Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft
File:                     NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json)
Hash identifier:          DT0pMZgogOWzgt4Yf0oJVGS3gBqKx7QOi5mF7a3LBbc=
Subject key identifier:   CA:A0:79:86:98:67:11:41:46:D6:B7:06:66:F5:79:54:6F:65:6A:A7
Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC
Certificate issuer:       /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC
Certificate serial:       1D3E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft
Manifest number:          1D21
Signing time:             Thu 16 Jul 2026 16:11:07 +0000
Manifest this update:     Thu 16 Jul 2026 16:11:06 +0000
Manifest next update:     Thu 23 Jul 2026 16:11:06 +0000
Files and hashes:         1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: AY3qfOcKLpIlNwcCPKVrJg+8Db/yRZ3fXcVvglC/mQI=)
                          2: xfIw3q3qM2oF8nKAJKiIyOXPmts.asa (hash: Iw8t2cOOoe9YoYuawbsMRtKnfr4RdcfMSHPUEPUr57I=)
                          3: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: Y1gVzkwfOLuyPoIfE59zPK8DMvF4H060KJy8V8tGtwo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl
                          rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:11:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7486 (0x1d3e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC
        Validity
            Not Before: Jul 16 16:11:06 2026 GMT
            Not After : Jul 23 16:11:06 2026 GMT
        Subject: CN=6a59029b-1f6c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:17:58:6a:cd:40:2f:0e:ad:d6:2a:19:99:63:
                    be:66:23:ba:9d:10:a3:c4:4d:6d:5c:fd:b0:e9:04:
                    71:b7:5a:06:53:ba:f3:10:ae:78:9c:01:e3:1c:6a:
                    2e:bb:5f:cc:e9:8e:4d:e9:42:85:7c:0b:73:d5:48:
                    50:5e:c1:01:87:73:d0:97:8b:73:c4:4b:83:6a:96:
                    a4:d3:de:e7:7a:60:7c:b7:b2:52:32:1b:56:91:bf:
                    71:8c:16:01:8c:26:23:93:16:58:04:77:4a:95:43:
                    6d:09:65:42:f1:eb:ed:24:bc:b9:1c:44:bb:2b:fb:
                    35:80:0c:0a:87:17:a3:b7:0b:44:c2:d9:b8:eb:12:
                    62:d8:0b:6f:d4:61:8b:fd:ef:a3:a5:e0:05:ca:38:
                    5b:5c:63:31:ec:ad:b6:6b:3d:a5:03:b8:75:8f:d9:
                    e7:d9:6c:87:5a:f7:8c:94:47:29:f1:d6:60:9d:0b:
                    57:3c:56:97:b2:16:ee:7e:1c:32:90:24:56:00:c0:
                    93:63:9d:6b:3b:0a:28:e3:4e:4c:71:c2:13:b4:e8:
                    1f:12:5b:b7:e8:e1:f8:6d:68:ce:87:81:37:59:c0:
                    33:32:a9:b3:d9:27:1d:20:dd:a3:15:28:46:26:82:
                    4b:bb:7d:f5:46:48:18:a5:27:e8:9b:2c:1c:54:b5:
                    21:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:A0:79:86:98:67:11:41:46:D6:B7:06:66:F5:79:54:6F:65:6A:A7
            X509v3 Authority Key Identifier:
                keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:7e:59:74:00:26:ec:45:07:e7:cb:6d:d8:f3:a1:92:f1:cb:
         a7:ec:87:ef:bd:93:b9:2d:af:2b:c6:1a:7b:d4:33:f5:19:3c:
         47:37:ed:07:9e:6a:e7:6d:d7:c2:26:d8:a8:2a:bf:4c:e0:de:
         ce:71:ff:f3:b3:64:82:eb:af:71:dc:d4:8c:d5:b4:ee:ad:4b:
         5e:65:16:0f:43:cc:65:d4:b2:f9:44:03:03:34:5b:ab:a5:07:
         15:a1:ce:a7:c5:f9:bb:b2:b3:dd:40:bf:40:eb:4e:bb:e7:84:
         ec:12:ad:7b:4b:c2:f7:52:39:4a:d9:60:81:63:dd:02:09:c3:
         4c:1f:3c:81:1d:c8:8d:f9:ff:d0:44:36:df:cf:f7:9d:b1:c8:
         5f:a4:0a:0e:8a:0e:d3:81:5f:48:1d:d1:fd:1c:d4:ea:31:af:
         25:64:a5:96:e3:8b:ce:94:7e:f5:1d:0a:d0:64:9a:c1:20:57:
         9b:90:91:c3:d1:3c:35:be:6a:70:2a:72:25:ad:c5:56:d1:d1:
         92:8f:11:ac:8e:7d:b8:52:6d:a3:94:c9:98:89:73:b9:f5:d0:
         31:cc:0f:8c:51:ba:60:29:d1:12:ad:53:ed:51:59:22:9f:c8:
         38:e9:95:fc:f2:ab:cf:0f:67:9d:1b:db:32:7a:16:16:36:e3:
         d4:64:0c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:12:35 2026 by rpki-client