Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft
File:                     1gA1BzfqQktAGySBBT0rwpFsutE.mft (raw, json)
Hash identifier:          43Jjy7/a5QDRg14ZFCSWjxPFlTSAo3g6j3/sqBNZ5/Q=
Subject key identifier:   69:67:60:EF:DB:8C:FA:3B:75:2D:7C:9F:BE:0B:00:7F:76:18:1B:B0
Authority key identifier: D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1
Certificate issuer:       /CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1
Certificate serial:       0176
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft
Manifest number:          016C
Signing time:             Fri 17 Jul 2026 05:59:55 +0000
Manifest this update:     Fri 17 Jul 2026 05:59:55 +0000
Manifest next update:     Fri 24 Jul 2026 05:59:55 +0000
Files and hashes:         1: 1gA1BzfqQktAGySBBT0rwpFsutE.crl (hash: xnDWhItSaN53j5BzN+rCWml4khBhoFim6AialLewrIk=)
                          2: FD557922606A11EF8B9F6820C4F9AE02.roa (hash: XYcxvXsIZf8Fuuj3PCiap/sXv4cR9z5b00T5aM5YJhY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl
                          rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:59:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 374 (0x176)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9154973, serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1
        Validity
            Not Before: Jul 17 05:59:55 2026 GMT
            Not After : Jul 24 05:59:55 2026 GMT
        Subject: CN=6a59c4db-5962
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:97:66:77:76:b1:7c:18:cb:55:55:38:2c:b6:
                    5b:f4:f6:62:32:10:dc:69:d5:f9:82:1e:61:b5:4f:
                    6f:f7:8a:67:35:27:1c:4b:82:50:a9:2d:b0:27:49:
                    39:35:86:4d:ea:80:bf:7e:96:29:7a:42:1d:7d:f2:
                    46:bf:30:22:ea:68:45:fd:e7:70:a3:6b:d8:13:fd:
                    92:2b:a4:6d:cc:f1:d3:a6:ba:4f:f4:87:23:8c:d2:
                    e8:67:02:f2:84:98:fa:21:84:a5:90:b6:33:ff:3a:
                    e6:c4:46:7f:fe:55:eb:4e:63:13:32:cf:f6:92:2d:
                    7f:0e:0e:0c:6f:7f:d4:55:c6:f1:ac:34:a8:90:3e:
                    7b:a6:51:b2:c2:66:2e:a9:9f:b9:53:e7:62:da:29:
                    55:32:24:60:af:4e:66:46:b1:e9:75:b5:e2:eb:ea:
                    41:8c:1e:8d:51:73:e2:64:bb:80:4f:14:89:71:fe:
                    a0:b6:c9:7e:e2:b6:f1:9b:32:27:a3:6d:77:c1:cc:
                    74:d2:71:c9:86:5e:58:f2:2c:32:9c:47:80:88:f4:
                    d8:fb:0e:67:73:6c:47:1f:68:88:0d:3b:e7:e2:db:
                    89:9e:50:ca:cd:1c:c8:76:7d:28:74:72:01:23:a4:
                    90:a6:87:50:a2:36:0b:a5:30:74:cd:79:02:7b:32:
                    b9:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:67:60:EF:DB:8C:FA:3B:75:2D:7C:9F:BE:0B:00:7F:76:18:1B:B0
            X509v3 Authority Key Identifier:
                keyid:D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:8d:7f:da:64:c0:8d:c0:da:6c:37:ec:da:93:ee:99:89:82:
         7b:8e:dc:2e:15:1c:10:cd:f6:73:65:02:e5:03:d6:66:48:2a:
         36:fe:a1:62:52:a6:9c:cd:60:76:6b:84:76:0f:c0:d1:64:a4:
         9c:b3:4d:51:89:b4:34:f5:4d:13:f4:c4:62:44:41:0c:19:b1:
         ce:66:fa:f2:96:c3:c9:36:57:ce:4d:4d:11:f4:cd:3e:f3:83:
         2b:db:52:66:de:df:d5:f5:1a:1d:ec:51:90:85:25:a3:ce:a6:
         b4:ec:77:42:4d:ef:a5:66:f1:5b:04:b0:91:a1:65:84:a8:09:
         58:9b:35:e8:8f:82:7f:c4:6e:c8:3f:4e:2c:bd:83:52:36:d8:
         61:8d:98:f0:59:8b:37:1b:5e:c5:87:86:8e:68:48:4f:93:d4:
         04:bd:1b:4b:4c:ad:7b:de:ec:4f:cc:1a:28:3b:4a:79:b0:40:
         92:28:23:a3:bf:ed:26:56:db:90:1e:4b:f8:69:b6:76:3c:87:
         d4:e2:b3:4b:7b:18:40:8d:a6:bb:b2:c3:70:7d:96:fc:d3:55:
         bf:0c:ed:df:38:c1:12:25:fb:ee:0c:c9:d0:05:05:33:85:22:
         e8:2e:62:1e:7c:73:9f:bb:23:fb:03:19:4b:60:a9:9a:e8:87:
         4a:5e:da:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:08 2026 by rpki-client