Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft
File:                     NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json)
Hash identifier:          8OdkpfxHA62C5NXfxsLbOVyaEr/mUi2WOVKASfeWwf4=
Subject key identifier:   99:1A:35:DB:54:9D:70:B2:BC:A9:10:E3:41:0D:43:7B:8C:EC:EE:B5
Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91
Certificate issuer:       /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91
Certificate serial:       2C4B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft
Manifest number:          2C31
Signing time:             Thu 16 Jul 2026 14:26:12 +0000
Manifest this update:     Thu 16 Jul 2026 14:26:12 +0000
Manifest next update:     Thu 23 Jul 2026 14:26:12 +0000
Files and hashes:         1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: MpACi8D3E4Bsj96kMBUDWY8tlqd6jQ+07eNqRsaJIj8=)
                          2: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: h/xjw2uGVTtL8b2ydd+g45aswVdSOXMWt+z5VztwbYw=)
                          3: F645F318500C11EBA2295426C4F9AE02.roa (hash: T/3Qd5JLkUZ8axH+b8NITt79vh28jc8CtqLL9xCu9/o=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl
                          rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 14:26:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11339 (0x2c4b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91
        Validity
            Not Before: Jul 16 14:26:12 2026 GMT
            Not After : Jul 23 14:26:12 2026 GMT
        Subject: CN=6a58ea04-436a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:37:01:08:5b:7f:ee:a5:0e:e1:72:94:50:e4:
                    cf:92:0d:df:83:b2:0d:cc:6f:36:00:48:c5:2f:75:
                    4c:aa:e1:35:65:41:fe:7f:5a:cc:a2:0e:d2:66:cf:
                    51:ad:f9:b0:c9:07:61:db:35:a3:79:59:8e:bf:ef:
                    99:03:c3:d8:7e:36:6f:f9:41:cf:a7:11:de:a3:d2:
                    a7:3f:8f:d8:a7:13:21:9d:e4:54:dc:a4:f5:37:2f:
                    6e:83:91:8d:13:37:5f:03:a2:24:0e:3c:b7:7d:a0:
                    bd:8c:9a:90:8b:f3:67:68:a3:b3:4c:eb:5b:a1:fc:
                    d5:64:79:54:e9:35:9b:62:ef:7d:ea:04:3a:bc:68:
                    fa:92:2f:b2:bb:41:c7:5a:f5:7c:39:e8:1a:6d:1a:
                    4f:fe:3e:ff:28:2f:9c:eb:d7:74:78:cd:b5:17:fd:
                    2f:ee:b1:83:21:16:b9:6c:6d:2b:84:2c:05:3e:96:
                    0b:30:53:a9:2a:c0:5d:9b:e7:da:49:e9:bf:b7:f8:
                    65:fc:3c:9d:d5:b5:45:54:62:99:3e:f3:92:89:63:
                    c5:8d:76:37:25:af:70:3f:13:38:0c:7f:78:bc:fd:
                    23:6a:6b:70:ff:de:4f:77:41:05:67:41:8e:2a:f9:
                    49:a2:56:ab:40:6a:ef:fe:42:ff:c7:33:8e:ff:c8:
                    6f:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:1A:35:DB:54:9D:70:B2:BC:A9:10:E3:41:0D:43:7B:8C:EC:EE:B5
            X509v3 Authority Key Identifier:
                keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:c7:94:56:c0:95:e9:0d:3b:0a:31:43:73:3c:3d:06:a1:b6:
         d8:bb:34:55:92:ba:aa:91:fc:56:42:c6:ff:f3:66:47:4a:9a:
         e8:f4:1b:29:c8:a8:b2:be:7c:5f:2d:8d:0a:cd:74:0a:bd:15:
         d2:96:60:25:84:9a:36:cc:54:71:1f:de:75:1b:91:68:d5:8d:
         2c:0b:ab:21:30:9b:17:63:54:67:9d:bb:7a:38:5b:f4:10:52:
         66:0f:4d:da:87:0c:80:d4:a4:b1:1a:05:7f:0e:f6:0c:ba:cd:
         ec:15:99:96:0c:53:0f:c7:38:a6:43:92:cf:85:af:79:4c:76:
         e9:f8:9e:3f:af:3b:a1:02:5f:d0:49:c6:5e:2e:25:25:c8:8a:
         17:84:cd:c2:87:a0:d0:f9:d7:65:da:c5:22:6e:d2:c3:28:5b:
         04:6d:fd:76:f6:b2:ef:28:08:b0:46:c4:d5:6a:a3:44:1a:38:
         12:50:5b:bd:33:91:2f:53:68:37:10:94:11:f0:89:32:0f:74:
         93:c9:9c:f6:93:33:0c:e5:bb:f2:c0:46:a4:8f:df:a8:ef:a8:
         9b:36:7e:c5:b6:6b:06:f0:56:2d:04:24:f3:e6:37:7d:f5:43:
         3d:96:c6:0b:be:bb:0f:0f:66:18:80:59:51:cb:48:75:5e:1e:
         fb:d7:91:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:13 2026 by rpki-client