Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft
File:                     nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json)
Hash identifier:          JpA1I9VQxmTu3lk6tqWqwwhT6Kt480raLICOjL2TEP8=
Subject key identifier:   69:8A:3A:DF:53:A9:BC:6B:96:6C:54:7E:D4:42:EF:8E:AC:AA:A9:64
Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF
Certificate issuer:       /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF
Certificate serial:       0825
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft
Manifest number:          081B
Signing time:             Thu 16 Jul 2026 21:30:51 +0000
Manifest this update:     Thu 16 Jul 2026 21:30:50 +0000
Manifest next update:     Thu 23 Jul 2026 21:30:50 +0000
Files and hashes:         1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: Md5R+ByoV62bx2qiOWtHacWuNxFwqm/nW1obohUoScQ=)
                          2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: pv+Z3nYrrzxoESGY4e/aJmMCDLaqcQjYTIDQwPuKCpI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl
                          rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 21:30:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2085 (0x825)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF
        Validity
            Not Before: Jul 16 21:30:50 2026 GMT
            Not After : Jul 23 21:30:50 2026 GMT
        Subject: CN=6a594d8b-c446
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:d5:e8:be:7f:21:e3:25:8b:e0:1e:5a:f6:eb:
                    85:e9:16:b4:13:d7:2c:c7:5d:fc:26:5d:e0:a4:41:
                    81:f8:00:42:b3:15:35:32:51:99:ab:0c:8f:cd:1b:
                    ce:72:d4:5d:ca:24:90:5d:56:7f:c0:b3:45:8f:5c:
                    b3:79:49:bf:45:3d:c5:69:e4:f2:2c:87:f7:9c:de:
                    b2:e8:f2:e3:f9:b9:d9:77:e7:e0:16:60:59:1f:27:
                    8c:fc:ff:3a:da:15:18:4f:50:b9:3d:70:92:fe:77:
                    f9:6d:df:86:a4:5c:ee:aa:3b:f1:31:9a:df:58:99:
                    d4:05:a9:92:fa:2f:5c:ee:d2:28:7f:53:4f:d0:a4:
                    3d:92:b7:42:5d:98:15:e9:6b:b5:f0:a2:1a:63:d0:
                    fd:c8:a8:41:2f:c6:81:cc:db:f9:25:82:fd:84:5f:
                    25:85:31:e7:0d:b8:f7:8c:a2:40:88:59:96:ce:82:
                    da:8e:d7:50:04:2b:c3:0b:72:7e:e7:f2:6d:9f:20:
                    58:d7:9c:06:6c:f6:ad:0e:1f:61:73:9f:72:bd:7e:
                    12:53:14:4c:e8:d0:06:33:45:9b:36:a2:43:ee:1b:
                    40:df:8f:58:c6:c1:94:c9:50:ac:4e:5f:8d:7b:56:
                    7b:ac:71:c8:f0:02:bd:e6:60:44:81:92:ea:16:01:
                    3d:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:8A:3A:DF:53:A9:BC:6B:96:6C:54:7E:D4:42:EF:8E:AC:AA:A9:64
            X509v3 Authority Key Identifier:
                keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:e1:79:18:a4:e2:00:c3:22:5d:88:6b:10:34:c1:14:19:f1:
         c1:3d:1b:24:aa:53:09:27:62:34:fd:6b:4d:30:bf:43:71:d1:
         a3:7b:72:b5:24:17:a8:a7:d3:ff:55:0e:c5:2a:f6:46:13:83:
         b6:d9:f6:8b:49:57:a7:2e:26:ba:59:ef:5f:29:9b:58:76:3d:
         da:ed:63:d9:36:fc:48:5f:b7:ec:be:99:97:97:18:f3:6d:f9:
         7e:4f:86:35:02:09:f8:93:a9:b9:c4:2f:ef:29:48:73:17:51:
         da:be:4c:22:7b:e6:3b:da:c1:0c:59:25:f7:3e:40:c2:cf:d5:
         be:20:a3:22:d4:68:09:d9:e5:f2:ab:b2:ad:54:55:2b:ff:91:
         97:10:b7:6d:97:82:33:f3:19:7d:a1:af:04:3a:a5:0d:9e:93:
         42:99:ca:c3:ec:b1:34:10:9b:01:bd:93:b2:50:ca:ea:cb:3c:
         ec:ed:be:75:86:f0:b7:b0:82:b2:4c:64:52:cd:b5:3c:7b:95:
         28:3b:32:a4:d2:1b:29:08:f4:7e:f1:f4:9f:e6:2d:79:0a:85:
         36:b7:de:e9:36:2b:8a:06:07:56:fe:79:6b:f8:14:90:7e:e6:
         d8:4d:4f:79:83:1f:81:69:19:5f:05:81:fd:e5:b3:b9:40:83:
         6a:e9:3c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:00:46 2026 by rpki-client