Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft
File:                     NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json)
Hash identifier:          Qo33D92qRulvsiCTwHQwcll+daKwRR2dk7CQKYLfcjs=
Subject key identifier:   4B:63:4B:32:E2:3B:AB:D0:1F:B9:01:59:F8:CA:B4:38:10:5E:BB:C8
Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0
Certificate issuer:       /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0
Certificate serial:       01D0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft
Manifest number:          01C1
Signing time:             Fri 17 Jul 2026 04:58:15 +0000
Manifest this update:     Fri 17 Jul 2026 04:58:15 +0000
Manifest next update:     Fri 24 Jul 2026 04:58:15 +0000
Files and hashes:         1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: /fgpImNh3c/FZSn1ifmg+B0kIN4TaGJS3wPwensa+Ik=)
                          2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: 3F15rH6YOfm7yUgvAU7B83xmF5fOsfIgjewKISbkfSo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl
                          rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:58:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 464 (0x1d0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0
        Validity
            Not Before: Jul 17 04:58:15 2026 GMT
            Not After : Jul 24 04:58:15 2026 GMT
        Subject: CN=6a59b667-c74b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:78:6b:11:62:7c:01:87:dc:13:a9:14:e7:25:
                    dc:19:95:a4:29:b1:a9:7c:ed:21:9e:2f:97:18:89:
                    d1:1f:7e:e2:0b:dc:50:45:5e:79:1a:90:8b:47:cd:
                    cb:4b:f1:92:74:2d:e8:62:d7:87:b5:7e:95:62:28:
                    92:a7:8b:06:e6:75:50:a2:8a:43:73:23:da:34:71:
                    59:0a:d2:fe:79:60:9f:75:e6:64:e5:20:5f:07:8d:
                    03:fc:05:82:37:a7:84:49:55:51:b7:b6:94:2b:4e:
                    84:ef:e5:cf:4f:df:ef:aa:70:be:98:90:d5:fb:a5:
                    fa:a0:d9:57:39:1a:3e:94:76:82:b7:e9:80:25:83:
                    b3:ac:78:22:8d:cf:b5:cc:ef:01:8f:11:3f:9d:af:
                    5a:60:17:a7:32:1f:4b:c3:06:a0:11:51:d5:33:ff:
                    2a:31:c9:7b:48:cf:14:dd:a7:ad:fa:1d:26:b3:ec:
                    b1:05:7f:0e:9a:f9:01:a8:b4:9b:94:b6:dc:b1:e4:
                    f7:c4:9d:9b:dd:ce:ce:51:98:8d:5a:9c:0e:c7:92:
                    19:f3:0d:0f:2e:d4:eb:61:83:e2:b2:1e:24:d0:ae:
                    65:86:f3:2e:cf:89:d0:04:2a:27:27:81:8a:bf:bc:
                    3d:4f:9f:b1:7d:86:4d:fc:28:0d:22:8f:92:0a:e3:
                    a4:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:63:4B:32:E2:3B:AB:D0:1F:B9:01:59:F8:CA:B4:38:10:5E:BB:C8
            X509v3 Authority Key Identifier:
                keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:ab:8a:8e:d1:2c:81:5b:bf:6c:2c:8b:6b:a0:92:38:9e:f0:
         f7:bb:9b:91:c4:ed:79:67:2d:bf:19:cb:ab:7b:55:92:e5:2b:
         13:34:93:98:00:66:a5:e6:de:ab:de:83:ea:53:a5:ea:5d:68:
         4a:7c:32:db:5f:b6:91:93:61:d1:9e:a3:48:7c:37:5c:65:60:
         ff:a4:78:13:29:9c:6e:a3:52:b5:d2:b6:0c:7f:e7:63:1c:20:
         55:e3:0e:36:56:af:d5:7b:61:3a:31:5c:15:34:ff:a6:5a:23:
         b1:2a:81:5c:76:2e:97:89:3a:aa:5c:f5:19:39:e4:44:2f:1d:
         82:a5:3f:44:8e:cd:3f:f2:89:ac:3f:c1:fe:d3:ef:0e:a7:54:
         c2:35:5a:6d:03:0a:9c:57:04:4b:32:80:e2:0c:16:ed:c4:1a:
         0f:30:18:16:a2:62:9b:e4:04:bf:cb:c8:66:97:8b:a7:75:65:
         29:09:e6:de:84:ac:85:ba:0f:75:e4:a4:d4:9c:98:a0:b7:aa:
         4c:e6:9f:d6:02:09:91:21:65:d5:02:93:5a:a7:54:41:54:00:
         67:8a:bb:90:2a:b5:76:ab:43:d1:82:88:92:e4:91:74:69:99:
         81:bc:5f:e2:e4:da:57:e5:db:8d:54:80:84:58:e1:9a:66:28:
         c3:7b:ca:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:17:50 2026 by rpki-client