Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft
File:                     nB5FqAhMMR3VAEShc2BejuPEzJU.mft (raw, json)
Hash identifier:          9/5nFiWv2N0lOAdy+ZMFGDr+zNn7uyA4jmfJGhWIbLg=
Subject key identifier:   AC:87:96:51:B7:18:01:21:16:A9:09:3A:91:1F:0E:2F:66:F5:1A:D5
Authority key identifier: 9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95
Certificate issuer:       /CN=A91491CC/serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95
Certificate serial:       9A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft
Manifest number:          98
Signing time:             Fri 17 Jul 2026 08:35:27 +0000
Manifest this update:     Fri 17 Jul 2026 08:35:27 +0000
Manifest next update:     Fri 24 Jul 2026 08:35:27 +0000
Files and hashes:         1: nB5FqAhMMR3VAEShc2BejuPEzJU.crl (hash: zSWxMSVPUwlPzsB1F+m1Pf3SG/iKFscD2qFQBWR9A6k=)
                          2: 31E9004E9A0F11F0BC057E7DC4F9AE02.roa (hash: lMXIM574jb3Z0QsqRGCGYyP7C5VSgFPD1a4YIovILSM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl
                          rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:35:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 154 (0x9a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91491CC, serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95
        Validity
            Not Before: Jul 17 08:35:27 2026 GMT
            Not After : Jul 24 08:35:27 2026 GMT
        Subject: CN=6a59e94f-f5c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:7a:43:62:0c:68:bd:2f:f7:b5:ac:e2:7e:d5:
                    f7:95:79:9c:d4:e9:17:77:c8:62:cc:3c:40:28:e0:
                    9b:04:83:5c:21:e2:ee:be:71:51:00:a9:ac:f6:5a:
                    90:be:6f:bf:e5:50:7b:79:30:75:31:c0:d7:13:f6:
                    73:18:1f:a3:1a:f9:bb:08:27:ce:06:91:52:75:5e:
                    32:dc:26:80:62:55:75:51:da:c7:e2:10:5e:e3:74:
                    3a:49:d3:d1:13:1c:79:2d:3e:5e:f1:49:bb:40:2b:
                    af:86:78:06:61:39:ea:91:69:91:3f:29:68:d7:75:
                    87:f3:f5:4a:40:55:15:d2:01:47:b4:c6:d2:2f:63:
                    cf:8c:4d:c5:2b:d5:92:2a:12:1e:a6:ae:c2:25:2a:
                    32:57:75:a9:35:62:8d:ae:cc:c1:a0:2c:7e:48:75:
                    c4:a6:63:a6:d5:9f:c9:7f:55:9f:59:90:b2:5d:7c:
                    5d:9f:50:22:29:4f:e6:9b:28:d6:0c:6e:90:e0:4c:
                    65:57:4e:e5:ac:d8:0a:94:d4:b4:c7:b5:06:7a:9c:
                    d2:9b:1b:38:f3:22:a5:69:a6:e1:9b:ab:14:04:13:
                    28:53:c0:3e:63:a4:07:8e:72:40:70:8f:66:69:9c:
                    e7:4c:ad:6e:f3:a0:b3:3c:6f:ee:f3:58:55:8c:42:
                    d3:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:87:96:51:B7:18:01:21:16:A9:09:3A:91:1F:0E:2F:66:F5:1A:D5
            X509v3 Authority Key Identifier:
                keyid:9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:38:a6:a3:44:f8:c7:30:4a:07:41:05:d7:2b:82:86:75:8d:
         54:a8:73:77:18:e2:da:03:47:5f:2a:2c:04:df:6e:e0:66:52:
         29:9f:d7:80:fc:bc:54:c5:c9:34:66:65:11:e7:c5:35:46:4c:
         d3:68:61:cf:ce:91:04:ee:17:9e:f7:ec:29:58:18:1b:a5:4d:
         f5:86:95:81:35:db:04:38:12:2c:93:c8:3e:e6:35:d3:47:7e:
         22:36:52:8a:75:7e:ef:1b:e9:df:9f:cf:fc:ec:d2:73:71:86:
         b2:fc:d7:c6:ae:e6:34:71:69:99:ce:99:b8:c8:97:2b:4b:0d:
         49:0e:c2:d8:94:09:a2:58:2e:6d:9c:cb:c7:b0:77:69:be:ea:
         12:a4:98:9d:6d:3d:52:7a:88:39:17:e7:77:c8:b3:43:64:54:
         b8:dd:be:d8:57:11:a6:4e:12:4c:12:cf:f9:1c:1a:4f:c1:13:
         c5:5f:ef:fb:95:70:0a:73:f1:aa:cc:91:cb:f0:c7:01:51:71:
         8d:df:e9:fb:51:3c:09:e1:3c:2e:f3:f0:6c:55:28:66:be:1f:
         5e:45:97:fc:33:41:5e:b8:0f:11:38:e5:97:b9:24:11:1d:c2:
         b9:c8:da:2e:14:64:47:ac:78:a1:61:69:be:78:93:3e:c7:17:
         2b:ac:3c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:50 2026 by rpki-client