Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft
File:                     hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json)
Hash identifier:          0iDIDVbyE21xQE+e6jqo+U1Wd+ymENh+NJsHYTML4qA=
Subject key identifier:   1D:0F:C3:63:35:BC:57:AA:20:FC:26:7D:E4:7D:FE:69:23:73:40:03
Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1
Certificate issuer:       /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1
Certificate serial:       0139
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft
Manifest number:          0139
Signing time:             Fri 17 Jul 2026 06:35:29 +0000
Manifest this update:     Fri 17 Jul 2026 06:35:29 +0000
Manifest next update:     Fri 24 Jul 2026 06:35:29 +0000
Files and hashes:         1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: xgpo9f4VOcxEXfpz6I+q/7UbNiycwBplFC1HQRJmLe8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl
                          rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:35:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 313 (0x139)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1
        Validity
            Not Before: Jul 17 06:35:29 2026 GMT
            Not After : Jul 24 06:35:29 2026 GMT
        Subject: CN=6a59cd31-fb38
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:b9:8f:3d:1e:c7:9d:9f:64:31:d8:46:04:1c:
                    86:79:66:56:2a:39:a7:4c:37:8b:d3:18:13:d4:0d:
                    53:09:69:32:51:8f:38:be:27:1b:8f:d7:5e:35:1e:
                    ad:d4:88:8f:b4:d2:c3:62:47:b8:ee:a0:69:34:79:
                    ea:19:19:ed:4d:99:22:31:b0:d4:d7:91:b3:ba:c7:
                    40:e3:87:32:a9:85:69:c9:33:ba:3e:76:b8:72:c2:
                    0e:5d:c7:b8:70:72:0c:93:05:b7:a0:6b:b2:47:f7:
                    c2:08:72:46:15:d7:8d:e0:9f:cd:72:46:2a:59:4f:
                    26:2e:50:a0:7c:a8:02:35:32:f9:0e:a5:3c:0d:9b:
                    39:76:6d:95:04:ff:69:a8:d1:1d:56:42:4c:af:93:
                    7d:32:5d:e4:62:8d:e4:0c:a0:f2:c7:d0:51:f3:d7:
                    08:12:89:8a:36:77:50:5f:8f:3b:99:20:26:b3:9b:
                    7d:7d:ab:8d:2a:3d:8e:2d:0d:e1:b5:fb:ae:0a:4f:
                    c5:2f:d1:01:1e:43:7c:80:59:62:2e:9b:7d:3e:72:
                    b5:cc:de:a8:05:ac:b6:ea:6b:23:e8:33:66:ad:83:
                    dd:c2:c3:ba:11:63:1a:1b:8f:a3:58:2e:80:6e:3b:
                    24:39:c0:aa:12:53:d2:38:6e:e9:de:c2:b2:d0:e4:
                    73:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:0F:C3:63:35:BC:57:AA:20:FC:26:7D:E4:7D:FE:69:23:73:40:03
            X509v3 Authority Key Identifier:
                keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:36:93:55:e7:27:47:e5:10:6f:4c:76:92:ce:49:a4:bf:ef:
         25:4a:1d:f8:19:05:23:32:53:57:2a:48:e4:26:77:1e:f1:5d:
         39:84:5d:be:7f:32:18:d5:99:a6:28:ff:fe:11:91:43:74:6a:
         1b:cf:95:9a:bb:c6:4d:37:38:a2:e7:9d:4f:60:3f:f1:93:f4:
         23:04:2c:99:aa:5b:aa:29:ca:34:ce:02:2d:c0:2b:21:cb:0f:
         2e:dc:b5:7f:08:cf:5e:59:9e:b4:2e:6a:f8:be:aa:f7:38:03:
         90:1b:07:fe:1b:ab:c6:80:04:d3:93:7c:d2:a3:a7:d0:b2:dc:
         86:2e:ac:e3:45:12:e2:f4:ea:d9:12:87:03:18:2e:c5:db:42:
         91:dd:af:31:a6:72:43:21:bb:a8:50:d1:f9:59:54:b5:8f:58:
         e6:ed:3d:ff:2c:d7:82:73:f2:bd:8d:1e:46:45:50:8d:dd:6b:
         b4:87:6c:a9:01:6f:fc:e3:7d:96:fb:fd:23:61:d5:5a:f2:ec:
         91:e3:58:60:80:03:c6:ee:dc:f3:17:6c:7c:58:a5:eb:23:36:
         95:bd:a8:eb:76:b7:a2:1f:c6:a6:1e:f2:bc:bb:1a:c7:39:4f:
         12:ee:47:81:8a:d6:f2:94:a9:0e:a4:f2:9e:79:21:8c:f0:3a:
         5d:e2:fc:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:10 2026 by rpki-client