Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft
File:                     LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json)
Hash identifier:          5B3P+mQ4jelYeiTgcDXWPm7OKnMT3xG5vezDZ1Hk49I=
Subject key identifier:   5C:76:2B:DD:7C:B9:A1:82:36:D2:80:82:E2:D4:45:DB:3E:4F:CB:3A
Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76
Certificate issuer:       /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76
Certificate serial:       0157
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft
Manifest number:          014F
Signing time:             Thu 09 Jul 2026 06:58:25 +0000
Manifest this update:     Thu 09 Jul 2026 06:58:24 +0000
Manifest next update:     Thu 16 Jul 2026 06:58:24 +0000
Files and hashes:         1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: fSlUB0fdD/z70odbONcCgiDjrhadfGbUc1RnoOlw//M=)
                          2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: BOLBqg6HB+WZgDmASuick5DSh+pZdhSvC9fPbTzN5P4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl
                          rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 06:58:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 343 (0x157)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9165A58, serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76
        Validity
            Not Before: Jul  9 06:58:24 2026 GMT
            Not After : Jul 16 06:58:24 2026 GMT
        Subject: CN=6a4f4690-cdaa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:4d:68:95:da:60:dd:2e:63:5e:d8:93:6a:4e:
                    86:58:07:3e:58:30:f7:c6:d3:0b:28:a0:26:92:f4:
                    f4:7b:59:01:b2:19:4a:9d:72:e5:df:5d:8a:7f:2b:
                    c0:97:c3:7e:bb:94:d6:7b:c4:b6:f7:09:04:21:4c:
                    46:a1:ef:ff:93:58:4c:e6:c0:52:f1:f4:cd:d4:e2:
                    54:db:05:9b:f1:fb:42:b9:27:8b:73:73:fe:22:39:
                    37:86:34:a8:26:bc:9a:81:2f:e5:8e:17:5d:9f:e7:
                    e1:ea:9d:3d:52:3d:fe:be:40:75:88:da:7e:af:31:
                    55:97:64:d2:d5:a9:ef:ae:2f:d5:0a:9a:55:ab:7f:
                    29:61:81:62:8a:de:f8:4d:3b:ae:9c:48:66:bd:ad:
                    bd:fd:95:61:2e:96:87:63:70:0a:17:6a:7a:ec:10:
                    30:c0:8a:20:d7:17:d2:90:be:d2:e3:68:b2:2b:5c:
                    0b:39:ea:4f:ac:12:3b:a9:06:2a:90:33:ea:ed:76:
                    91:05:3d:53:7a:3b:3b:ca:a6:86:23:54:91:de:9a:
                    20:a3:15:d0:23:40:d5:d1:40:58:9a:61:b9:46:b9:
                    e2:0d:54:68:2e:22:e0:02:7f:91:db:ac:0a:1a:8f:
                    1e:54:09:30:fb:32:fa:df:c2:01:cb:6c:8b:02:6e:
                    b9:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:76:2B:DD:7C:B9:A1:82:36:D2:80:82:E2:D4:45:DB:3E:4F:CB:3A
            X509v3 Authority Key Identifier:
                keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         e0:d2:30:c1:11:af:a2:fd:13:93:73:33:47:73:36:2a:e0:69:
         11:f0:85:a5:fe:31:a7:e1:f9:7e:11:a4:f9:88:fc:c1:81:3d:
         54:f9:97:e2:33:18:a8:c2:8d:ca:b7:43:ea:53:c0:d3:63:ec:
         ca:cd:b3:4f:77:08:90:e5:5d:1c:b8:be:1b:5a:ab:da:38:d7:
         95:9c:0a:29:23:47:4a:cc:41:03:dd:30:67:d5:04:ca:fb:80:
         07:8d:4e:6a:d9:d3:8c:16:7b:87:1f:0a:70:0a:69:28:ee:7d:
         5a:37:c3:52:70:91:e9:6e:a7:56:5e:dc:26:49:84:96:e3:ce:
         70:a2:f9:4b:4d:d4:34:91:95:5b:d4:09:4c:50:bd:3a:a4:bd:
         78:09:fe:ba:c0:9f:1c:06:8b:2a:e8:b3:41:25:7c:94:84:ff:
         4d:38:d9:47:d0:1a:e2:09:47:11:71:c6:38:54:83:f2:dd:c0:
         58:84:04:d6:06:3c:66:12:c4:56:63:e8:82:21:01:0b:bf:c2:
         fd:17:92:94:76:f4:c9:cf:93:9c:43:08:b1:b2:cf:8d:12:ca:
         17:78:d7:57:1b:8e:2c:f4:f3:1e:e3:9f:a0:af:f3:14:ff:ed:
         3e:78:7b:c1:50:83:86:01:3f:96:e6:0e:d8:50:36:e2:94:3b:
         88:17:2c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 20:34:05 2026 by rpki-client