Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft
File:                     piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json)
Hash identifier:          hC68d2QkhADOwqj7qvk04EIMiNG7ZtZXy+MsA9P+4ds=
Subject key identifier:   0F:D7:DE:2C:53:55:C7:BB:1E:62:2F:53:0B:E9:7B:6F:08:55:FB:71
Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04
Certificate issuer:       /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704
Certificate serial:       0146
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft
Manifest number:          0162
Signing time:             Fri 17 Jul 2026 06:40:25 +0000
Manifest this update:     Fri 17 Jul 2026 06:40:25 +0000
Manifest next update:     Fri 24 Jul 2026 06:40:25 +0000
Files and hashes:         1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: Kp8NdJAfB72XRAbCr1N5BpDT/euq9cVO4es4SQk2IDQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl
                          rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:40:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 326 (0x146)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704
        Validity
            Not Before: Jul 17 06:40:25 2026 GMT
            Not After : Jul 24 06:40:25 2026 GMT
        Subject: CN=6a59ce59-5f8d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:af:64:b4:64:e2:39:72:f9:b2:04:71:98:90:
                    65:f2:7a:b7:14:12:1c:a0:ef:17:33:ea:9e:76:a6:
                    36:11:5d:a9:1b:32:ce:20:8f:2c:53:c1:ca:83:61:
                    e9:96:2e:19:4a:80:00:7f:04:f9:14:d3:d1:8e:4d:
                    57:cf:56:cb:01:93:dc:e6:2f:27:07:e2:0c:ea:9a:
                    11:f8:7a:20:95:ef:00:3f:8d:3a:57:0c:40:53:3a:
                    b0:e0:8a:20:50:bc:ef:cf:8d:e8:1d:e2:fb:cf:c2:
                    ea:d2:d3:c0:8f:73:ab:44:bb:95:c5:f0:8b:9a:18:
                    ab:09:26:75:c4:a7:81:32:e5:49:e4:9a:08:f4:44:
                    78:e7:21:63:10:2a:e0:df:16:b3:e5:c6:0e:cc:03:
                    60:96:37:4d:7e:00:57:70:33:1c:77:6d:6e:d1:46:
                    61:28:f6:a6:dc:54:4c:58:2a:96:e8:f0:1e:9b:c7:
                    b2:68:3a:1f:a4:01:24:ad:2a:52:a7:d1:49:33:24:
                    35:0c:7e:d2:82:44:db:e9:6d:93:9a:11:0d:c8:9d:
                    6b:95:b9:b1:75:61:0b:92:d7:01:89:fc:22:71:20:
                    4f:5b:2f:da:8d:af:06:cd:81:2b:a9:d0:48:55:dd:
                    36:7c:fa:3f:84:9c:0b:37:02:a4:da:05:fe:94:dc:
                    9a:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:D7:DE:2C:53:55:C7:BB:1E:62:2F:53:0B:E9:7B:6F:08:55:FB:71
            X509v3 Authority Key Identifier:
                keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:0a:d1:e4:45:e7:da:fe:e3:75:09:60:e3:a4:21:d3:5b:93:
         dd:b9:4d:ad:22:d7:05:bf:36:73:58:78:64:27:79:c1:92:6c:
         d8:cd:4b:c8:fc:ad:b2:ed:f0:ad:5c:39:cf:28:be:8f:38:d2:
         35:d8:1b:a1:2b:68:6e:0a:ce:72:e2:26:9a:78:c9:a4:7c:8e:
         26:60:83:bd:2d:47:1b:f7:eb:7c:78:c6:c3:7b:31:e2:0f:a0:
         c0:a1:d8:c9:21:8d:18:4e:79:09:4a:65:a2:75:ab:4b:70:03:
         a9:ea:55:92:da:d2:7c:14:55:60:ad:94:11:4c:51:55:45:15:
         c9:68:7e:52:04:24:7e:47:bc:c0:66:ac:ac:30:d5:33:61:c5:
         95:58:b8:95:8c:d4:18:25:35:19:72:b6:63:30:9e:83:51:e2:
         a5:1f:53:41:30:e7:a7:dd:7b:32:ee:39:2f:91:db:2b:a4:7e:
         70:80:7e:84:bb:fe:eb:0f:37:bf:c3:7f:49:c0:77:68:6a:f5:
         99:52:00:f4:a6:86:5d:18:18:53:56:8c:d7:33:99:f0:bd:cd:
         eb:4f:15:fc:9f:b8:08:87:31:a3:b0:52:00:76:9a:cc:b1:3f:
         67:05:fa:78:bd:fe:f2:13:13:5b:f7:2e:fc:e3:85:81:52:2f:
         59:31:2b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:24 2026 by rpki-client