Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft
File:                     2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json)
Hash identifier:          8uCaa2PjZY/vuRj4i0yLyd0XeXUTpqv2dU6YVUipX1Y=
Subject key identifier:   2B:78:ED:E2:1B:96:06:EE:EF:24:7E:F5:1B:30:77:91:68:0A:67:2A
Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24
Certificate issuer:       /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124
Certificate serial:       0186
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft
Manifest number:          0181
Signing time:             Thu 16 Jul 2026 23:26:45 +0000
Manifest this update:     Thu 16 Jul 2026 23:26:45 +0000
Manifest next update:     Thu 23 Jul 2026 23:26:45 +0000
Files and hashes:         1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: /35onAPJhvISaTZ7kOzGKYXo7sgTOAEq9ePbw/zPqkQ=)
                          2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: 2/r4oR0iCi4LexUGtmPzKzEWeEmDyv6SAtyEMBATvFM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl
                          rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:26:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 390 (0x186)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124
        Validity
            Not Before: Jul 16 23:26:45 2026 GMT
            Not After : Jul 23 23:26:45 2026 GMT
        Subject: CN=6a5968b5-b67f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:04:c5:8b:a5:05:0d:fa:de:a6:a9:c4:d8:05:
                    13:60:86:2d:10:09:2e:98:1d:3f:e0:99:0b:11:0c:
                    fb:ad:4d:e4:10:60:2e:a0:9c:7b:8a:0f:50:5a:3b:
                    cc:c2:e8:e6:63:0a:42:49:ad:3b:91:19:25:61:4e:
                    8e:3f:5a:b0:21:6e:e8:d2:a1:1f:7c:22:80:a6:e9:
                    df:7e:98:83:aa:91:fa:fe:a0:d6:a1:6f:85:5b:96:
                    d1:cf:2c:0e:74:80:d6:fc:95:18:83:32:a0:70:a3:
                    2e:a6:27:15:e1:6b:43:69:47:0a:82:11:3e:e7:cb:
                    33:9a:5c:55:83:1d:29:d6:31:80:4b:0c:20:91:e6:
                    ac:bc:61:0d:46:81:ac:4e:4b:e0:48:9b:84:26:0d:
                    15:86:69:32:86:69:5f:ef:95:94:16:eb:04:8d:e5:
                    7f:70:60:74:1b:87:a4:3d:c9:84:49:f8:f5:e1:be:
                    f4:b7:11:01:98:92:2b:fd:17:0b:c0:d4:be:e4:75:
                    cf:24:8c:a8:60:de:a5:b7:f5:ed:d8:b7:d1:e4:8f:
                    85:f1:b5:bc:9d:e4:3d:b5:c7:ad:ff:cc:94:08:ba:
                    72:88:84:38:b5:37:61:22:0c:80:f2:d7:13:07:eb:
                    be:5e:c6:b7:75:1b:68:fc:d8:47:a2:7e:9b:69:1e:
                    25:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:78:ED:E2:1B:96:06:EE:EF:24:7E:F5:1B:30:77:91:68:0A:67:2A
            X509v3 Authority Key Identifier:
                keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:6d:e1:29:dc:80:c0:e4:3a:7f:8e:d6:f4:28:58:e8:a0:83:
         95:bb:a2:32:8e:34:51:78:ec:97:7d:d0:9e:e3:27:ca:4f:ac:
         08:48:dc:16:75:32:35:42:5f:39:6c:c8:7c:42:fa:5a:c8:02:
         4b:47:1d:0e:a2:e3:99:c0:eb:d7:7f:1d:4a:51:bd:aa:4d:2d:
         e0:af:03:84:12:21:0b:9d:08:6a:98:4f:db:9a:aa:29:97:dd:
         a7:50:a1:36:a0:16:3f:38:fe:35:cb:03:69:db:31:63:54:f9:
         be:cf:ca:10:a1:a9:0f:f7:12:97:13:75:c4:87:c5:eb:2d:41:
         57:6b:5e:e5:17:86:b2:b4:35:14:b0:f2:cc:55:12:1a:1d:1f:
         fb:a8:d4:15:70:2a:00:62:83:68:53:8c:2f:11:00:b2:5b:08:
         00:62:fa:12:35:c9:cd:b2:e5:99:e6:5c:b8:86:e3:ea:1e:b0:
         f6:2f:0a:ac:7e:c0:86:44:a0:32:7b:0f:2d:46:7a:59:1f:fa:
         4e:7f:81:c1:50:d2:f6:ec:83:52:85:d7:f3:f2:b5:82:d8:74:
         7c:32:b0:89:92:1d:fd:1c:c9:07:6d:49:19:88:aa:6e:c3:25:
         fd:e1:6e:aa:15:0d:0a:3f:c5:b4:e7:28:1a:58:0d:a9:ff:5c:
         e0:66:22:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:41 2026 by rpki-client