:44:a0:30:47:3c:79:d9:36:0a:de:ea:
         a1:ad:29:9f:37:54:6b:34:dd:dc:6d:64:1e:fb:70:0b:13:c3:
         6c:c5:63:2a:e3:36:3d:cb:10:f8:63:95:d7:14:7e:ef:1c:7a:
         27:f9:9f:92:6f:dd:59:6a:97:00:3c:34:de:74:48:55:8a:e9:
         dd:f0:e0:17:58:3c:b1:11:31:c9:37:c6:99:3a:a7:98:db:b1:
         31:a8:ec:8a:1b:96:e4:3c:5d:2f:74:d1:37:c4:87:9f:75:0d:
         a5:f1:8f:0f:ee:c9:01:7b:0e:c8:73:d0:56:37:cf:32:f1:2a:
         15:66:81:17:1f:c4:07:bd:f5:db:92:b0:a4:b7:95:ba:0b:b2:
         9b:33:a6:1a:cb:6a:41:ca:c7:91:b7:3e:55:0f:14:18:c3:46:
         fa:18:2a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:15:19 2026 by rpki-client