Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
File:                     punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json)
Hash identifier:          OSb+IftxCmFUbjagU22z/iUyCYb6sqbVaotD07MgThk=
Subject key identifier:   40:32:A8:15:FB:9E:7C:B6:87:42:EB:3E:ED:9B:E6:1E:2F:58:93:59
Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B
Certificate issuer:       /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B
Certificate serial:       016D
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
Manifest number:          0165
Signing time:             Fri 17 Jul 2026 05:59:48 +0000
Manifest this update:     Fri 17 Jul 2026 05:59:47 +0000
Manifest next update:     Fri 24 Jul 2026 05:59:47 +0000
Files and hashes:         1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: 6+3YnZJEBqtofHLmGA1QlQIgHeioZ2EhaXIDUuChmss=)
                          2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: 8DprNqSctLRq9Um1DBwsXYIm/hC+xtUbZc0GLoio6ks=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl
                          rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:59:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 365 (0x16d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B
        Validity
            Not Before: Jul 17 05:59:47 2026 GMT
            Not After : Jul 24 05:59:47 2026 GMT
        Subject: CN=6a59c4d4-055f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:7e:90:61:00:fe:a6:fb:f5:0d:1b:1c:00:09:
                    49:4b:e3:3c:8e:e1:bc:44:fc:21:d3:2e:ba:7d:83:
                    31:67:7e:23:71:e5:70:b2:8a:57:67:54:c5:33:85:
                    ad:a4:8c:3e:50:4c:fc:08:62:75:77:af:c5:74:9a:
                    75:d0:88:43:ec:1a:12:95:01:c9:89:05:dc:f6:cd:
                    55:2b:a2:fa:2d:a7:5e:81:47:b8:5f:72:50:8e:75:
                    10:67:3f:f3:ed:24:bd:82:76:8d:64:62:cf:28:49:
                    34:a1:a4:11:4e:d9:f9:c8:eb:69:13:89:93:32:82:
                    22:3f:37:3c:74:a3:17:94:51:c4:07:b5:15:8b:1d:
                    38:6b:e6:de:b6:de:12:7b:24:2d:18:fd:fb:2c:27:
                    73:58:0a:e3:da:1f:7b:1d:a4:a5:35:33:32:93:aa:
                    e9:f4:77:07:d4:c8:a8:56:7d:f4:81:15:29:70:bd:
                    72:9b:93:25:60:9d:02:e6:d0:13:3b:bb:93:62:78:
                    66:eb:a2:62:94:40:6e:50:6c:31:14:89:2a:54:a8:
                    0f:4e:e3:b1:85:2f:66:1e:7f:a8:74:71:f5:27:f3:
                    5f:7f:97:ec:b5:9b:97:5f:f6:26:d3:36:b6:6d:d4:
                    7e:f5:41:24:54:96:53:1f:b5:25:5f:cb:70:40:e4:
                    f7:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:32:A8:15:FB:9E:7C:B6:87:42:EB:3E:ED:9B:E6:1E:2F:58:93:59
            X509v3 Authority Key Identifier:
                keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:d4:ef:03:a6:ad:61:6e:c8:f3:ac:61:39:fa:68:10:6d:f6:
         82:e4:e9:b1:2c:82:97:c3:4f:04:bb:2f:d8:94:8d:92:b2:06:
         68:01:c7:b2:36:74:6d:c2:c8:8c:2a:e3:f9:0d:aa:08:15:96:
         5c:51:fe:76:10:aa:5f:ca:a5:67:db:d8:e6:a3:9c:aa:bf:12:
         f4:59:57:e1:a6:f9:7a:87:fc:87:78:9e:52:3e:c1:bb:de:85:
         34:8c:95:7a:70:23:4e:0f:46:a6:c7:3f:80:68:d4:24:64:cb:
         58:92:25:c9:a7:ab:33:3a:6d:b5:32:f9:33:9d:48:a1:ad:52:
         b0:7d:dc:be:93:ee:f5:23:f1:39:b5:09:d9:c8:7c:c3:78:81:
         85:03:4c:ce:af:d4:1e:bf:b7:95:42:b3:c0:77:23:f6:7e:a8:
         4c:ba:cc:37:39:16:83:8e:e4:2f:51:37:6e:2c:f3:ba:fc:d3:
         95:b4:bd:c5:af:d4:6d:0a:06:ed:cc:0a:52:f7:55:4f:6b:89:
         90:88:6a:b6:6c:3a:9b:a0:ad:92:6c:37:ec:12:e4:0c:ab:a1:
         b6:7a:28:76:e4:ac:39:2e:ea:56:8c:de:07:46:f8:53:11:46:
         ad:3d:95:4a:d2:39:8b:b7:ef:14:87:e6:fe:be:42:57:c5:6b:
         37:51:84:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:10 2026 by rpki-client