Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft
File:                     aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json)
Hash identifier:          TNF1EC4t1c5cXMWTdwKsxdWHTHxfvPJqtlW2BIWzJH8=
Subject key identifier:   71:C5:93:07:FF:20:02:2A:14:74:E6:D0:30:59:F0:5A:2D:CB:12:31
Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6
Certificate issuer:       /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6
Certificate serial:       0162
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft
Manifest number:          0155
Signing time:             Fri 17 Jul 2026 06:17:58 +0000
Manifest this update:     Fri 17 Jul 2026 06:17:57 +0000
Manifest next update:     Fri 24 Jul 2026 06:17:57 +0000
Files and hashes:         1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: T6/NMdIHVn9r5wqoo3izGaPCkQfS/QpU5UzY1TdKvgU=)
                          2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: /vNUIQMQmo/+bpr7T8qr5NTsbD+Gg65QmwR+l9u79do=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl
                          rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:17:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 354 (0x162)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6
        Validity
            Not Before: Jul 17 06:17:57 2026 GMT
            Not After : Jul 24 06:17:57 2026 GMT
        Subject: CN=6a59c916-17c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:6f:bf:f5:c4:cc:80:57:7e:b6:89:b3:bc:2d:
                    82:a2:56:5d:57:16:4c:02:3d:1c:33:ac:5e:6f:3f:
                    b2:a7:4f:99:53:32:6c:8a:0f:68:dc:79:24:14:16:
                    d6:df:d5:81:d5:c8:d2:26:ee:8f:e3:46:84:d5:0a:
                    3a:36:9b:a8:ac:de:ab:66:e6:51:94:ce:c5:f4:88:
                    f0:3b:08:3c:a4:69:4c:58:87:f1:d3:cc:a2:cf:dd:
                    74:bb:5d:7f:32:36:61:4f:b1:9f:8d:84:52:31:46:
                    b7:99:6b:68:f5:1a:65:a5:68:59:66:9c:46:43:38:
                    13:7c:50:9b:16:55:13:65:8c:6d:ee:ee:b6:f1:ef:
                    ef:05:5e:b3:a1:9e:ab:dd:f4:df:4b:e5:29:5d:46:
                    14:53:8d:5a:be:1d:ff:99:68:6a:40:5b:36:a3:3f:
                    2a:e4:7a:17:06:27:39:b8:b9:c5:f5:4b:d2:9d:2b:
                    f7:ae:4c:f3:dd:bd:77:41:40:29:c5:32:23:e9:c5:
                    2d:b3:0d:fd:e7:72:cb:da:c1:a0:44:8a:99:38:f2:
                    da:5b:5b:af:2c:30:e4:39:af:f8:7c:76:e4:78:3d:
                    1c:f4:01:da:e8:af:ac:c8:c0:82:75:08:49:31:a9:
                    5c:57:7f:b9:c4:77:81:9d:e2:c4:67:1e:4f:b3:98:
                    05:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:C5:93:07:FF:20:02:2A:14:74:E6:D0:30:59:F0:5A:2D:CB:12:31
            X509v3 Authority Key Identifier:
                keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:62:ec:88:7c:4c:8d:6d:63:23:b6:44:c9:0c:85:18:4a:3e:
         cf:5d:0f:3e:a3:d8:d3:5f:78:55:a6:0d:7c:b3:89:6f:ad:fc:
         7e:9c:4b:2b:c1:31:05:a1:8e:e8:0d:7d:76:27:1b:d3:f9:a8:
         52:dd:a1:a9:25:7a:98:c4:ed:7f:91:eb:55:fb:15:72:22:49:
         a2:d1:10:eb:8b:10:e3:b8:7d:83:15:d9:3e:d6:33:27:ec:37:
         7e:09:27:fc:40:f2:d7:2d:42:eb:9c:e2:7c:bc:90:fe:3f:6c:
         1d:56:31:73:b5:7f:dd:ed:ed:48:6d:dd:18:86:5f:7a:f0:c6:
         a0:1e:c0:be:ee:18:ab:e4:94:e4:b0:50:ad:90:00:2b:99:6e:
         ee:2c:ab:c7:17:40:d5:2d:4d:21:f7:55:ed:9b:58:2b:c6:54:
         38:e1:f6:20:bd:95:9b:94:ac:b1:eb:d9:c0:75:81:b2:21:d2:
         3a:3d:20:97:9d:00:1f:8a:6d:0b:c5:7d:a1:5f:a7:8e:45:0f:
         f6:af:10:97:c0:d4:dd:8c:84:bd:07:9d:ec:4b:1f:7b:b7:85:
         3d:65:18:38:0e:e0:25:be:20:73:6b:ba:53:d5:3f:11:01:76:
         67:dc:d8:0a:e3:7d:d6:18:db:35:c1:5b:68:49:4d:77:ef:3b:
         06:36:1a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:39 2026 by rpki-client