Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
File:                     NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft (raw, json)
Hash identifier:          qmwSMoRrmQfKYi2+HJ/z6bRqe4v+BO3cbaJ2UHCedLQ=
Subject key identifier:   DD:34:C9:69:54:0B:E5:32:2F:74:36:07:62:60:2C:B9:DB:C1:E9:F5
Authority key identifier: 37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A
Certificate issuer:       /CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A
Certificate serial:       1294
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
Manifest number:          1262
Signing time:             Thu 16 Jul 2026 17:11:00 +0000
Manifest this update:     Thu 16 Jul 2026 17:11:00 +0000
Manifest next update:     Thu 23 Jul 2026 17:11:00 +0000
Files and hashes:         1: NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl (hash: b/2toa2lPl8bjVjWAGGtTADPYu9dY8xpMGGKHM3/LY0=)
                          2: 7F7F1470091D11F0B7E95627C4F9AE02.roa (hash: f+/uDtECPh4z9lUgGecamZwBqy/HTP1IaGpVkdXlDqM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl
                          rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 17:10:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4756 (0x1294)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DE7DE, serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A
        Validity
            Not Before: Jul 16 17:11:00 2026 GMT
            Not After : Jul 23 17:11:00 2026 GMT
        Subject: CN=6a5910a4-4d84
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:1f:17:95:9f:d3:19:e8:92:a3:3c:96:48:40:
                    3a:29:00:d2:41:e9:8b:bb:3a:87:23:ba:2c:8f:6b:
                    5a:3a:de:9a:fe:f7:29:70:ad:e7:a0:ea:ec:d0:41:
                    33:17:df:49:29:80:d7:f7:5c:ac:45:14:39:9a:a9:
                    dd:cc:f4:65:4b:13:89:45:97:d3:24:70:63:55:c7:
                    05:8a:20:1e:8b:3b:f1:f0:da:25:26:21:58:3e:7f:
                    73:1f:92:73:05:9f:a1:5e:3c:dd:2d:19:c1:ba:5c:
                    9a:26:f7:b4:8f:de:9e:95:4e:6d:a1:90:b4:d3:9f:
                    b3:ee:4d:e4:1c:3d:88:8c:c0:0c:17:96:7a:c3:33:
                    73:4f:39:cf:78:17:bc:3a:a1:46:46:72:60:b8:47:
                    88:f6:63:09:ed:05:d3:af:39:e9:a8:df:c5:be:09:
                    dd:1d:64:24:a3:d2:ce:b4:8d:4f:d5:c0:2c:38:de:
                    e0:f1:7d:c5:e8:e4:bf:fc:8c:fd:40:7c:ad:ff:f6:
                    ba:be:61:37:40:eb:d3:a1:10:0f:01:a9:bb:a3:4f:
                    61:50:21:15:46:e0:98:11:14:13:81:ec:4e:64:0a:
                    42:9b:b7:4f:08:68:5e:c7:f5:19:05:aa:69:55:fb:
                    ba:fa:ef:6e:bb:aa:c8:ce:59:ce:45:99:a9:ad:78:
                    74:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:34:C9:69:54:0B:E5:32:2F:74:36:07:62:60:2C:B9:DB:C1:E9:F5
            X509v3 Authority Key Identifier:
                keyid:37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:e3:18:e1:88:6e:d2:76:3c:71:ba:b8:54:11:73:bf:95:ea:
         ab:44:86:50:83:43:9e:e4:0c:36:46:a7:f3:05:fe:40:13:ef:
         ef:19:ae:96:65:97:38:b9:c0:e5:d8:88:e5:0d:20:04:f1:7d:
         d1:f7:71:d9:a9:5e:e6:73:2b:d5:92:31:21:30:22:22:bd:3a:
         1b:1b:93:e6:b0:31:6f:a2:ab:15:3c:3f:68:c3:af:c6:fd:56:
         7a:8a:9c:62:b2:72:f6:70:35:f9:3d:d0:88:97:91:60:2a:86:
         d4:92:41:ae:cb:76:10:31:1a:de:90:17:ed:a9:90:a3:09:88:
         b6:bc:01:7c:4a:66:d5:0c:4d:45:26:22:3c:6b:00:6f:39:66:
         d1:03:80:77:35:4e:5b:fa:dc:81:e1:ed:40:86:b6:a1:cf:7c:
         bc:37:f7:32:2d:5d:aa:2d:dc:ac:eb:c9:2f:50:41:a3:79:cc:
         f6:3e:93:2e:19:be:f4:4a:1b:cc:e9:d6:5f:73:aa:7f:27:33:
         8d:c8:96:b9:69:d3:1c:e9:01:9c:f1:93:bb:14:e2:0e:79:48:
         c2:c7:e6:44:ad:cf:63:a0:7a:d3:81:a3:78:11:a9:85:29:39:
         4c:00:68:26:e2:d0:d0:61:19:91:8c:8d:74:9b:86:58:9e:b6:
         98:a7:37:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 10:33:08 2026 by rpki-client