Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft
File:                     NU4yud4OVpoZUal7kyAZ9oijUKw.mft (raw, json)
Hash identifier:          8LFQf/yUM177ubGNlkIzVD0OMX1MO2bNksuimDNHhok=
Subject key identifier:   65:03:15:F5:A3:B5:35:89:CD:B4:DB:43:BF:2C:C8:8D:FB:27:03:5F
Authority key identifier: 35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC
Certificate issuer:       /CN=A912442A/serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC
Certificate serial:       D0
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft
Manifest number:          CC
Signing time:             Fri 17 Jul 2026 01:18:54 +0000
Manifest this update:     Fri 17 Jul 2026 01:18:54 +0000
Manifest next update:     Fri 24 Jul 2026 01:18:54 +0000
Files and hashes:         1: NU4yud4OVpoZUal7kyAZ9oijUKw.crl (hash: hgr+7dHB+CEBPssT8Ycvrkl3HVk5CGpMg3BdBCpadhE=)
                          2: 19D89DB656F311F083F53B5DC4F9AE02.roa (hash: sqaF/L7BkPPx01J6zjZJOWgkKgNdgKGuBKXecAoTrY4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl
                          rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:18:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 208 (0xd0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912442A, serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC
        Validity
            Not Before: Jul 17 01:18:54 2026 GMT
            Not After : Jul 24 01:18:54 2026 GMT
        Subject: CN=6a5982fe-e4ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:b6:a5:cc:f1:6c:2b:2e:07:17:a4:f8:22:7a:
                    25:cb:ee:a0:b4:25:c0:5d:56:4f:d3:cd:cd:00:e1:
                    81:96:5b:41:15:fc:0c:5f:0c:10:6b:4e:ec:40:9a:
                    e9:49:95:08:c1:4e:43:f8:d1:01:5b:81:2a:1a:ca:
                    72:3b:8b:79:39:14:4e:58:ae:d2:47:9a:60:6c:8a:
                    26:0a:82:a1:53:8b:4d:0d:f8:15:a0:28:57:aa:e5:
                    79:1a:7c:bb:e4:81:4f:a6:87:88:ff:51:30:82:34:
                    40:f2:34:df:bd:29:a4:43:18:e8:58:81:b4:74:d8:
                    3f:f0:7c:51:92:c6:3a:53:c5:32:8c:d6:85:33:13:
                    b3:9c:93:e0:77:f9:d2:c6:98:a4:86:dd:cf:ef:82:
                    f6:4f:36:83:96:d7:a0:72:e2:70:df:a3:71:dc:c1:
                    6f:c2:d1:ba:33:eb:4e:56:c2:1f:c6:b3:c3:24:52:
                    a2:d7:b4:67:da:3a:18:cb:1b:8c:66:88:e9:03:43:
                    1a:b8:f9:24:84:c0:f1:36:2a:96:15:28:9a:0d:87:
                    3c:19:50:dd:99:1f:4b:51:c5:88:49:26:4e:4f:de:
                    a6:26:ff:cb:74:b2:28:8d:eb:c6:f7:c1:cb:23:8f:
                    81:2a:e4:f2:2b:c6:98:d6:a9:78:b9:86:fd:2e:ec:
                    a2:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:03:15:F5:A3:B5:35:89:CD:B4:DB:43:BF:2C:C8:8D:FB:27:03:5F
            X509v3 Authority Key Identifier:
                keyid:35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         e9:24:c0:74:1a:0f:25:75:a2:ca:0b:59:45:d5:2e:19:77:f8:
         b8:8d:53:27:5b:d3:49:91:58:e8:79:61:c2:5b:aa:4b:2e:14:
         39:02:a1:91:b9:db:ea:44:aa:3d:af:30:ef:25:81:c8:66:dd:
         84:00:7c:2c:ef:6e:47:ba:7c:d1:3a:3a:54:e2:8b:88:63:51:
         fc:9b:48:c2:d8:d2:04:1c:6f:17:87:ad:41:c1:44:ad:e6:66:
         2d:4e:7a:85:16:77:cc:42:18:7e:e8:dd:3e:da:b2:c3:c0:39:
         bb:63:81:e5:28:4d:89:5a:16:f1:89:f2:8e:49:f9:79:cf:ac:
         c4:c6:bf:61:53:08:6a:e8:cd:7a:72:f3:54:9e:d5:68:19:e2:
         0a:8d:22:66:8a:1b:bf:d3:07:bd:5d:22:47:a8:db:25:7d:b7:
         e5:dc:57:00:5d:f0:9a:d9:7d:16:b1:7e:e3:59:4e:4e:18:69:
         af:f0:7e:4e:2a:87:88:77:5c:0f:07:71:b8:db:0b:7d:dc:15:
         c2:ba:67:96:93:9f:d1:3e:8b:65:29:f7:02:fe:a2:5f:61:5d:
         02:f7:02:19:e7:f1:5c:38:4a:5f:5e:88:c6:65:6d:64:85:2a:
         f8:14:90:97:e9:5f:d8:3c:45:6f:26:a4:c6:c7:6e:94:23:4d:
         ad:87:1b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:13 2026 by rpki-client