Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft
File:                     Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json)
Hash identifier:          Zj1/58jozP4QXKUlqYTkcXZxxNrVThcppHyWzh1191Q=
Subject key identifier:   9B:C0:1E:C7:7D:30:F8:31:0E:D7:A8:EF:19:92:F9:07:EA:B1:31:E9
Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9
Certificate issuer:       /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9
Certificate serial:       015C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft
Manifest number:          0154
Signing time:             Fri 17 Jul 2026 06:17:48 +0000
Manifest this update:     Fri 17 Jul 2026 06:17:47 +0000
Manifest next update:     Fri 24 Jul 2026 06:17:47 +0000
Files and hashes:         1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: m+kMoekzrEtgmgvUfRr6Gy5fxHUs/q8vGPe8OamgDpw=)
                          2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: MRSyunFuZV1S3WfmC+o5wAwU5vJtDQmtS6IHzeBNXmc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl
                          rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:17:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 348 (0x15c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9
        Validity
            Not Before: Jul 17 06:17:47 2026 GMT
            Not After : Jul 24 06:17:47 2026 GMT
        Subject: CN=6a59c90c-8867
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:12:63:e0:28:47:57:e0:f2:08:58:40:2c:1a:
                    39:71:e4:3a:d0:34:3d:98:65:9b:c6:70:6a:58:5c:
                    c1:f4:ca:f4:3c:03:fd:fb:c2:4c:be:f4:d8:9a:e8:
                    0d:41:b9:0d:9b:a9:f2:d6:fa:12:52:f2:f7:68:27:
                    87:cf:93:a2:a1:18:59:cc:2e:d2:f9:2d:0a:4e:ed:
                    7e:82:6e:14:02:68:25:4d:ac:b9:bf:59:c3:c4:70:
                    6a:76:ed:ba:ff:94:b0:8f:b5:61:1f:18:79:6d:7b:
                    37:fe:19:d8:67:a3:e5:4c:2a:3b:f9:33:21:6e:30:
                    f7:14:02:95:72:56:6f:8d:b7:cf:43:0a:c9:45:5f:
                    32:42:69:e9:56:07:11:88:28:38:c3:8c:45:25:9c:
                    f3:ca:55:f2:2e:02:97:0c:ea:46:ec:3e:7b:46:34:
                    fc:de:3f:2f:4c:df:0e:b5:ba:47:9d:1c:b4:f8:14:
                    3d:3c:27:fb:83:a8:4b:73:30:5f:ee:f9:4f:e2:8a:
                    ba:28:b0:10:55:88:d2:da:e9:0d:da:07:1d:9f:fd:
                    d1:fc:94:9e:07:0d:a8:d6:70:8d:0c:59:5d:16:db:
                    cb:73:2c:74:f2:ef:2d:f1:94:c7:32:69:46:7d:5c:
                    6b:c6:d3:62:25:e6:cf:7f:4d:e0:d9:59:44:5b:83:
                    80:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:C0:1E:C7:7D:30:F8:31:0E:D7:A8:EF:19:92:F9:07:EA:B1:31:E9
            X509v3 Authority Key Identifier:
                keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:e5:b3:d8:fd:ba:7c:90:6b:e8:d5:0b:e3:e3:15:e6:f1:e9:
         d4:0e:47:b7:d9:d4:a5:0c:e3:4b:82:cc:ce:80:bd:8b:e8:2d:
         0a:05:10:dc:27:ec:b9:13:5e:3b:71:a4:ed:3b:67:d0:63:4e:
         01:d4:48:3b:00:68:b3:1a:77:ff:7d:13:00:78:fe:61:c2:bb:
         87:41:3b:c2:a6:18:3d:30:84:34:58:40:0a:5c:99:a9:9f:b7:
         75:e6:3d:8d:c2:f3:d8:5c:f1:07:54:24:fa:6a:c1:b1:ce:fc:
         4c:6f:fc:a7:24:0e:26:f5:eb:61:66:60:a5:e5:04:f4:cf:ab:
         06:1d:42:f2:89:48:aa:63:9a:7c:a1:c2:cf:7e:98:27:cf:c5:
         21:e3:a0:ab:15:98:55:00:16:25:9e:29:6a:1b:df:38:8c:46:
         00:43:1d:16:bd:df:e3:62:f4:8b:b5:ba:fb:df:5b:1f:76:0c:
         35:0d:b8:d0:fb:d6:b3:fc:14:e9:ff:b0:9c:c3:1a:8d:c1:a7:
         ba:8b:f6:9b:91:5b:e8:0f:a4:24:10:f9:da:69:09:b2:aa:6a:
         2a:8d:38:89:82:53:f5:fb:48:e7:41:ed:e6:ab:ea:0c:f0:c8:
         e4:2d:e9:11:4a:44:9e:11:bf:ec:86:c7:82:f5:86:b2:89:87:
         1c:80:9c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:50 2026 by rpki-client