Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft
File:                     iH4RB6g_EXT_fj54CIjbVyO3kls.mft (raw, json)
Hash identifier:          nkj7IRAzlo/NQXYeuDdr6MQtnJiVGj0PsjA+56/0lfg=
Subject key identifier:   E3:F4:57:6E:69:4D:7E:5D:D2:DB:58:D4:F0:0E:44:A2:77:D6:46:C3
Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B
Certificate issuer:       /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B
Certificate serial:       0171
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft
Manifest number:          0164
Signing time:             Fri 17 Jul 2026 06:07:20 +0000
Manifest this update:     Fri 17 Jul 2026 06:07:20 +0000
Manifest next update:     Fri 24 Jul 2026 06:07:20 +0000
Files and hashes:         1: iH4RB6g_EXT_fj54CIjbVyO3kls.crl (hash: nlVBzmLNCGqeaLTETynWSLW4g+nXn2GUytwOSHzW1XA=)
                          2: 10435EE8740511EF93658977C4F9AE02.roa (hash: 6+dRrxPmWRCMlxCcSYhpVStcDeLZfIKjMMz2mDaOI+Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl
                          rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:07:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 369 (0x171)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9155806, serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B
        Validity
            Not Before: Jul 17 06:07:20 2026 GMT
            Not After : Jul 24 06:07:20 2026 GMT
        Subject: CN=6a59c698-a8b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:fc:77:9a:b0:e5:36:ab:80:b6:38:7c:3b:95:
                    b5:53:ea:25:f8:8d:56:63:b8:02:53:01:ec:31:ab:
                    cf:c2:b0:85:66:07:75:6b:fa:45:d6:80:53:0d:20:
                    4d:a5:b5:a4:82:3c:17:0d:3b:0a:0b:38:05:71:6f:
                    8b:c1:14:70:b4:ae:42:90:24:12:cb:2f:3c:32:6d:
                    79:78:5d:38:a1:d2:c4:9b:b7:e7:11:f7:cb:36:c6:
                    12:b7:cc:60:d8:70:fe:f3:4a:1c:60:50:8b:5c:57:
                    a4:d6:79:c4:fa:1f:f0:89:a9:6d:0c:10:7d:8a:c5:
                    c7:66:aa:e6:51:0d:4b:fd:ba:16:f1:82:68:77:9f:
                    c8:02:86:41:79:43:a9:b2:82:ba:47:91:7e:79:0b:
                    f1:84:5b:87:61:cc:31:f7:4f:70:37:54:fe:c8:e9:
                    f0:89:09:10:fe:e6:6f:10:aa:fc:e6:d6:68:78:4e:
                    c2:98:42:55:ce:04:fc:7f:40:68:33:2d:e3:ff:df:
                    79:da:9c:e3:84:e4:d8:50:16:45:93:74:3d:4f:b8:
                    3d:4a:50:5b:a6:f2:ad:06:14:b7:a4:ee:92:4b:76:
                    9d:33:8d:d6:93:65:9d:cb:0f:e2:0a:06:5c:85:95:
                    85:5f:8b:b9:16:1d:32:a9:6e:75:b1:a5:c3:87:4d:
                    43:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:F4:57:6E:69:4D:7E:5D:D2:DB:58:D4:F0:0E:44:A2:77:D6:46:C3
            X509v3 Authority Key Identifier:
                keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:25:4b:9c:51:97:a4:09:68:d4:ad:bc:65:43:08:9e:af:3c:
         1b:0d:93:eb:5b:d5:75:b4:fb:9d:e2:68:f5:bf:31:e1:c8:50:
         f3:43:57:33:3f:2a:7e:77:80:ac:74:f7:7e:64:0a:09:3d:b7:
         bb:9f:0d:4f:6f:0d:4a:95:cf:d3:1c:2f:dd:f5:2b:3e:af:9c:
         ab:b8:1b:fc:c1:a7:0d:25:86:e1:86:1c:1e:bb:0d:d7:83:a7:
         db:ba:9f:69:28:65:a0:36:b8:da:42:8b:16:76:71:2d:e4:53:
         e8:3f:6f:ab:34:8f:6b:f7:49:45:60:97:14:94:6f:69:a3:14:
         93:33:ef:56:0f:c9:0a:6c:db:d1:a8:01:31:bd:d5:ab:1a:df:
         29:cb:83:6f:6d:ad:68:8b:e3:09:ca:55:c0:17:b6:eb:13:34:
         1d:a5:a0:e5:27:f5:17:71:ea:36:61:b7:67:50:d4:c8:95:90:
         12:15:62:65:1b:db:d3:ab:dd:96:b2:c3:1b:5d:16:ad:4c:a3:
         26:ae:c1:08:64:cd:f5:da:e4:5e:37:0a:0a:a6:b7:9b:42:d9:
         cc:3e:2c:1a:fe:cf:53:67:b0:4e:72:a2:f0:37:f6:fb:34:0d:
         a8:21:48:6e:35:07:3e:21:9d:13:09:c6:d7:0a:09:22:db:29:
         15:56:4d:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:16 2026 by rpki-client