Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft
File:                     d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json)
Hash identifier:          4u1jLJefHUP+aQFC69AVLUiTXnaKH9kFvLZOHJKK2uA=
Subject key identifier:   6E:1D:E4:4D:26:49:0E:4C:4D:49:35:41:7F:7F:80:52:69:4D:6C:F2
Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14
Certificate issuer:       /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14
Certificate serial:       059B
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft
Manifest number:          0587
Signing time:             Thu 16 Jul 2026 23:47:31 +0000
Manifest this update:     Thu 16 Jul 2026 23:47:30 +0000
Manifest next update:     Thu 23 Jul 2026 23:47:30 +0000
Files and hashes:         1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: owx7yqPC3v9PN58hA+u0ac0TTgnJTfejMrYIsxO4BjI=)
                          2: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xL18VcZ56ntQg06dxu8mPMsho0DT/fe8AiSvaUT/7NM=)
                          3: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: Z6zpJNeDiRoumvX5lCIDf2X6SZzpmpEYlhnAJ6yadjo=)
                          4: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: yeDD3azucqTXwa0Gdb8W5tD9O2qrp+zwpH6Y+zEBWbM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl
                          rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:47:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1435 (0x59b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14
        Validity
            Not Before: Jul 16 23:47:30 2026 GMT
            Not After : Jul 23 23:47:30 2026 GMT
        Subject: CN=6a596d93-b9fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:f7:1d:ff:10:05:14:ac:ec:4e:65:dc:cc:29:
                    f1:cd:17:6a:c6:3b:10:23:10:41:1f:7c:79:d0:fa:
                    fa:c9:96:25:ff:22:c1:f4:4d:06:86:2c:94:74:77:
                    1f:c6:07:05:a8:a5:36:f5:5c:50:ea:4b:d3:1b:ee:
                    e4:21:42:57:af:bc:3b:06:6f:a7:96:00:80:5f:b2:
                    44:a3:b8:bb:ba:17:48:76:05:de:c6:ee:03:f6:52:
                    41:66:21:4c:67:9c:ca:b1:83:31:1a:76:b4:30:3f:
                    92:23:48:ed:95:cc:62:7b:7d:3d:d2:d3:b3:1a:ff:
                    8a:55:33:4d:7e:61:78:67:ec:80:da:80:40:8b:1e:
                    1f:87:23:28:29:72:1d:17:98:c0:15:36:51:c3:08:
                    a3:8e:7e:38:65:be:c4:a3:0c:2e:08:38:4f:46:b3:
                    d6:58:1e:81:d0:dd:39:c2:b4:cd:23:ca:e1:86:e8:
                    27:74:e5:92:4b:8b:99:f3:63:7b:3b:a9:4a:76:dc:
                    1f:c5:5c:55:fa:e8:45:6f:95:69:2a:55:8e:be:66:
                    7c:bd:31:c6:39:09:30:db:76:a9:03:f4:09:f2:e0:
                    05:bc:1f:71:4d:18:61:ae:ae:38:b5:3f:4c:aa:a4:
                    61:4f:ca:6d:47:54:a8:b9:11:7f:22:7f:56:7f:f7:
                    96:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:1D:E4:4D:26:49:0E:4C:4D:49:35:41:7F:7F:80:52:69:4D:6C:F2
            X509v3 Authority Key Identifier:
                keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:5d:c5:ab:84:8e:d5:7a:4c:92:34:5a:2e:04:16:25:c1:4a:
         bf:02:01:3c:15:cf:83:98:4e:df:6d:e5:ff:72:25:6b:b4:19:
         35:7f:f0:1a:e7:72:58:26:de:84:1f:31:54:d7:88:c5:87:51:
         10:a1:93:8f:0c:60:2f:7a:c8:24:c8:40:bf:da:05:2a:84:48:
         62:93:9a:27:cb:82:ef:51:c5:da:3b:7b:6d:c1:70:85:2d:99:
         b8:0a:c0:e4:2e:2d:d1:c3:a7:dc:54:46:cb:6b:51:c3:ff:22:
         f8:a8:89:4b:b6:33:77:ca:e0:34:25:3f:12:87:9e:3e:b9:c7:
         32:26:14:54:31:1b:84:79:fd:d3:2d:bb:9b:3d:ce:da:96:2a:
         2e:83:aa:1b:58:a8:54:a6:4e:6d:56:12:4e:d1:fb:fe:d0:f7:
         a7:71:ec:07:a4:ad:a3:b7:5b:24:4c:0c:53:b2:b2:e0:80:87:
         6a:e0:ad:84:90:e4:17:03:b5:1d:ac:37:a7:6e:e3:9e:cb:87:
         c4:fd:41:64:95:36:33:1d:9d:48:87:30:ce:1a:98:5b:9c:80:
         d1:6a:26:10:0a:18:91:cf:55:9f:7c:d1:37:89:e4:d9:a1:35:
         51:80:fa:fe:ef:cb:50:05:0b:af:f5:b9:22:3d:67:47:0a:ef:
         58:7e:29:37
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG
NjQyRkRBMTQwHhcNMjYwNzE2MjM0NzMwWhcNMjYwNzIzMjM0NzMwWjAYMRYwFAYD
VQQDEw02YTU5NmQ5My1iOWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvPcd/xAFFKzsTmXczCnxzRdqxjsQIxBBH3x50Pr6yZYl/yLB9E0GhiyUdHcf
xgcFqKU29VxQ6kvTG+7kIUJXr7w7Bm+nlgCAX7JEo7i7uhdIdgXexu4D9lJBZiFM
Z5zKsYMxGna0MD+SI0jtlcxie3090tOzGv+KVTNNfmF4Z+yA2oBAix4fhyMoKXId
F5jAFTZRwwijjn44Zb7EowwuCDhPRrPWWB6B0N05wrTNI8rhhugndOWSS4uZ82N7
O6lKdtwfxVxV+uhFb5VpKlWOvmZ8vTHGOQkw23apA/QJ8uAFvB9xTRhhrq44tT9M
qqRhT8ptR1SouRF/In9Wf/eWFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG4d5E0m
SQ5MTUk1QX9/gFJpTWzyMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw
OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy
aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy
RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN
UXkza2JVdy0yaFQyUXYyaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAY13Fq4SO1XpMkjRaLgQWJcFKvwIBPBXPg5hO323l/3Ila7QZNX/wGudyWCbe
hB8xVNeIxYdREKGTjwxgL3rIJMhAv9oFKoRIYpOaJ8uC71HF2jt7bcFwhS2ZuArA
5C4t0cOn3FRGy2tRw/8i+KiJS7Yzd8rgNCU/EoeePrnHMiYUVDEbhHn90y27mz3O
2pYqLoOqG1ioVKZObVYSTtH7/tD3p3HsB6Sto7dbJEwMU7Ky4ICHauCthJDkFwO1
Haw3p27jnsuHxP1BZJU2Mx2dSIcwzhqYW5yA0WomEAoYkc9Vn3zRN4nk2aE1UYD6
/u/LUAULr/W5Ij1nRwrvWH4pNw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:16:07 2026 by rpki-client