Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
File:                     NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json)
Hash identifier:          3EJEfm4+kAIMXEJGVgIzOezO50NOeY1N6hTuz7SdYYU=
Subject key identifier:   9C:49:A7:A9:E1:4F:B1:5C:BB:E1:A5:1A:69:12:EC:F8:51:71:F0:C9
Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D
Certificate issuer:       /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D
Certificate serial:       01EF
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
Manifest number:          01E1
Signing time:             Fri 17 Jul 2026 04:37:10 +0000
Manifest this update:     Fri 17 Jul 2026 04:37:10 +0000
Manifest next update:     Fri 24 Jul 2026 04:37:10 +0000
Files and hashes:         1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: Z9XwZnQYRaOGfYzoFIXZU9qcAz+j/pCLSuyYcI2caKI=)
                          2: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: +vcgHqQaVF6a8tBeWlRZvq+SFdKItNicDBwJjhcEwPQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl
                          rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:37:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 495 (0x1ef)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D
        Validity
            Not Before: Jul 17 04:37:10 2026 GMT
            Not After : Jul 24 04:37:10 2026 GMT
        Subject: CN=6a59b176-d751
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:7e:d6:57:2b:5d:0a:24:fb:77:22:74:ed:9c:
                    7a:f2:d3:14:a3:a5:2a:bb:97:2d:63:4a:0c:ed:2c:
                    4c:7c:57:ca:cb:18:49:ea:0a:d0:f8:de:1b:dd:75:
                    79:9f:32:c3:79:c0:3b:05:e2:24:00:3b:e9:4f:20:
                    bd:a2:78:58:ae:a7:84:a2:85:2a:98:a4:7e:6b:28:
                    d8:dc:b0:9e:8f:ee:ff:3e:f8:88:91:4a:0b:47:cb:
                    c7:ef:81:36:1c:61:95:d5:bb:97:8d:b0:f1:b8:a1:
                    27:60:4d:ff:df:ad:a5:8c:02:c7:21:44:cc:ee:20:
                    2b:6a:52:95:a3:b0:3b:75:24:b9:b0:b3:79:02:9c:
                    44:03:8a:90:02:56:d3:87:df:df:87:27:dc:38:68:
                    b7:f6:4b:a2:ee:25:ca:b9:31:71:7f:60:0f:c0:71:
                    0b:19:51:14:ed:af:83:f2:06:a4:a9:3b:cb:89:2e:
                    a7:8a:16:fd:12:b9:87:43:1c:b8:4f:55:5a:aa:28:
                    2d:95:c9:0d:4d:70:59:9d:2e:4b:bf:66:46:63:9f:
                    8f:bb:b8:cc:01:ab:87:06:8a:43:da:3c:7b:24:56:
                    a6:d3:d2:85:85:3e:98:da:8f:27:19:fa:ac:6c:35:
                    ef:25:ad:ad:52:30:26:e4:14:ee:f6:2a:80:76:56:
                    bd:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:49:A7:A9:E1:4F:B1:5C:BB:E1:A5:1A:69:12:EC:F8:51:71:F0:C9
            X509v3 Authority Key Identifier:
                keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:a8:7a:42:1f:ab:dc:f4:10:f0:0b:9e:ab:2d:59:8c:3a:9b:
         73:b1:8b:0f:ea:ff:6b:40:c3:e2:db:82:ed:a0:93:f1:b0:ca:
         c2:63:03:02:29:0b:4a:6b:df:33:d1:97:28:6a:1f:e4:e8:56:
         11:13:40:a4:19:5f:bd:91:4a:5f:61:4f:54:f4:cb:94:7a:96:
         82:56:d8:06:b0:d5:ea:65:e8:0b:1a:5f:e5:fe:fe:45:1b:4c:
         a0:1d:0e:8f:bf:ef:a7:55:e4:2c:09:a7:a6:ed:81:96:62:1f:
         10:6a:c6:2a:a1:aa:c0:66:54:f1:31:b2:73:36:1f:fa:23:b2:
         c7:1a:a0:74:86:e6:1e:b5:de:fc:7a:76:27:b0:1a:96:cd:e1:
         37:19:86:6c:55:31:7c:e8:6f:ea:8f:af:aa:d0:2c:31:2b:fc:
         40:d1:ec:fe:a9:8e:cf:ae:4d:b9:61:fc:fc:a9:29:55:3a:8e:
         ed:45:4b:3f:32:55:d6:15:31:33:2b:3a:ac:82:e3:4f:9a:a5:
         37:ea:9e:fd:03:49:70:06:9d:eb:ec:18:c5:54:dd:74:a9:cb:
         71:c7:5a:d1:5f:b7:a8:47:a2:a7:f4:74:41:be:71:63:26:9d:
         ff:dc:31:41:7f:a8:76:a9:8c:96:be:8a:66:2e:18:fa:89:de:
         a7:5b:4a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:00 2026 by rpki-client