Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft
File:                     nOkX3Drgxboud8t3WjrZnGhcQGs.mft (raw, json)
Hash identifier:          uFJbOfDdGaGsyZEb/eWUpikTKJeDZx2DthICv39kN/Y=
Subject key identifier:   D9:B7:4B:F3:05:83:E0:97:90:B1:E8:DD:75:3F:63:64:CE:27:E2:89
Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B
Certificate issuer:       /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B
Certificate serial:       F7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft
Manifest number:          F1
Signing time:             Fri 17 Jul 2026 07:33:33 +0000
Manifest this update:     Fri 17 Jul 2026 07:33:32 +0000
Manifest next update:     Fri 24 Jul 2026 07:33:32 +0000
Files and hashes:         1: nOkX3Drgxboud8t3WjrZnGhcQGs.crl (hash: 8Q31Vq7ga5YrCxmTX3p4SzHW+SBKcKF6dmVJjVX1ZF0=)
                          2: 4A3C802012A711F099020A73C4F9AE02.roa (hash: iEuV0+5znqF8f5T5Ps6WIUoKRiKa2jw2dHDVVLuYtWU=)
                          3: 49DEAEDC12A711F099020A73C4F9AE02.roa (hash: 73STUG9MRsTj+UMDTuA4X0z5fGUTYqhKS5W5S7xFgxs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl
                          rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:33:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 247 (0xf7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B
        Validity
            Not Before: Jul 17 07:33:32 2026 GMT
            Not After : Jul 24 07:33:32 2026 GMT
        Subject: CN=6a59dacd-174d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:a8:38:53:42:e7:a6:17:ba:6a:91:0a:b6:78:
                    17:db:82:40:65:0e:7e:98:17:20:0f:ee:4a:5c:2f:
                    ad:fd:82:15:26:26:b1:63:a5:37:71:76:15:c7:bd:
                    e6:10:37:e5:1a:8b:8e:ac:1b:20:82:e9:3f:30:fe:
                    88:d3:a7:c4:e5:8d:3b:02:96:d1:e1:7f:70:ab:62:
                    6a:8e:5b:06:e9:af:46:aa:f1:9c:d1:7d:d3:60:d5:
                    5b:75:e6:ff:0e:61:49:08:f6:84:0e:06:5d:be:00:
                    f8:56:8c:36:c1:4b:12:2b:43:e5:c7:d4:76:ad:d5:
                    e2:6b:ae:d2:37:e5:1a:56:98:d7:12:05:c8:24:85:
                    ea:59:5a:aa:ec:2f:6c:20:82:e3:d5:56:72:89:11:
                    1b:cc:02:6b:ef:b0:49:24:8f:15:0e:55:83:96:e4:
                    9e:15:6b:cf:8d:57:78:08:01:64:aa:ac:2f:da:a2:
                    30:b3:8f:6d:21:f2:5e:81:7b:30:51:65:ef:d0:8a:
                    da:f1:d4:12:c6:cd:d7:12:fb:7c:8c:56:3d:ac:13:
                    25:39:3f:11:4e:3f:9d:e8:a3:03:3a:f4:a5:0e:2b:
                    0d:ca:aa:46:d8:3e:be:1c:eb:03:e1:81:9e:6b:36:
                    43:30:5e:ce:71:d9:0f:d0:18:22:2b:69:e1:84:17:
                    24:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:B7:4B:F3:05:83:E0:97:90:B1:E8:DD:75:3F:63:64:CE:27:E2:89
            X509v3 Authority Key Identifier:
                keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:99:6a:d4:cf:4d:f5:99:16:aa:e4:61:45:d4:54:02:66:22:
         1d:b9:8a:1f:76:64:14:e4:4d:6d:28:1f:f9:fd:5f:f8:18:d4:
         ac:81:67:22:27:b0:e5:35:de:47:1e:d0:66:e8:c2:1a:5d:f4:
         7c:34:c5:d5:af:9d:a3:85:aa:9e:eb:17:fb:ba:4c:cc:b8:e2:
         ad:58:04:7f:52:a3:39:69:bc:78:8f:75:b4:d5:c4:48:88:a8:
         0e:52:56:3e:12:8a:20:3b:4d:10:e8:8f:8a:e3:37:d6:6f:5c:
         c0:d4:98:96:0d:f5:e9:5d:d5:4f:f5:96:4a:65:e3:a4:6d:c1:
         bd:f8:a6:6d:38:43:ef:d3:50:8e:57:0b:58:db:1d:a4:96:68:
         3b:56:5f:19:2a:85:eb:8d:e8:2e:8f:d1:3d:15:07:a5:39:fc:
         55:0f:6d:76:26:a2:0f:01:20:a4:b2:54:fd:51:65:5a:3c:db:
         d6:f7:28:97:2a:9b:7b:74:14:54:14:b8:02:15:73:f3:f0:4e:
         90:33:a8:b4:d3:84:a5:b9:12:23:e2:6f:bf:97:3c:02:f3:f0:
         8c:59:29:87:14:61:6d:5d:4f:eb:43:38:8b:21:46:fd:02:33:
         94:e0:d2:96:26:b6:89:5f:82:61:98:b2:58:69:74:99:07:57:
         f1:a6:f4:6a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjFGM0UxMTAvBgNVBAUTKDlDRTkxN0RDM0FFMEM1QkEyRTc3Q0I3NzVBM0FEOTlD
Njg1QzQwNkIwHhcNMjYwNzE3MDczMzMyWhcNMjYwNzI0MDczMzMyWjAYMRYwFAYD
VQQDEw02YTU5ZGFjZC0xNzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAk6g4U0Lnphe6apEKtngX24JAZQ5+mBcgD+5KXC+t/YIVJiaxY6U3cXYVx73m
EDflGouOrBsgguk/MP6I06fE5Y07ApbR4X9wq2JqjlsG6a9GqvGc0X3TYNVbdeb/
DmFJCPaEDgZdvgD4Vow2wUsSK0Plx9R2rdXia67SN+UaVpjXEgXIJIXqWVqq7C9s
IILj1VZyiREbzAJr77BJJI8VDlWDluSeFWvPjVd4CAFkqqwv2qIws49tIfJegXsw
UWXv0Ira8dQSxs3XEvt8jFY9rBMlOT8RTj+d6KMDOvSlDisNyqpG2D6+HOsD4YGe
azZDMF7OcdkP0BgiK2nhhBcknQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNm3S/MF
g+CXkLHo3XU/Y2TOJ+KJMB8GA1UdIwQYMBaAFJzpF9w64MW6LnfLd1o62ZxoXEBr
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUYzRS8zMzlFREU2ODEw
RTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hib3VkOHQzV2pyWm5HaGNR
R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FHcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
MUYzRS8zMzlFREU2ODEwRTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hi
b3VkOHQzV2pyWm5HaGNRR3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAbJlq1M9N9ZkWquRhRdRUAmYiHbmKH3ZkFORNbSgf+f1f+BjUrIFnIiew5TXe
Rx7QZujCGl30fDTF1a+do4WqnusX+7pMzLjirVgEf1KjOWm8eI91tNXESIioDlJW
PhKKIDtNEOiPiuM31m9cwNSYlg316V3VT/WWSmXjpG3BvfimbThD79NQjlcLWNsd
pJZoO1ZfGSqF643oLo/RPRUHpTn8VQ9tdiaiDwEgpLJU/VFlWjzb1vcolyqbe3QU
VBS4AhVz8/BOkDOotNOEpbkSI+Jvv5c8AvPwjFkphxRhbV1P60M4iyFG/QIzlODS
lia2iV+CYZiyWGl0mQdX8ab0ag==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:31 2026 by rpki-client