Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
File:                     GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json)
Hash identifier:          0mWTK+2nNdjAxedAzqZz8xLcz5uaAcQ9BQaBiuKWYrU=
Subject key identifier:   F4:3B:5E:F2:7E:56:DC:2B:22:A1:4E:E5:4B:02:75:D8:B8:22:F4:7B
Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
Certificate issuer:       /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Certificate serial:       0DF7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
Manifest number:          0D92
Signing time:             Sun 12 Jul 2026 18:13:14 +0000
Manifest this update:     Sun 12 Jul 2026 18:13:13 +0000
Manifest next update:     Sun 19 Jul 2026 18:13:13 +0000
Files and hashes:         1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: 9t/dv1kp6R3aQx4E5Yx+hWCSLKmq6jorm7+b+rPw5Uk=)
                          2: 14AD087E635711F1A8C1BFBC9B47A888.roa (hash: /xu/u+3n4gHsOINUiGMqVZ+4o2jYPP8AqjTqfATumMY=)
                          3: D56F7FF2635611F1B3748DBC9B47A888.roa (hash: dsJg18m5mrxYhkg7yugi1O9ZuT6p9PFj0K0zE1hSxQU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
                          rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 19 Jul 2026 18:13:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3575 (0xdf7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
        Validity
            Not Before: Jul 12 18:13:13 2026 GMT
            Not After : Jul 19 18:13:13 2026 GMT
        Subject: CN=6a53d93a-f669
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:4c:e4:83:83:7a:ea:eb:44:c1:cf:ad:9a:11:
                    6d:29:2b:fe:70:d4:a1:17:7b:1f:a1:f7:05:32:28:
                    26:c1:94:80:7d:f7:7e:1c:de:29:fc:bb:92:80:f1:
                    65:c7:23:9a:ea:9e:f1:d6:cd:08:87:a7:5c:20:9f:
                    58:1b:fa:fd:f4:e5:2c:23:7d:44:52:65:47:73:60:
                    92:67:5f:6f:17:ba:74:cd:27:ff:68:99:b6:38:2e:
                    c2:99:f1:1d:0b:4b:50:c9:ea:ed:58:86:70:d7:6b:
                    64:b0:5a:bc:4f:0d:78:37:c2:d1:da:10:e1:65:eb:
                    03:c6:5b:f6:97:d4:f9:08:82:4b:e7:09:a8:4e:c8:
                    c7:5c:2e:cd:20:6b:6a:3a:b5:d0:85:7f:5d:49:9b:
                    68:b7:b9:be:75:df:fe:44:0d:b5:22:42:42:18:8a:
                    03:15:f6:62:62:3e:e9:dc:35:07:9f:aa:af:6a:bc:
                    db:71:66:99:39:9e:01:87:63:24:54:e4:38:80:8f:
                    af:24:0f:a4:1d:9d:ef:5f:78:c2:f5:95:68:a6:e3:
                    47:67:a9:7f:52:d1:11:c2:07:2c:bb:b2:c8:aa:a3:
                    71:0b:4f:32:78:fa:2c:85:9c:44:42:4d:2e:a7:fc:
                    4d:d0:6d:ce:d6:19:b6:0e:27:69:7b:9e:40:99:44:
                    c7:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:3B:5E:F2:7E:56:DC:2B:22:A1:4E:E5:4B:02:75:D8:B8:22:F4:7B
            X509v3 Authority Key Identifier:
                keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:44:4f:38:58:50:19:e4:43:11:b1:50:a6:6c:81:b6:cc:3c:
         7c:6c:fc:ea:a9:95:77:a7:1e:f7:2e:e0:68:2d:a4:eb:b6:4a:
         ac:43:79:9e:ce:82:66:5f:72:e7:60:82:92:7b:2b:61:62:63:
         74:5a:21:37:3e:cf:30:33:24:16:2e:db:17:fc:45:ec:92:8d:
         72:39:aa:46:f6:99:ed:09:23:ba:d5:d6:8f:8d:0e:f6:16:54:
         15:f5:4f:8b:4d:96:3a:58:c4:ef:06:12:1a:40:7c:b1:a9:79:
         eb:99:08:8d:b2:d4:53:b7:1b:0e:5e:dd:c7:e2:02:6f:66:9d:
         b2:29:54:58:0b:50:32:a3:db:58:93:55:8c:c6:60:69:18:28:
         17:70:94:4b:f6:10:54:c2:fe:3b:9a:b0:0c:23:2b:fb:07:8a:
         1f:b9:65:55:e7:24:7f:0f:b3:2b:95:f8:7d:a0:6b:ea:e1:f1:
         9d:4c:f2:4f:89:c2:5b:7c:5e:fa:d5:d1:1a:d3:9c:d4:98:f7:
         98:7c:85:f2:69:f1:35:25:0d:73:84:eb:ae:da:ee:97:13:de:
         7e:a5:b5:46:df:92:a1:1e:fb:3f:65:ab:09:aa:21:2e:8c:6f:
         72:6e:71:97:1c:ae:58:27:29:ab:9f:7b:5d:87:b4:f7:f6:df:
         42:7b:09:3a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICDfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB
RjYyREVGRkQwHhcNMjYwNzEyMTgxMzEzWhcNMjYwNzE5MTgxMzEzWjAYMRYwFAYD
VQQDEw02YTUzZDkzYS1mNjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtUzkg4N66utEwc+tmhFtKSv+cNShF3sfofcFMigmwZSAffd+HN4p/LuSgPFl
xyOa6p7x1s0Ih6dcIJ9YG/r99OUsI31EUmVHc2CSZ19vF7p0zSf/aJm2OC7CmfEd
C0tQyertWIZw12tksFq8Tw14N8LR2hDhZesDxlv2l9T5CIJL5wmoTsjHXC7NIGtq
OrXQhX9dSZtot7m+dd/+RA21IkJCGIoDFfZiYj7p3DUHn6qvarzbcWaZOZ4Bh2Mk
VOQ4gI+vJA+kHZ3vX3jC9ZVopuNHZ6l/UtERwgcsu7LIqqNxC08yePoshZxEQk0u
p/xN0G3O1hm2Didpe55AmUTHGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPQ7XvJ+
VtwrIqFO5UsCddi4IvR7MB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2
QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3
XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE
Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAE0RPOFhQGeRDEbFQpmyBtsw8fGz86qmVd6ce9y7gaC2k67ZKrEN5ns6CZl9y
52CCknsrYWJjdFohNz7PMDMkFi7bF/xF7JKNcjmqRvaZ7QkjutXWj40O9hZUFfVP
i02WOljE7wYSGkB8sal565kIjbLUU7cbDl7dx+ICb2adsilUWAtQMqPbWJNVjMZg
aRgoF3CUS/YQVML+O5qwDCMr+weKH7llVeckfw+zK5X4faBr6uHxnUzyT4nCW3xe
+tXRGtOc1Jj3mHyF8mnxNSUNc4TrrtrulxPefqW1Rt+SoR77P2WrCaohLoxvcm5x
lxyuWCcpq597XYe09/bfQnsJOg==
-----END CERTIFICATE-----
Generated at Sun Jul 12 23:52:57 2026 by rpki-client