Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft
File:                     FN2GhClPGzOjE6-48OuhyKADeAk.mft (raw, json)
Hash identifier:          GRvV1WrQZdM6Ni40RVNJ0RA5t7q2lCDH+OBCYGf+Fvc=
Subject key identifier:   2D:6C:DA:DA:BD:4B:7A:1B:3C:71:9C:A1:60:05:50:32:92:9D:93:7D
Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09
Certificate issuer:       /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809
Certificate serial:       016C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft
Manifest number:          0159
Signing time:             Fri 17 Jul 2026 06:14:23 +0000
Manifest this update:     Fri 17 Jul 2026 06:14:22 +0000
Manifest next update:     Fri 24 Jul 2026 06:14:22 +0000
Files and hashes:         1: FN2GhClPGzOjE6-48OuhyKADeAk.crl (hash: CywVdhT5Qk2KW0SBppEkFI+cUkIRcuBEth439tcunEM=)
                          2: F7981812F38811EFAC05053AC4F9AE02.roa (hash: EK3pUqrH9H4fquoX1peOlD1L2xEfn/Ee2ouiE9JS3Uk=)
                          3: E9B0903AF38811EF81B8CE39C4F9AE02.roa (hash: SSKa739rT23rOpIYYisZx12/v/K7+nclE63wWrbXXlU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl
                          rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:14:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 364 (0x16c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9160A05, serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809
        Validity
            Not Before: Jul 17 06:14:22 2026 GMT
            Not After : Jul 24 06:14:22 2026 GMT
        Subject: CN=6a59c83f-55fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:37:cc:ce:8e:1b:65:d8:4f:8b:59:85:b4:93:
                    50:83:4d:31:c6:36:35:ca:4f:78:44:d3:6d:57:64:
                    39:87:f9:8d:c2:97:79:90:e9:2a:de:44:d3:62:0d:
                    2f:04:b3:0b:b9:65:a4:45:75:d2:bd:ad:0e:68:c7:
                    9c:a4:55:8c:f5:ef:41:30:b3:6a:be:9b:18:c3:90:
                    57:3f:ee:87:e6:8c:c0:d6:70:68:55:b5:d0:7f:f5:
                    b3:ca:4f:0b:ac:a2:1c:a3:99:e9:50:27:d9:3d:8b:
                    0c:2e:5c:85:88:5b:ff:8d:92:2f:f7:2d:2a:e3:1e:
                    33:4a:ca:6a:67:23:f7:33:48:4f:f7:3d:e0:7a:9f:
                    77:bd:ac:36:f1:7c:d1:1b:30:fb:94:a1:58:6e:ad:
                    4e:b6:c2:ff:26:21:ab:06:dd:3e:1d:83:d5:63:1c:
                    24:7c:7a:a6:fc:0c:0c:93:4e:59:2b:d8:66:cf:03:
                    db:87:57:c9:65:e8:e2:12:ce:7e:e4:42:2d:8f:f6:
                    51:5f:22:8c:44:13:f0:71:b4:b5:82:c8:29:a5:aa:
                    84:9e:25:a3:fd:e2:85:b2:fe:4c:27:24:f3:cf:11:
                    0c:f0:f4:b2:bc:d3:65:50:a6:73:6b:b3:10:56:49:
                    16:cf:e3:0e:3f:f3:5c:f7:59:df:d4:4e:7f:53:dd:
                    5f:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:6C:DA:DA:BD:4B:7A:1B:3C:71:9C:A1:60:05:50:32:92:9D:93:7D
            X509v3 Authority Key Identifier:
                keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:66:bc:83:07:31:53:b1:62:7a:89:1e:71:a3:b8:33:8b:87:
         b5:72:63:cf:81:7f:75:c4:04:c8:5b:92:2a:76:7e:cd:76:ef:
         d0:4d:a1:51:56:9b:3d:20:46:fa:37:5a:86:e1:9d:ae:49:63:
         72:4e:00:3d:05:2f:5d:54:43:59:c5:7e:96:07:7b:d8:15:24:
         c9:ba:f4:99:92:a7:52:01:04:16:0a:41:26:bc:97:3e:b4:ab:
         b1:80:31:29:80:aa:44:2f:57:0c:c7:16:2a:98:72:e2:76:e0:
         46:92:52:6b:77:42:6d:18:c1:f7:15:19:74:e4:8d:c6:cc:63:
         cb:40:23:03:80:39:82:96:bb:84:bf:91:20:82:41:1a:df:3e:
         49:34:94:23:ed:d6:eb:62:98:4b:db:60:eb:c1:0c:85:45:b8:
         6c:33:65:56:32:1e:2a:1e:62:e4:4d:8f:b3:02:ad:d1:cc:20:
         a9:c0:ce:5d:e1:d2:6b:69:58:fd:7c:f5:82:10:94:1f:c8:3f:
         29:1f:21:ce:40:33:8c:07:da:7b:13:89:9d:1e:f8:ab:0d:e8:
         e8:7e:d5:d0:30:53:41:7e:b0:2f:1a:d7:a0:31:cc:71:73:ec:
         ab:78:43:3c:a9:ec:d1:8c:98:fa:0b:ef:c9:a3:1d:45:1a:f6:
         72:cf:46:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:14 2026 by rpki-client