Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft
File:                     hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json)
Hash identifier:          MEPQLh3g+zgiXMPyjXdmpPBKTwAPm/PfkhKMbzgDBb4=
Subject key identifier:   05:77:A5:01:D0:21:EE:46:B5:DD:5C:B6:C8:53:1D:DC:20:39:C1:32
Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC
Certificate issuer:       /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC
Certificate serial:       0206
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft
Manifest number:          01FA
Signing time:             Fri 17 Jul 2026 04:09:05 +0000
Manifest this update:     Fri 17 Jul 2026 04:09:05 +0000
Manifest next update:     Fri 24 Jul 2026 04:09:05 +0000
Files and hashes:         1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: QLqHDIoEEJuadViQDqZWL6nkAhfT+XEsq2Y6R9sPTj0=)
                          2: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: n/+iSZ/XdamVp91QYBtpJ28J2tmDpxBk4yTTzrUUrg0=)
                          3: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: JeqqccV0moh9xl5LOsL93SB6Ep+iaPUP/pq2BF+emVw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl
                          rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:09:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 518 (0x206)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC
        Validity
            Not Before: Jul 17 04:09:05 2026 GMT
            Not After : Jul 24 04:09:05 2026 GMT
        Subject: CN=6a59aae1-3cc1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:f5:28:01:a3:52:92:41:30:e3:96:96:5f:ab:
                    fd:a6:33:23:ae:41:0f:1e:89:5a:c6:d1:4d:c7:75:
                    a1:99:71:d9:f0:19:a9:79:d8:92:4a:35:6a:0f:73:
                    0f:57:45:4f:46:dd:cd:f0:62:5a:0f:d2:cb:54:cd:
                    0b:d8:54:39:a3:4a:ba:21:bd:86:27:ac:c3:5d:70:
                    b4:89:1d:3b:bc:19:5d:9c:c7:02:d5:47:a9:a9:43:
                    70:89:ab:9a:82:82:80:94:f8:4f:db:ab:56:ee:6c:
                    1b:e4:b2:0c:87:83:bb:5e:54:68:e0:3d:46:78:f7:
                    b9:69:07:5c:42:a4:0e:de:85:92:43:c2:5e:5f:f3:
                    7f:3b:8f:7d:40:d1:97:76:bb:6c:76:5f:af:45:10:
                    e4:74:db:8d:43:fd:b3:92:95:74:d9:e0:da:a2:3c:
                    ed:71:2c:11:8c:cd:ca:50:bd:62:8f:7f:c4:a1:ee:
                    32:85:d1:f7:b2:fb:d3:93:df:16:fb:f8:6c:70:85:
                    2e:d1:e1:f9:a9:8c:e3:3f:81:a4:f2:93:9e:19:18:
                    ae:1a:0f:d0:ac:29:49:c6:07:74:1c:86:ac:02:f9:
                    e9:35:f8:43:f0:d7:1b:a1:c3:d5:e0:98:52:e5:d5:
                    19:50:76:7f:65:c7:96:ba:48:19:da:f3:42:9b:23:
                    d6:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:77:A5:01:D0:21:EE:46:B5:DD:5C:B6:C8:53:1D:DC:20:39:C1:32
            X509v3 Authority Key Identifier:
                keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:75:30:5d:fd:9c:85:99:43:65:e7:1d:41:c9:d8:af:f9:a6:
         cc:64:83:f9:94:ae:06:bb:4e:f8:d5:50:11:25:3c:6e:ab:3d:
         b6:6e:2f:8d:e2:f6:2c:b4:c9:17:18:c7:7e:7d:14:a9:b3:65:
         f5:7f:95:a9:90:37:38:3e:a1:a9:28:29:0c:81:e5:89:47:61:
         c6:6e:c3:1a:b4:de:1d:81:ff:cc:b2:c7:d1:04:ce:e6:e0:5c:
         3a:aa:04:cd:4e:9f:67:5b:f7:fe:82:9d:65:cf:91:17:19:0b:
         d9:db:d5:9a:44:23:8f:a3:1e:f2:02:f1:4a:2a:a3:d2:10:0a:
         c8:34:55:85:28:f3:9c:c3:e4:49:19:9d:b7:93:71:c3:a4:57:
         db:6e:e7:8b:fb:29:cf:e5:2d:3b:12:9b:61:83:3d:f2:36:d0:
         a7:b6:48:6a:73:4d:5a:f9:6a:e0:6e:64:a3:b4:a9:cb:50:13:
         29:03:5e:af:11:02:0d:a0:05:3f:34:b7:12:4c:e7:24:35:96:
         a0:7a:a8:11:fc:ec:bb:ba:26:da:2b:d6:b1:59:55:9f:95:76:
         2b:fe:58:ae:6b:8b:e6:5e:92:88:c6:ed:3b:b0:db:fa:52:20:
         03:88:35:9b:8e:04:1b:2d:ce:61:34:3f:3f:7a:08:b2:a7:ad:
         79:d3:8e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 12:24:04 2026 by rpki-client