Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft
File:                     NQgZehD-pGpxhGMxT-upOUS2JIs.mft (raw, json)
Hash identifier:          tTSppl9AbbgdKpM1pel5maJ/4yYwL0c8hyoauYfnWbs=
Subject key identifier:   CC:AE:CA:89:FD:A9:DE:0B:4C:93:2A:8A:E4:3D:29:64:64:F4:6F:7C
Authority key identifier: 35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B
Certificate issuer:       /CN=A912B666/serialNumber=3508197A10FEA46A718463314FEBA93944B6248B
Certificate serial:       83
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft
Manifest number:          7D
Signing time:             Thu 09 Jul 2026 09:49:28 +0000
Manifest this update:     Thu 09 Jul 2026 09:49:27 +0000
Manifest next update:     Thu 16 Jul 2026 09:49:27 +0000
Files and hashes:         1: NQgZehD-pGpxhGMxT-upOUS2JIs.crl (hash: lVrqQ5ta1yTB/cmWijymv2sK34oCrtRPVEAiRBEqNU0=)
                          2: F084D9AADF1B11F0BDFBE1B1616F56BC.roa (hash: CpQzWFpl+Gw/RBNLdgsUn2ZniQcwnVLZoguxqXTYKyI=)
                          3: 86227722C92A11F0872AB883C4F9AE02.roa (hash: OntMkkZwdIbl5SrNRK1u5UfChSdJYJCs+EVkHCslByQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl
                          rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 09:49:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 131 (0x83)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912B666, serialNumber=3508197A10FEA46A718463314FEBA93944B6248B
        Validity
            Not Before: Jul  9 09:49:27 2026 GMT
            Not After : Jul 16 09:49:27 2026 GMT
        Subject: CN=6a4f6ea8-ec6b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:30:e1:43:9b:d7:2d:7c:e3:ab:c7:3e:3f:cc:
                    93:94:16:06:f4:86:b3:f1:dd:44:d4:35:54:fb:b0:
                    8d:13:ff:c5:aa:d2:c9:09:36:55:e1:4c:77:84:ee:
                    e6:7d:f9:90:66:be:f7:89:91:06:bc:a4:de:a0:7f:
                    05:17:75:dc:8a:9b:e4:25:df:ef:8c:c2:60:0c:ba:
                    89:7a:0e:33:ff:8e:af:8c:e4:ca:ab:fa:9d:98:fc:
                    1d:94:0d:92:36:8e:bf:97:b9:49:45:6a:c9:46:53:
                    1a:e6:62:43:36:b7:a5:ea:1a:95:c9:24:b9:73:3e:
                    23:1f:36:11:2c:9e:21:0a:5c:10:d7:bf:b1:8c:53:
                    35:46:49:ba:90:a5:6a:c5:95:fb:d5:f3:73:ad:2e:
                    24:f4:1b:86:dc:7e:b4:93:70:6d:71:be:e4:83:a1:
                    03:d7:17:5a:8b:66:b3:7d:fa:79:18:71:30:ad:70:
                    93:b2:a4:04:97:f0:43:4d:36:52:a5:42:9f:3d:a9:
                    e1:05:5e:a0:ac:f2:fe:a2:7f:a1:79:94:49:dd:cf:
                    b4:08:47:31:65:9f:6b:d2:a6:f0:0e:b4:2a:a4:d5:
                    fe:98:9b:b3:de:ae:b8:dc:06:36:13:f3:b6:55:cf:
                    83:2d:45:4d:31:96:3e:31:52:27:5a:40:18:dc:e4:
                    c8:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:AE:CA:89:FD:A9:DE:0B:4C:93:2A:8A:E4:3D:29:64:64:F4:6F:7C
            X509v3 Authority Key Identifier:
                keyid:35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:57:08:dd:0f:cd:cb:66:e5:0f:ad:fa:87:78:d4:14:ed:46:
         c9:1b:64:04:92:1e:e9:d3:e0:b0:1c:48:ea:71:36:0e:7d:31:
         57:a4:8a:19:c8:27:1f:87:cd:47:f0:72:d0:3c:2c:56:6a:d2:
         45:a1:b0:a7:0f:93:c9:c8:ab:86:99:11:7f:66:10:2f:71:8b:
         c6:bf:29:8d:67:96:89:f1:61:b6:f0:00:6b:0f:83:6e:ed:7c:
         4c:79:b9:74:e7:79:4b:42:6e:c1:c6:29:e0:99:ee:5a:ff:5f:
         fc:16:69:8d:2e:ff:7b:75:47:8a:68:77:11:96:56:79:70:35:
         82:b5:a9:9d:1a:16:fb:aa:2c:f7:68:68:a4:37:b8:56:b3:c3:
         23:50:c6:32:4e:bb:59:2a:08:d4:6d:f1:52:6f:c8:2c:4a:dc:
         57:7a:92:4e:20:03:c2:ca:7b:d6:3d:b9:c3:37:c7:ef:55:50:
         15:f5:20:47:bd:e2:66:56:47:7f:f5:6a:ce:fa:c2:2e:fa:2e:
         4a:bf:c0:e0:0b:60:c4:82:bd:6e:32:b7:b9:c3:48:f6:36:89:
         ea:02:e0:e2:38:51:4e:08:ea:63:c8:4c:87:a7:78:44:c4:16:
         8c:4c:00:46:f0:05:5c:a0:e9:36:ff:75:09:84:2a:11:5b:54:
         b6:ea:b6:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 20:38:22 2026 by rpki-client