Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft
File:                     X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json)
Hash identifier:          6Elawjn464Hppm8h9NzbLEc+nIxg8lT3V6wCVJKTdSk=
Subject key identifier:   E9:18:77:81:E1:F7:E8:9A:7D:64:2E:B2:66:F2:4B:52:C2:A7:64:54
Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35
Certificate issuer:       /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35
Certificate serial:       3572
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft
Manifest number:          3565
Signing time:             Thu 16 Jul 2026 14:40:21 +0000
Manifest this update:     Thu 16 Jul 2026 14:40:21 +0000
Manifest next update:     Thu 23 Jul 2026 14:40:21 +0000
Files and hashes:         1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: NahA5juUB+Llcr5k3BjYX10IRypRNAKwBylToSYNeN8=)
                          2: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: lk8+oDVmkh0IMVihDlSAF01esZtzK+ueFBrIlPTYmfg=)
                          3: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: +9NKbw4Yf5cbYoj9nHJEgGLqyGEjkbYD3jkxgLpPwwo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl
                          rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 14:40:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13682 (0x3572)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170304, serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35
        Validity
            Not Before: Jul 16 14:40:21 2026 GMT
            Not After : Jul 23 14:40:21 2026 GMT
        Subject: CN=6a58ed55-f263
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:df:48:e5:72:45:82:f8:1f:d7:1c:a6:93:63:
                    f2:6c:b8:2a:95:46:57:d6:a5:3f:ed:80:6f:d6:d7:
                    e6:97:d6:46:2d:4c:89:fa:e9:d6:64:f1:20:81:f0:
                    ee:9a:b5:53:06:67:2d:a2:69:ff:81:02:21:10:d3:
                    5b:6c:71:7a:4f:21:e5:58:93:19:62:ca:f3:1f:df:
                    72:12:7f:9b:c4:10:b3:b1:a8:e9:1d:c4:c1:70:86:
                    d2:5f:2d:bf:59:ad:96:d8:e0:6f:11:a3:48:ba:e5:
                    c1:bb:8d:a5:04:ed:af:39:b5:4d:48:05:e5:f3:35:
                    4a:f1:6b:bc:47:0f:5f:46:5a:15:b1:1d:86:bf:38:
                    66:b1:e3:7e:9e:2f:77:ba:e6:2a:75:62:72:d7:97:
                    d5:46:75:8f:ff:13:ea:f4:d0:fb:f5:31:c5:ed:a9:
                    e5:be:4a:06:60:20:3b:11:41:67:d7:43:da:97:c6:
                    29:7d:3e:c0:52:29:9f:c6:46:7a:6c:a3:d3:8c:21:
                    2a:a8:7b:21:68:a6:a5:46:36:72:45:92:e3:19:30:
                    12:ab:a7:c0:14:57:14:5e:e4:b8:d6:20:34:ee:25:
                    1d:92:e2:d4:33:47:57:0f:00:09:55:28:f5:b9:7d:
                    9c:45:49:90:95:b5:92:83:a1:4c:1c:a9:7e:0a:90:
                    63:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:18:77:81:E1:F7:E8:9A:7D:64:2E:B2:66:F2:4B:52:C2:A7:64:54
            X509v3 Authority Key Identifier:
                keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:b8:a0:2d:d9:bf:1e:7b:79:cf:7e:3d:43:23:16:07:f5:96:
         21:a8:07:c8:5a:d9:50:69:0b:67:5a:fd:ad:18:8b:5d:69:78:
         ad:df:de:6a:03:a9:5d:a0:8a:dd:67:4e:95:a5:9c:f3:72:f3:
         99:77:e3:80:14:bb:38:c7:b0:4c:7f:8f:22:6e:1e:1a:fb:d5:
         3d:8b:6c:2c:40:00:f0:77:89:b7:df:b7:d8:a8:13:61:44:dd:
         6e:99:4a:b7:69:f7:53:11:69:48:56:eb:ac:82:66:46:2f:02:
         a4:d3:92:fb:f8:64:6e:8d:c0:9a:6e:f5:17:5b:f0:a9:0a:69:
         26:f7:3f:d9:8e:b6:cc:00:7d:a8:fb:39:2f:02:60:9c:c5:f2:
         ec:56:33:00:fc:14:81:30:27:e3:40:17:00:34:99:5e:05:97:
         81:e9:62:87:6d:0c:4f:c7:45:71:c1:6a:0e:d9:45:40:94:a8:
         89:d3:0b:bf:09:9e:ec:dc:3e:a4:99:6e:31:a3:14:30:3c:af:
         81:d4:37:84:b2:5c:a1:8f:14:d6:51:72:45:d5:3f:48:80:2b:
         ba:26:0c:39:75:28:1a:5b:46:e5:5d:25:38:9b:14:9f:42:52:
         70:28:58:8e:92:1d:0b:e2:10:6a:98:bb:ee:8e:e0:3a:3d:f2:
         f6:54:e4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:03 2026 by rpki-client