Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft
File:                     CO_XGTj3-dyHpp9cs_hMektyoAo.mft (raw, json)
Hash identifier:          /9bnAN+h3JGFrtvvAKLuGMBkuP3qFbFi7gogYfMxhYg=
Subject key identifier:   40:DF:C5:93:DE:74:4C:52:D9:F9:3C:E3:B0:63:B1:1A:13:CB:82:46
Authority key identifier: 08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A
Certificate issuer:       /CN=A91218BB/serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A
Certificate serial:       011C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft
Manifest number:          011C
Signing time:             Sun 05 Jul 2026 06:29:15 +0000
Manifest this update:     Sun 05 Jul 2026 06:29:15 +0000
Manifest next update:     Sun 12 Jul 2026 06:29:15 +0000
Files and hashes:         1: CO_XGTj3-dyHpp9cs_hMektyoAo.crl (hash: mv77ImrT4UHa9qjVpLxvBb/9m8QkjfayUAk8CE2gi+k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl
                          rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 06:29:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 284 (0x11c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91218BB, serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A
        Validity
            Not Before: Jul  5 06:29:15 2026 GMT
            Not After : Jul 12 06:29:15 2026 GMT
        Subject: CN=6a49f9bb-2e6c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:8f:75:62:f8:a8:ed:88:60:45:c1:a8:d1:01:
                    b6:8f:d8:94:4f:ef:78:1b:1a:87:51:b8:0f:00:06:
                    a4:ad:50:1f:4a:5e:89:3b:48:b4:d0:e4:9a:24:92:
                    79:9d:e4:ba:02:d7:2f:50:07:d6:41:de:d5:95:cd:
                    f4:3f:13:20:1b:64:4f:83:1f:33:39:17:a1:8d:e5:
                    70:90:29:43:99:98:85:05:dd:2d:e8:1e:cc:58:b5:
                    12:ce:d0:76:71:cb:c2:81:5c:45:22:80:fd:fe:3b:
                    ee:9d:e4:85:6e:d0:90:a0:77:34:c2:a1:3c:86:37:
                    29:8a:4b:38:4d:b3:07:06:69:ba:75:cb:8a:26:03:
                    3c:80:76:af:46:e8:a7:4f:f8:aa:df:ee:0f:c3:50:
                    4a:a2:5c:30:f7:a2:a9:d2:82:4c:f0:ed:60:31:a9:
                    e6:ea:ab:9a:e1:c5:09:86:88:9a:11:d7:74:42:ca:
                    a1:c8:08:19:ee:35:c8:41:a3:b8:90:f3:19:9f:d0:
                    8d:ce:cf:c8:16:a7:97:90:fa:1c:4f:f5:8a:74:2e:
                    7c:e8:c8:8a:89:75:9d:21:4b:b3:8b:ed:22:58:43:
                    bb:1a:2e:50:2a:2d:67:fa:6f:ab:3a:cb:19:ee:5a:
                    2d:6c:ea:24:98:a2:b4:d1:84:a4:97:a8:e9:f8:0f:
                    04:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:DF:C5:93:DE:74:4C:52:D9:F9:3C:E3:B0:63:B1:1A:13:CB:82:46
            X509v3 Authority Key Identifier:
                keyid:08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:f8:17:11:a3:8a:e3:75:f0:4d:c6:d8:7d:60:b8:af:f6:c6:
         d3:41:6a:a1:92:8b:6e:5d:a3:af:de:ec:7a:dd:0e:a6:50:b1:
         dd:8a:f9:31:1b:c8:2d:64:97:56:5e:14:45:43:0e:ee:14:c1:
         a1:3a:81:6c:2e:84:34:0e:a7:5b:a9:66:30:c7:41:c7:de:62:
         6c:25:12:4e:8a:b8:32:66:f8:fc:0e:da:66:ee:ef:bb:a5:24:
         18:d3:2a:9b:f6:e2:31:b2:32:a3:94:2a:c0:6c:6e:a8:2f:b5:
         92:26:e9:92:82:80:74:d5:c8:45:bb:87:49:4b:71:9d:ba:bb:
         97:84:90:9c:60:b6:01:44:a1:5b:ad:37:7d:b4:84:3d:6a:f9:
         ec:30:67:4b:40:32:b1:b2:d2:46:96:27:fd:d8:e5:6f:ca:43:
         53:5d:e5:22:e6:ae:ae:27:86:64:09:e4:49:03:02:27:79:3e:
         1a:da:09:44:92:53:d4:8b:50:09:7d:01:ee:78:dd:88:af:24:
         23:78:16:38:ba:21:04:43:16:ac:9e:3b:a8:2e:9b:f5:56:2b:
         f7:45:93:fd:20:c8:6f:fe:94:c9:93:66:1c:5e:da:5b:02:7a:
         88:89:48:9d:a4:0b:7d:2d:53:66:70:43:10:cf:4c:07:e6:8e:
         ba:0b:46:6d
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjE4QkIxMTAvBgNVBAUTKDA4RUZENzE5MzhGN0Y5REM4N0E2OUY1Q0IzRjg0QzdB
NEI3MkEwMEEwHhcNMjYwNzA1MDYyOTE1WhcNMjYwNzEyMDYyOTE1WjAYMRYwFAYD
VQQDEw02YTQ5ZjliYi0yZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2o91Yvio7YhgRcGo0QG2j9iUT+94GxqHUbgPAAakrVAfSl6JO0i00OSaJJJ5
neS6AtcvUAfWQd7Vlc30PxMgG2RPgx8zORehjeVwkClDmZiFBd0t6B7MWLUSztB2
ccvCgVxFIoD9/jvuneSFbtCQoHc0wqE8hjcpiks4TbMHBmm6dcuKJgM8gHavRuin
T/iq3+4Pw1BKolww96Kp0oJM8O1gManm6qua4cUJhoiaEdd0QsqhyAgZ7jXIQaO4
kPMZn9CNzs/IFqeXkPocT/WKdC586MiKiXWdIUuzi+0iWEO7Gi5QKi1n+m+rOssZ
7lotbOokmKK00YSkl6jp+A8ECwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEDfxZPe
dExS2fk847BjsRoTy4JGMB8GA1UdIwQYMBaAFAjv1xk49/nch6afXLP4THpLcqAK
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMThCQi83MUQ1MDYyRUM4
QzUxMUVGOEVDNTU1NjVDNEY5QUUwMi9DT19YR1RqMy1keUhwcDljc19oTWVrdHlv
QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0NPX1hHVGozLWR5SHBwOWNzX2hNZWt0eW9Bby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MThCQi83MUQ1MDYyRUM4QzUxMUVGOEVDNTU1NjVDNEY5QUUwMi9DT19YR1RqMy1k
eUhwcDljc19oTWVrdHlvQW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAOfgXEaOK43XwTcbYfWC4r/bG00FqoZKLbl2jr97set0OplCx3Yr5MRvILWSX
Vl4URUMO7hTBoTqBbC6ENA6nW6lmMMdBx95ibCUSToq4Mmb4/A7aZu7vu6UkGNMq
m/biMbIyo5QqwGxuqC+1kibpkoKAdNXIRbuHSUtxnbq7l4SQnGC2AUShW603fbSE
PWr57DBnS0AysbLSRpYn/djlb8pDU13lIuaurieGZAnkSQMCJ3k+GtoJRJJT1ItQ
CX0B7njdiK8kI3gWOLohBEMWrJ47qC6b9VYr90WT/SDIb/6UyZNmHF7aWwJ6iIlI
naQLfS1TZnBDEM9MB+aOugtGbQ==
-----END CERTIFICATE-----
Generated at Mon Jul 6 09:56:18 2026 by rpki-client