Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft
File:                     loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json)
Hash identifier:          Q6Wo1y80JOi/hM6PAHFT1Bwj1c2bVC/S5awhBH8GeVM=
Subject key identifier:   52:7A:C2:30:51:3E:88:0A:A5:BD:6B:53:13:9F:66:1C:F4:BD:CD:1B
Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1
Certificate issuer:       /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1
Certificate serial:       0177
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft
Manifest number:          0164
Signing time:             Sun 05 Jul 2026 05:29:54 +0000
Manifest this update:     Sun 05 Jul 2026 05:29:53 +0000
Manifest next update:     Sun 12 Jul 2026 05:29:53 +0000
Files and hashes:         1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: 1nAlecdhWtRpSUBx6Sl+ljQjET/j7RzSxFiCnbvdD/E=)
                          2: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: rX5GXOpzN7zlqlxxBRKlBapjNOnn5ERzfr6wi0h0HHo=)
                          3: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: cOFr30T5Sd5bA+9nAjs/xIKvrhVxSk/iBKwzS2ubtBQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl
                          rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:29:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 375 (0x177)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1
        Validity
            Not Before: Jul  5 05:29:53 2026 GMT
            Not After : Jul 12 05:29:53 2026 GMT
        Subject: CN=6a49ebd2-9e6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:03:ef:41:2c:ba:2d:db:45:5c:0b:c2:af:c9:
                    dd:8a:62:3e:17:74:40:d7:91:06:99:4b:b4:ce:37:
                    3f:b3:fc:be:8f:5e:ce:23:8d:f8:bf:ab:58:8d:1f:
                    de:67:fe:b2:cf:37:cb:16:4f:a7:68:9c:9a:fe:c1:
                    bf:a7:40:16:35:27:b6:63:ad:c8:af:f2:66:bb:33:
                    57:7d:7a:0f:2b:25:8b:e8:d0:0d:76:fd:b0:04:04:
                    8c:55:12:ba:27:d3:56:01:6f:a5:f2:b2:96:c1:e6:
                    de:1b:f5:a7:c9:27:6a:ec:d1:de:ef:c3:f0:17:88:
                    80:53:fa:23:3c:d0:51:14:27:f6:35:71:28:67:ad:
                    80:00:68:ce:bd:ad:e4:47:ff:7e:a0:4d:5f:dd:bf:
                    36:7e:a7:07:72:59:56:bc:ea:f4:28:8f:7c:22:41:
                    d5:e3:84:30:be:ee:cf:81:3b:a8:78:33:a5:f3:8a:
                    f5:c5:2f:7e:b0:da:dd:22:8d:7b:a3:1a:f9:51:83:
                    e9:9a:80:ef:3f:61:61:82:9b:d1:6e:3b:09:09:05:
                    56:34:58:a3:e7:60:a8:ea:40:b4:ae:37:2b:7f:82:
                    af:6e:65:e8:ba:7c:51:9d:de:da:4c:31:65:db:15:
                    ec:88:84:ed:26:c4:d8:c0:06:0d:a7:d7:34:e9:ac:
                    5f:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:7A:C2:30:51:3E:88:0A:A5:BD:6B:53:13:9F:66:1C:F4:BD:CD:1B
            X509v3 Authority Key Identifier:
                keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:26:6f:1c:86:d8:9a:a8:d8:80:36:d0:af:bb:3c:54:b3:94:
         47:f5:2f:bb:a8:a8:12:3c:d3:46:a9:5e:27:61:f0:4c:1e:61:
         c4:dd:78:60:07:06:05:7b:a3:41:a2:1d:83:6d:79:f3:91:37:
         33:9d:f8:2b:24:57:3a:ab:69:8d:d8:7f:74:9e:ce:8b:49:7f:
         89:de:45:97:c7:1b:69:3e:c3:3e:ca:43:f2:6b:51:8e:b3:8b:
         36:95:5d:08:34:c5:f8:a0:57:5f:2f:c7:d0:59:82:c8:fe:03:
         0a:aa:53:7a:a9:06:e7:58:4e:15:1e:c5:5b:d8:57:10:2e:61:
         e1:c8:22:b7:fe:11:9a:bf:ea:05:9b:1d:ea:d3:87:cd:5f:13:
         6e:9e:62:b0:91:a3:38:7e:2d:6a:47:2f:38:73:84:31:e0:9b:
         19:4f:43:0b:c5:1d:3c:a7:ca:7b:f9:8d:28:29:f2:7c:4a:f5:
         98:af:d1:63:98:4b:fd:9a:35:31:51:bc:48:1d:2c:0d:52:85:
         8a:51:9e:58:d7:fe:99:bb:d3:dd:9c:f7:87:63:ec:b7:92:06:
         10:0b:74:05:ee:4b:c6:d1:94:6f:66:ec:56:20:61:4b:eb:5a:
         2c:e4:71:f9:54:1d:38:05:d2:6a:b2:1a:c6:69:15:ae:a0:4f:
         d4:5a:f8:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:06:40 2026 by rpki-client