Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft
File:                     NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json)
Hash identifier:          C8sISrwr9NLBVGbmUeTp2DwvHgI5FVADv7kLsp/3opE=
Subject key identifier:   A8:03:67:70:78:54:20:43:01:27:73:F0:E5:D2:AB:07:F5:AD:9A:74
Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5
Certificate issuer:       /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5
Certificate serial:       0390
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft
Manifest number:          0388
Signing time:             Fri 17 Jul 2026 01:25:45 +0000
Manifest this update:     Fri 17 Jul 2026 01:25:45 +0000
Manifest next update:     Fri 24 Jul 2026 01:25:45 +0000
Files and hashes:         1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: kqZFElAtKDdFmd/Y7Av0TLjJinuGkAeB3mbmzr33Vu4=)
                          2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: QwQkgtoePZKxFtkm4cXFgAdorKM4wsMJHhlleIVTFws=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl
                          rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:25:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 912 (0x390)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5
        Validity
            Not Before: Jul 17 01:25:45 2026 GMT
            Not After : Jul 24 01:25:45 2026 GMT
        Subject: CN=6a598499-835e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:0c:af:60:af:dd:da:12:a7:7f:c9:e7:32:05:
                    82:bd:1c:aa:dd:75:26:f0:7b:1a:fb:a0:48:46:90:
                    ef:a3:be:a7:5c:65:93:25:d3:a8:7b:16:2f:ce:d4:
                    1b:20:0d:0a:de:0d:2e:96:72:4a:cb:a7:56:c7:87:
                    86:46:d8:0b:79:a3:ac:17:54:21:ed:85:ac:c5:71:
                    70:5a:f2:a7:21:98:0a:2a:7a:2a:3e:74:cf:1b:7c:
                    a6:a6:b4:62:11:b1:f2:56:f4:11:60:ee:cf:da:8b:
                    53:2f:34:48:76:0c:25:52:39:5c:bc:ea:42:4a:0e:
                    3e:07:0f:5e:76:c0:96:6c:60:13:9c:3d:b6:e0:4f:
                    ba:66:7c:01:00:a8:a2:3b:46:a6:d9:38:89:d0:2a:
                    66:83:d7:98:00:91:d7:62:bd:eb:d5:c3:a7:ce:e8:
                    99:7e:c4:bd:8f:53:7f:23:20:81:d5:bc:e2:0c:a7:
                    0e:d1:7e:15:7c:37:27:4f:a8:dd:21:fb:78:85:44:
                    dc:64:8a:5c:ad:a7:34:2e:0d:6b:e9:93:2a:a1:8c:
                    31:72:5f:a1:27:f5:d3:0a:74:50:1f:cc:e2:e7:f1:
                    87:11:45:18:09:eb:c8:e6:bb:14:0f:d4:a0:62:98:
                    a7:18:f8:f5:54:bd:1f:18:44:8f:50:26:6b:fa:41:
                    97:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:03:67:70:78:54:20:43:01:27:73:F0:E5:D2:AB:07:F5:AD:9A:74
            X509v3 Authority Key Identifier:
                keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:4a:51:fd:0a:1d:fd:09:e0:7c:bf:a7:c4:b7:6a:59:a7:89:
         91:16:4d:7d:ef:e0:6c:18:9c:cf:5a:60:80:d4:42:28:ac:09:
         bc:dc:75:d2:6f:29:da:dd:39:9a:08:5d:14:b3:ca:73:c5:e2:
         4e:28:0c:e1:66:37:1e:95:22:aa:fc:32:46:f8:d7:28:9a:d8:
         7b:35:3c:64:d0:b2:47:5e:80:0a:bd:ff:b6:46:28:d5:f0:3b:
         8b:de:0c:f2:07:23:c7:16:d5:38:ad:d4:35:33:09:db:1b:12:
         7c:48:3b:b0:63:fc:a9:6e:07:c5:dd:e8:5b:98:8b:30:91:00:
         6e:34:cc:70:29:c3:69:73:a6:80:54:0e:8b:3d:82:9b:a2:c7:
         1d:fb:99:50:9d:b2:0a:74:e9:b6:a3:ca:7f:7c:57:a4:56:cd:
         f8:73:8b:f1:aa:31:e2:5a:89:2d:32:57:e1:d4:26:3d:e5:9d:
         da:a8:fe:ca:65:9c:48:2d:6f:fd:34:87:fd:3e:58:4c:a9:b6:
         74:02:f7:dd:12:a2:05:a9:a7:e2:03:ee:4b:24:2b:8c:e9:f0:
         61:09:54:50:67:fb:0c:14:7a:83:57:42:dd:bf:9b:e2:fa:76:
         42:80:6b:8c:07:5e:fd:de:f8:05:da:55:28:80:be:8c:9c:a8:
         71:2d:2d:6b
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw
RkE2NzRCQjUwHhcNMjYwNzE3MDEyNTQ1WhcNMjYwNzI0MDEyNTQ1WjAYMRYwFAYD
VQQDEw02YTU5ODQ5OS04MzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqAyvYK/d2hKnf8nnMgWCvRyq3XUm8Hsa+6BIRpDvo76nXGWTJdOoexYvztQb
IA0K3g0ulnJKy6dWx4eGRtgLeaOsF1Qh7YWsxXFwWvKnIZgKKnoqPnTPG3ymprRi
EbHyVvQRYO7P2otTLzRIdgwlUjlcvOpCSg4+Bw9edsCWbGATnD224E+6ZnwBAKii
O0am2TiJ0Cpmg9eYAJHXYr3r1cOnzuiZfsS9j1N/IyCB1bziDKcO0X4VfDcnT6jd
Ift4hUTcZIpcrac0Lg1r6ZMqoYwxcl+hJ/XTCnRQH8zi5/GHEUUYCevI5rsUD9Sg
YpinGPj1VL0fGESPUCZr+kGX0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKgDZ3B4
VCBDASdz8OXSqwf1rZp0MB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5
MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T
N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5
b01WV1JsM1g2ZXdQcG5TN1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEApUpR/Qod/QngfL+nxLdqWaeJkRZNfe/gbBicz1pggNRCKKwJvNx10m8p2t05
mghdFLPKc8XiTigM4WY3HpUiqvwyRvjXKJrYezU8ZNCyR16ACr3/tkYo1fA7i94M
8gcjxxbVOK3UNTMJ2xsSfEg7sGP8qW4Hxd3oW5iLMJEAbjTMcCnDaXOmgFQOiz2C
m6LHHfuZUJ2yCnTptqPKf3xXpFbN+HOL8aox4lqJLTJX4dQmPeWd2qj+ymWcSC1v
/TSH/T5YTKm2dAL33RKiBamn4gPuSyQrjOnwYQlUUGf7DBR6g1dC3b+b4vp2QoBr
jAde/d74BdpVKIC+jJyocS0taw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:34 2026 by rpki-client