Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft
File:                     ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json)
Hash identifier:          ZE2aItqJvSdZviNLc7V8viLJPLIxDoKYnuW5uieckA0=
Subject key identifier:   A2:A9:51:8A:B0:95:B1:98:E5:9E:78:F8:05:9A:E4:35:9F:40:A2:28
Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19
Certificate issuer:       /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519
Certificate serial:       0AEE
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft
Manifest number:          0AE4
Signing time:             Thu 16 Jul 2026 19:36:01 +0000
Manifest this update:     Thu 16 Jul 2026 19:36:01 +0000
Manifest next update:     Thu 23 Jul 2026 19:36:01 +0000
Files and hashes:         1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: 7YidlAj0LTGIp/6CuOn/5+OezhVTall9AtjAn4bDp5s=)
                          2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: v2saofmL0m7GfqQUIwDfIhLfQiWIxApSuK3jNuC63SE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl
                          rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 19:36:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2798 (0xaee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519
        Validity
            Not Before: Jul 16 19:36:01 2026 GMT
            Not After : Jul 23 19:36:01 2026 GMT
        Subject: CN=6a5932a1-070d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:e3:02:e3:73:74:84:bb:ca:69:bd:f3:b1:5d:
                    51:8b:6f:7f:4f:e3:7f:8b:13:e8:0f:ad:68:c3:3e:
                    03:17:93:57:14:83:a6:c5:82:94:c6:98:cc:9a:11:
                    d5:2a:eb:b5:11:ba:ea:ac:c9:ae:c1:24:b3:91:09:
                    4a:f1:28:54:d9:e8:b9:65:6b:d8:80:74:ed:c0:18:
                    5c:48:51:a8:6f:6c:16:70:f3:b9:21:b1:a7:33:f2:
                    03:86:21:78:23:23:a1:bb:12:d3:13:55:ba:70:6b:
                    f4:58:5a:58:d9:87:84:28:19:9f:fa:8c:89:3d:76:
                    db:dd:03:14:a2:27:96:43:28:73:18:73:ac:00:aa:
                    e5:87:c5:7e:5c:6c:ce:9f:df:e9:63:80:ea:5e:48:
                    c2:fa:8d:58:d2:99:d7:d4:d2:f9:a5:83:25:17:51:
                    d4:30:26:3e:ae:a0:fc:c0:b2:79:87:a2:f3:26:db:
                    47:61:e2:c9:63:41:2a:d4:68:4b:bf:c1:b2:ba:88:
                    83:b2:c5:e9:5a:f3:cd:ea:d5:72:aa:d6:09:4b:1f:
                    6e:7c:c5:23:87:c7:6f:67:e4:bb:86:a8:25:f4:5e:
                    d1:3e:b5:af:34:e2:96:2a:23:77:05:13:54:fa:b8:
                    07:44:71:3a:3a:2f:15:22:11:0d:41:03:a1:bd:31:
                    74:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:A9:51:8A:B0:95:B1:98:E5:9E:78:F8:05:9A:E4:35:9F:40:A2:28
            X509v3 Authority Key Identifier:
                keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:7c:37:fb:80:51:2e:84:72:db:59:d4:68:5a:ab:24:2a:fe:
         92:d4:5e:59:12:e3:e4:15:52:f4:b8:c3:df:5f:06:e8:10:af:
         98:8e:f0:0e:4f:f8:ec:96:6f:e2:db:01:60:a3:0e:c0:b2:8d:
         d2:e1:12:9e:96:4b:a9:0d:10:f3:26:dd:a8:ea:55:ab:3f:ca:
         be:0c:d3:15:fd:0a:ea:c1:a1:ab:f5:cc:b7:0e:89:31:9b:17:
         75:00:35:c2:80:a8:00:32:ca:73:ae:ef:16:c0:9a:8a:e8:15:
         a0:23:98:c7:1b:23:c8:6e:b2:d0:8b:a0:53:5f:27:ba:88:0f:
         d2:f0:1e:7e:ec:d9:82:ff:45:d5:41:6a:bb:59:e3:97:fe:9e:
         f1:a1:0e:36:bb:aa:30:29:73:b3:6b:f0:e1:e0:b8:17:82:96:
         81:a1:95:ab:bb:4e:85:df:3a:88:92:0a:3d:6f:4a:c2:a0:0e:
         b7:7a:4f:5d:23:d2:b8:70:4f:60:60:5d:81:c0:04:82:d6:7d:
         d6:56:5f:3b:01:4a:59:09:3e:7b:f5:e4:e7:26:e7:f1:81:c6:
         c3:f2:df:67:64:21:4b:7c:85:b6:62:87:dc:0c:8c:8b:30:3e:
         50:bf:fe:fa:db:6c:af:40:27:d0:af:12:c7:1e:44:f1:e5:f1:
         ed:2a:80:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:47 2026 by rpki-client