Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft
File:                     X-srwGbHr1fSafdXM_D_g-mQOaM.mft (raw, json)
Hash identifier:          Tqx8xI6Fl225rxBtY0Rt8smc5avzwnlqIIuz/MPP/54=
Subject key identifier:   E3:5F:BA:EA:01:C1:0C:38:E7:B5:99:5B:EB:8B:84:4B:20:0C:4C:6A
Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3
Certificate issuer:       /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3
Certificate serial:       0254
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft
Manifest number:          0232
Signing time:             Sat 11 Jul 2026 03:31:14 +0000
Manifest this update:     Sat 11 Jul 2026 03:31:13 +0000
Manifest next update:     Sat 18 Jul 2026 03:31:13 +0000
Files and hashes:         1: X-srwGbHr1fSafdXM_D_g-mQOaM.crl (hash: zO13fHGDceqpe9VXK4Fep+V4dX6n0nV41EjxspfCiXE=)
                          2: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (hash: 6I5YlsRFDMiAw2+6p+Np4QlkoPsG3b9oYbhxF6uNgBY=)
                          3: C7D74E2CB9EA11EFBCC89752C4F9AE02.roa (hash: eCvLkEbyNwc9r0JGvwSvHfQB+uiRQQDtRICORSigmQw=)
                          4: 2F5D72E695EC11F0BF295042C4F9AE02.roa (hash: /+ba2nQszpmA32xw8Q2bNwCocgAiAxht6R/PF25M/+Q=)
                          5: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (hash: L7PzMw/RqglxuX4TAKGHddkS6szpM6BUVLIqh8w+1Fk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl
                          rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 18 Jul 2026 03:31:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 596 (0x254)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914E8BF, serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3
        Validity
            Not Before: Jul 11 03:31:13 2026 GMT
            Not After : Jul 18 03:31:13 2026 GMT
        Subject: CN=6a51b902-1215
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:66:5d:c4:fb:ce:f1:06:b9:aa:2e:5d:f2:0d:
                    6e:38:a6:c2:59:e8:db:4d:ea:4a:1d:ea:84:0f:d3:
                    17:ce:68:ca:6d:79:78:9f:bc:ba:27:a0:d1:98:a0:
                    8b:3e:c2:e6:3c:a5:04:1f:fe:ad:14:6a:05:8e:0e:
                    06:59:04:aa:3a:57:6f:a4:15:c0:0b:18:e1:62:6b:
                    25:a4:12:2d:cd:be:c9:af:9c:73:56:00:06:80:e4:
                    47:b7:21:a7:8e:e3:a3:b2:76:01:b6:34:f7:2c:af:
                    3d:5f:06:60:39:b9:77:c7:75:31:b4:4e:de:81:4a:
                    83:b5:76:67:ff:bf:f8:1e:45:58:bf:10:af:93:7c:
                    eb:01:35:46:0a:eb:55:5e:a4:b5:96:c0:e6:cb:b9:
                    29:30:35:0a:37:08:22:2e:da:98:6d:2d:ab:88:98:
                    7b:79:eb:94:3d:68:7d:e5:c7:ed:95:3d:92:cc:a5:
                    60:4a:bc:d5:98:dc:07:00:67:6f:3c:e0:ae:20:94:
                    e1:6c:92:81:5d:e1:39:3b:10:f2:dd:74:e9:2e:b7:
                    b5:cd:56:48:4d:8e:1b:65:39:c1:0f:f4:09:6b:8c:
                    c4:14:f2:c3:4a:66:70:9b:5f:f6:7a:48:91:e9:a3:
                    9d:c5:5d:5c:ad:af:93:46:13:09:46:49:d8:62:04:
                    8d:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:5F:BA:EA:01:C1:0C:38:E7:B5:99:5B:EB:8B:84:4B:20:0C:4C:6A
            X509v3 Authority Key Identifier:
                keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:e9:ea:45:2a:78:cb:10:eb:ba:c7:03:2d:c1:e7:58:4e:f1:
         02:8f:3e:86:f9:0d:19:77:0e:02:74:f9:69:dc:43:d7:17:26:
         49:61:f7:41:c3:5e:91:cc:ea:01:de:8a:83:13:05:2a:ab:b3:
         86:75:b8:69:ab:40:61:98:43:e1:bd:95:a1:13:3d:3a:5b:b5:
         56:4a:ae:e0:07:2e:9c:0d:27:d9:12:fe:00:0c:2c:73:4c:46:
         4a:c8:e2:14:1d:cf:e1:13:7e:89:2a:82:10:9c:6a:32:c0:11:
         58:f7:3a:23:24:38:18:22:8d:d5:3c:99:e9:18:78:48:46:76:
         c3:7e:f5:9d:b0:b6:27:1b:43:fd:9a:be:e8:b2:4f:d3:b5:31:
         6d:8f:64:f7:2a:e2:63:52:dc:48:dc:8c:85:e6:cd:18:a6:9b:
         0f:cb:cf:d2:9c:8d:b1:44:f5:f7:28:d4:0e:8b:26:05:d5:fc:
         a0:09:27:b6:ac:10:7b:85:d4:19:1c:71:0b:39:b5:60:60:40:
         79:52:d8:c1:59:60:33:94:ee:28:17:41:39:a7:80:89:d2:bb:
         d4:66:c4:d9:a5:50:0c:ce:a9:aa:90:3b:eb:f6:e5:5c:54:5e:
         87:51:15:d4:2a:6a:f2:de:ef:0a:24:6a:b5:bd:5c:61:d3:37:
         3a:a2:25:25
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz
RTk5MDM5QTMwHhcNMjYwNzExMDMzMTEzWhcNMjYwNzE4MDMzMTEzWjAYMRYwFAYD
VQQDEw02YTUxYjkwMi0xMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsGZdxPvO8Qa5qi5d8g1uOKbCWejbTepKHeqED9MXzmjKbXl4n7y6J6DRmKCL
PsLmPKUEH/6tFGoFjg4GWQSqOldvpBXACxjhYmslpBItzb7Jr5xzVgAGgORHtyGn
juOjsnYBtjT3LK89XwZgObl3x3UxtE7egUqDtXZn/7/4HkVYvxCvk3zrATVGCutV
XqS1lsDmy7kpMDUKNwgiLtqYbS2riJh7eeuUPWh95cftlT2SzKVgSrzVmNwHAGdv
POCuIJThbJKBXeE5OxDy3XTpLre1zVZITY4bZTnBD/QJa4zEFPLDSmZwm1/2ekiR
6aOdxV1cra+TRhMJRknYYgSNcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONfuuoB
wQw457WZW+uLhEsgDExqMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx
QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP
YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
RThCRi9CMzg5Q0YzODQxQTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIx
ZlNhZmRYTV9EX2ctbVFPYU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAUOnqRSp4yxDruscDLcHnWE7xAo8+hvkNGXcOAnT5adxD1xcmSWH3QcNekczq
Ad6KgxMFKquzhnW4aatAYZhD4b2VoRM9Olu1Vkqu4AcunA0n2RL+AAwsc0xGSsji
FB3P4RN+iSqCEJxqMsARWPc6IyQ4GCKN1TyZ6Rh4SEZ2w371nbC2JxtD/Zq+6LJP
07UxbY9k9yriY1LcSNyMhebNGKabD8vP0pyNsUT19yjUDosmBdX8oAkntqwQe4XU
GRxxCzm1YGBAeVLYwVlgM5TuKBdBOaeAidK71GbE2aVQDM6pqpA76/blXFReh1EV
1Cpq8t7vCiRqtb1cYdM3OqIlJQ==
-----END CERTIFICATE-----
Generated at Sun Jul 12 16:36:19 2026 by rpki-client