Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft
File:                     LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json)
Hash identifier:          h6nQFA+nVto9xZYS2Q9QhSeUMa0POarN31C6DkmMw/w=
Subject key identifier:   96:28:F6:7C:91:8D:BD:A2:8E:5E:98:06:47:0C:2A:D0:47:7E:91:79
Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A
Certificate issuer:       /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A
Certificate serial:       014C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft
Manifest number:          013B
Signing time:             Fri 17 Jul 2026 06:49:50 +0000
Manifest this update:     Fri 17 Jul 2026 06:49:50 +0000
Manifest next update:     Fri 24 Jul 2026 06:49:50 +0000
Files and hashes:         1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: I7lUDXzkspb8jLfJdsUYM1dE0Wv1BXvzxyNQSyr+dd0=)
                          2: 45541EE4C9F711F087D2166DC4F9AE02.roa (hash: BBo/D4ougHcvt0CTiUR2zOn2G1nX/DbXKy3xlNXCyJE=)
                          3: 44870D64C9F711F0BE5A166DC4F9AE02.roa (hash: j8pxYqwHjG1CeMy1Rqa7oP4d9g5hA6p616Cf9S7A0+0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl
                          rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:49:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 332 (0x14c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A
        Validity
            Not Before: Jul 17 06:49:50 2026 GMT
            Not After : Jul 24 06:49:50 2026 GMT
        Subject: CN=6a59d08e-dd48
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:e4:67:e4:33:43:03:4d:53:fa:24:02:72:a4:
                    93:7e:86:58:41:7f:c1:e1:12:75:92:71:8a:4a:02:
                    56:a1:88:4c:a8:a0:0c:7c:5d:81:10:c6:cc:94:81:
                    54:24:e3:ea:a2:dd:a8:0e:95:e3:db:29:e8:6f:cc:
                    ce:d7:03:59:32:9d:20:14:c8:40:2b:62:9a:13:b0:
                    82:05:b1:35:be:ad:33:4e:37:ea:83:ae:92:d0:f7:
                    0a:11:58:c5:cc:21:cf:41:aa:2c:92:ee:e0:b2:44:
                    89:e0:b6:ff:fd:5b:d0:09:f1:4c:e3:09:e6:f5:20:
                    ee:81:3f:f2:ea:cb:1c:59:5e:62:e8:a5:e4:23:61:
                    99:06:d7:39:16:12:28:c2:bc:71:f8:63:2d:9d:fd:
                    36:31:bb:e6:86:df:a7:69:41:29:75:2f:9e:49:9a:
                    b9:ba:2f:89:43:d6:9a:af:8c:0d:1b:9d:d0:a6:4c:
                    a7:ab:ce:fd:b4:4d:79:62:86:ee:de:91:aa:93:ab:
                    71:59:02:2f:c1:8c:0a:91:c7:cb:b3:f4:d1:93:b9:
                    90:ee:59:0f:83:10:ed:5f:45:83:b6:c9:e8:0c:b6:
                    36:23:b3:64:32:e7:31:9a:c4:c7:9c:69:0a:53:5b:
                    f3:14:45:b8:36:f7:4a:d5:a7:f6:29:e5:34:86:9e:
                    2a:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:28:F6:7C:91:8D:BD:A2:8E:5E:98:06:47:0C:2A:D0:47:7E:91:79
            X509v3 Authority Key Identifier:
                keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:91:b2:f8:bb:f1:8f:d4:7b:36:e2:02:79:78:b5:c5:ae:05:
         0c:07:de:98:f0:81:6c:25:60:c5:6b:90:89:59:2e:a5:be:8c:
         11:25:26:e8:a6:aa:e5:12:52:ca:72:50:b4:21:4a:15:69:fe:
         00:b3:b8:1f:de:e9:4d:ac:4a:a7:0d:a9:d3:f0:ec:48:eb:a5:
         97:0d:93:3e:93:5e:34:6a:d1:14:3d:03:49:ce:d5:15:97:87:
         6c:16:ae:c0:74:df:8b:d9:ae:e0:0b:8f:31:26:aa:2a:8a:cd:
         8f:80:9c:d3:83:22:99:ce:9f:f5:ad:c8:24:ab:33:19:18:e2:
         97:68:39:0b:2e:08:4d:46:f5:6e:4b:70:55:b2:2f:b5:4e:c7:
         01:29:fb:ef:41:ae:1d:c6:2c:01:ca:4a:49:53:c1:ff:4b:39:
         31:c2:61:51:91:a7:96:86:71:c8:51:c0:b0:24:83:c9:c7:b4:
         63:37:94:15:ab:99:38:31:3d:cf:26:8b:4b:30:7b:e6:8c:16:
         4e:24:a2:7f:82:72:70:45:48:ce:62:8f:da:95:51:46:a0:48:
         ba:0d:dc:a4:4b:d3:ad:f7:0d:46:cf:a2:2f:e8:62:8a:1a:88:
         47:69:b0:4d:fa:fa:9b:18:9e:d2:09:70:ea:20:c7:55:bd:40:
         94:b6:2a:66
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5
NDJFNkE1MUEwHhcNMjYwNzE3MDY0OTUwWhcNMjYwNzI0MDY0OTUwWjAYMRYwFAYD
VQQDEw02YTU5ZDA4ZS1kZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0eRn5DNDA01T+iQCcqSTfoZYQX/B4RJ1knGKSgJWoYhMqKAMfF2BEMbMlIFU
JOPqot2oDpXj2ynob8zO1wNZMp0gFMhAK2KaE7CCBbE1vq0zTjfqg66S0PcKEVjF
zCHPQaosku7gskSJ4Lb//VvQCfFM4wnm9SDugT/y6sscWV5i6KXkI2GZBtc5FhIo
wrxx+GMtnf02Mbvmht+naUEpdS+eSZq5ui+JQ9aar4wNG53Qpkynq879tE15Yobu
3pGqk6txWQIvwYwKkcfLs/TRk7mQ7lkPgxDtX0WDtsnoDLY2I7NkMucxmsTHnGkK
U1vzFEW4NvdK1af2KeU0hp4qjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJYo9nyR
jb2ijl6YBkcMKtBHfpF5MB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD
MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w
Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky
TkdTakYzcXpJUUdVTG1wUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAF5Gy+Lvxj9R7NuICeXi1xa4FDAfemPCBbCVgxWuQiVkupb6MESUm6Kaq5RJS
ynJQtCFKFWn+ALO4H97pTaxKpw2p0/DsSOullw2TPpNeNGrRFD0DSc7VFZeHbBau
wHTfi9mu4AuPMSaqKorNj4Cc04Mimc6f9a3IJKszGRjil2g5Cy4ITUb1bktwVbIv
tU7HASn770GuHcYsAcpKSVPB/0s5McJhUZGnloZxyFHAsCSDyce0YzeUFauZODE9
zyaLSzB75owWTiSif4JycEVIzmKP2pVRRqBIug3cpEvTrfcNRs+iL+hiihqIR2mw
Tfr6mxie0glw6iDHVb1AlLYqZg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 04:31:29 2026 by rpki-client