Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft
File:                     tIPaBfgQj61WuWetrdJRxslpwlI.mft (raw, json)
Hash identifier:          3sk2wJfC8a1bd33tzpvfMvgf2GwHwxq1Nl7wfsiRnEs=
Subject key identifier:   29:AF:F3:3D:3D:F2:F2:6B:2A:BC:1A:BA:6A:5D:A9:38:06:4D:E9:78
Authority key identifier: B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52
Certificate issuer:       /CN=A91178F4/serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252
Certificate serial:       025B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft
Manifest number:          025B
Signing time:             Thu 16 Jul 2026 18:47:12 +0000
Manifest this update:     Thu 16 Jul 2026 18:47:11 +0000
Manifest next update:     Thu 23 Jul 2026 18:47:11 +0000
Files and hashes:         1: tIPaBfgQj61WuWetrdJRxslpwlI.crl (hash: ZwXGgpk/Myu6hDdH2lz+35h8uUZ3v566oxM6HK7onoY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl
                          rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 18:47:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 603 (0x25b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91178F4, serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252
        Validity
            Not Before: Jul 16 18:47:11 2026 GMT
            Not After : Jul 23 18:47:11 2026 GMT
        Subject: CN=6a59272f-be88
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:5b:49:80:12:84:64:5a:ae:df:5a:3d:11:58:
                    ab:f4:76:d0:0c:c7:3c:5b:1e:1e:9b:0a:9b:16:fd:
                    0a:0d:06:05:f0:76:b3:0c:38:07:27:f9:00:99:12:
                    f6:77:16:61:fa:0d:28:d9:fb:49:ad:81:77:fc:61:
                    3d:b6:3c:e7:aa:1e:5d:e7:2e:a7:35:83:d5:5c:d8:
                    16:c5:43:21:86:f1:5c:53:fa:3c:41:71:b9:28:68:
                    bd:ba:6b:5d:43:cd:69:26:a2:41:eb:53:42:70:16:
                    15:ab:82:50:bc:e7:2f:0f:31:7f:6e:0a:f4:b4:10:
                    05:68:27:64:90:b9:d8:05:d4:4d:02:49:9d:21:d8:
                    9c:d4:6d:88:a5:39:c2:90:a4:c2:1a:49:cd:fd:de:
                    b7:bb:0d:df:45:5b:18:57:ff:b7:81:c7:ba:73:97:
                    e5:1b:bf:4f:a1:41:af:ef:fb:1a:e3:5b:02:92:0a:
                    2a:46:2b:ad:36:03:4c:3d:9f:2b:06:bb:54:68:85:
                    70:ba:33:05:86:3f:68:1a:ca:57:ae:f9:93:a1:e6:
                    3b:07:69:75:3a:16:3f:d0:65:18:13:56:b3:5d:e7:
                    e9:c5:b6:c2:33:40:d7:c3:69:e2:b0:e2:bd:bc:7f:
                    54:b2:fd:f4:ad:48:8d:94:d0:56:af:b1:81:8c:54:
                    b1:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:AF:F3:3D:3D:F2:F2:6B:2A:BC:1A:BA:6A:5D:A9:38:06:4D:E9:78
            X509v3 Authority Key Identifier:
                keyid:B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:94:b3:c6:cf:23:e3:95:6f:1b:9a:5d:ac:51:bd:86:80:80:
         c5:c0:ab:f4:b0:89:24:ab:af:9f:4f:3a:53:13:f1:59:c3:e0:
         29:7e:e1:89:ca:1e:41:4d:2b:48:97:c6:19:05:36:b8:87:72:
         8c:8d:8e:6c:08:5b:55:1c:64:c9:20:9b:98:c0:41:d8:94:ff:
         d1:e1:0e:ab:74:16:2c:91:10:27:12:0f:95:18:bf:ac:89:0d:
         db:52:db:da:ff:64:95:50:dc:d0:8d:13:02:d2:ca:3a:77:52:
         20:33:90:cd:9d:8e:26:f8:b2:4c:8f:12:b1:7b:e1:e0:b5:50:
         50:d1:53:6e:d8:00:ff:bb:3e:e9:ad:3b:8e:07:b7:8d:c6:92:
         0c:20:1c:e8:e7:02:9a:3d:7b:a1:8b:52:53:cc:b8:c2:5b:2e:
         25:66:ed:86:e6:12:3c:31:d6:35:83:07:59:7e:99:a3:94:37:
         34:c1:0e:7b:85:fc:1b:63:12:5d:36:b2:d0:78:a5:db:5a:37:
         48:20:5d:3e:25:ca:59:54:23:44:fd:d6:28:26:9d:d9:96:ae:
         50:ce:6d:9d:b8:d9:2b:69:0a:ee:4e:e4:17:67:b0:c7:68:ed:
         ad:5c:f9:95:97:3b:e1:49:c6:91:d9:36:43:c1:bb:84:c8:8f:
         f6:bb:00:1b
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTc4RjQxMTAvBgNVBAUTKEI0ODNEQTA1RjgxMDhGQUQ1NkI5NjdBREFERDI1MUM2
Qzk2OUMyNTIwHhcNMjYwNzE2MTg0NzExWhcNMjYwNzIzMTg0NzExWjAYMRYwFAYD
VQQDEw02YTU5MjcyZi1iZTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAj1tJgBKEZFqu31o9EVir9HbQDMc8Wx4emwqbFv0KDQYF8HazDDgHJ/kAmRL2
dxZh+g0o2ftJrYF3/GE9tjznqh5d5y6nNYPVXNgWxUMhhvFcU/o8QXG5KGi9umtd
Q81pJqJB61NCcBYVq4JQvOcvDzF/bgr0tBAFaCdkkLnYBdRNAkmdIdic1G2IpTnC
kKTCGknN/d63uw3fRVsYV/+3gce6c5flG79PoUGv7/sa41sCkgoqRiutNgNMPZ8r
BrtUaIVwujMFhj9oGspXrvmToeY7B2l1OhY/0GUYE1azXefpxbbCM0DXw2nisOK9
vH9Usv30rUiNlNBWr7GBjFSx5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCmv8z09
8vJrKrwaumpdqTgGTel4MB8GA1UdIwQYMBaAFLSD2gX4EI+tVrlnra3SUcbJacJS
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzhGNC9CRjBBMUU5QUYw
QjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2MVd1V2V0cmRKUnhzbHB3
bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3RJUGFCZmdRajYxV3VXZXRyZEpSeHNscHdsSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
NzhGNC9CRjBBMUU5QUYwQjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2
MVd1V2V0cmRKUnhzbHB3bEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAPJSzxs8j45VvG5pdrFG9hoCAxcCr9LCJJKuvn086UxPxWcPgKX7hicoeQU0r
SJfGGQU2uIdyjI2ObAhbVRxkySCbmMBB2JT/0eEOq3QWLJEQJxIPlRi/rIkN21Lb
2v9klVDc0I0TAtLKOndSIDOQzZ2OJviyTI8SsXvh4LVQUNFTbtgA/7s+6a07jge3
jcaSDCAc6OcCmj17oYtSU8y4wlsuJWbthuYSPDHWNYMHWX6Zo5Q3NMEOe4X8G2MS
XTay0Hil21o3SCBdPiXKWVQjRP3WKCad2ZauUM5tnbjZK2kK7k7kF2ewx2jtrVz5
lZc74UnGkdk2Q8G7hMiP9rsAGw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:32 2026 by rpki-client