Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft
File:                     NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json)
Hash identifier:          Ix+7d4/96yacxcfd2wtFsVVULp7eXFc//k97/iT/PqA=
Subject key identifier:   F7:4E:20:78:0D:7C:66:76:15:B1:D5:42:95:6E:04:5D:33:B6:A2:03
Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7
Certificate issuer:       /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7
Certificate serial:       0AEF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft
Manifest number:          0AD5
Signing time:             Tue 14 Jul 2026 19:42:36 +0000
Manifest this update:     Tue 14 Jul 2026 19:42:35 +0000
Manifest next update:     Tue 21 Jul 2026 19:42:35 +0000
Files and hashes:         1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: QT60WPm0TBsDEOBPeTmB3msSy7NsOBgS+7yr5+WQLX8=)
                          2: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: /vzrtqQCcQVSvHagWxuB+gMULE9rVx3mbboeBNca//A=)
                          3: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: Qr7OnU5cwXgYQ6DyrDnDHL3zNQ6VCMQTENBCUIMJfFg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl
                          rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 21 Jul 2026 19:42:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2799 (0xaef)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91577A2, serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7
        Validity
            Not Before: Jul 14 19:42:35 2026 GMT
            Not After : Jul 21 19:42:35 2026 GMT
        Subject: CN=6a56912c-e3cd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:9e:ff:a7:75:e0:69:28:2a:06:4b:be:01:ae:
                    cf:b3:26:02:23:11:97:d8:70:a6:19:d6:f8:7a:a5:
                    86:68:c1:11:98:67:61:e2:a0:7c:a7:71:59:a4:62:
                    59:48:34:b9:12:6d:ff:0a:a1:f6:a9:f3:85:08:00:
                    63:70:77:96:1b:ca:e8:0a:44:28:c3:2c:d4:d5:e4:
                    6a:7d:1d:2e:9b:82:fd:56:f2:07:23:6d:40:92:42:
                    fb:8a:fc:28:0a:f1:a7:ca:61:a1:7d:fb:0a:f8:2a:
                    08:de:24:95:3d:ae:59:1b:44:b3:92:00:9c:da:84:
                    72:9a:c6:4e:e7:71:56:4c:b4:5c:4a:b8:6a:2e:84:
                    0f:cf:02:35:f1:c1:13:86:19:66:46:d6:79:38:f2:
                    7e:18:7e:e6:30:7d:cd:20:66:21:06:90:28:9e:91:
                    58:23:d9:8d:d9:bf:74:e4:97:18:62:17:e6:ea:9c:
                    8a:fa:99:e9:4f:7b:c9:00:09:3a:8d:45:a7:72:16:
                    d2:dd:0a:5a:35:87:d5:b6:ba:78:76:ca:22:05:fd:
                    d3:5d:a9:77:ea:f9:43:08:52:15:91:0c:8c:f1:c2:
                    44:33:6c:bb:e3:22:50:4b:e4:cd:6d:8c:67:4c:64:
                    46:28:38:60:d2:a1:9c:c2:5b:a2:2d:a6:48:21:a9:
                    e9:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:4E:20:78:0D:7C:66:76:15:B1:D5:42:95:6E:04:5D:33:B6:A2:03
            X509v3 Authority Key Identifier:
                keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:2e:31:ba:1e:30:73:36:5f:31:fc:a3:3c:6a:6f:8c:19:38:
         d9:63:6e:0f:a7:dd:f5:f6:c0:8d:e8:d7:92:e0:21:be:a5:28:
         d0:49:54:6c:dd:00:64:22:70:a9:96:2f:a6:1c:9a:e4:a1:7f:
         e4:ff:83:35:95:7b:b9:71:35:3a:fd:c3:6b:28:3c:63:6d:37:
         70:36:cb:a7:7b:01:74:0f:95:64:20:6c:e4:d5:7d:49:f4:27:
         a8:32:e9:e6:78:35:38:17:0e:76:72:39:e1:9a:76:d5:97:1e:
         22:c7:10:d1:01:45:80:bc:5e:f8:40:74:17:9d:16:7f:54:a4:
         0f:21:bf:34:ca:19:b2:91:e6:05:f4:77:ba:85:50:0b:62:96:
         1b:ec:74:4f:d4:00:a2:8a:83:16:2e:87:6f:70:9c:21:aa:d0:
         76:85:e4:b1:13:28:ee:0a:2a:e7:b3:6e:23:6a:ca:d5:2f:42:
         9d:7f:4a:85:39:c1:da:e9:4d:08:e7:66:20:34:17:36:2e:8e:
         7c:c7:03:cd:29:47:38:52:b7:88:02:e0:66:e4:9c:49:66:05:
         ff:e2:dd:87:f0:03:65:7c:b7:2b:94:45:ca:12:f5:8f:2e:47:
         41:dd:f8:71:1f:7a:a3:5d:5d:15:e6:80:98:26:34:ba:6a:9f:
         4b:09:a6:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 01:46:06 2026 by rpki-client