Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft
File:                     45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json)
Hash identifier:          MQxNZSqHCxMZCgHJW8ee9xKjLKloT5CXG7kYuSKIlqg=
Subject key identifier:   CF:99:AE:04:42:D9:13:F6:B0:68:9D:B2:0B:DB:0A:D6:AE:27:A8:3E
Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18
Certificate issuer:       /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118
Certificate serial:       0217
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft
Manifest number:          0209
Signing time:             Thu 09 Jul 2026 04:41:41 +0000
Manifest this update:     Thu 09 Jul 2026 04:41:40 +0000
Manifest next update:     Thu 16 Jul 2026 04:41:40 +0000
Files and hashes:         1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: xj22A7k/ThaEf9HO8UNeLoRafLIaqhFhSDaxlJWjSks=)
                          2: 624C3E865DB011F0875D570FC4F9AE02.roa (hash: vugsK16sJjvSr8OK0LSYKyoQkwn8bb1O/z7sIhYr5Cs=)
                          3: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: ViCudgIPygezvAtMJaZKmsZPceBqOw4Pvj8wkwoWduE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl
                          rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 04:41:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 535 (0x217)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118
        Validity
            Not Before: Jul  9 04:41:40 2026 GMT
            Not After : Jul 16 04:41:40 2026 GMT
        Subject: CN=6a4f2684-2088
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:2f:b3:90:79:5b:ec:14:f3:5e:77:2d:6e:28:
                    7c:3c:48:1b:19:a7:96:c9:28:76:62:ae:3c:3c:89:
                    92:06:d6:98:0b:e3:7d:42:d6:b4:be:c3:99:05:dc:
                    52:e9:54:eb:07:90:97:60:c8:ff:99:8a:51:86:77:
                    79:d8:05:52:e0:35:c9:43:bd:66:9f:c0:7c:ea:3c:
                    6e:60:18:45:63:b9:ab:56:a5:f5:a2:e3:80:44:61:
                    5b:79:de:fa:94:35:40:34:82:f3:8d:21:33:cd:47:
                    45:58:e6:51:ad:8c:61:b5:e0:15:ec:e9:97:2c:49:
                    d9:07:ff:26:a4:7a:36:1c:43:f5:53:1d:9c:d6:46:
                    f8:02:8b:b7:7c:ba:60:a6:a3:42:48:3c:c7:60:ab:
                    ca:27:db:28:df:72:c0:fd:a3:7c:cc:fc:25:1c:7d:
                    2c:78:02:05:b0:3b:70:14:17:6e:03:ee:e5:35:48:
                    d8:7b:3f:0b:4f:93:01:db:bb:03:1f:ac:b9:09:39:
                    13:3a:48:1e:8f:3a:3c:38:7a:18:bf:5a:7e:2e:ef:
                    67:e3:fb:8b:ec:14:30:48:04:e8:0e:04:c3:7f:5c:
                    20:1f:5b:74:33:0e:0f:d4:1f:2f:9d:80:41:65:de:
                    39:c5:5d:92:bb:dd:30:d8:2c:4d:77:db:b5:64:0d:
                    9a:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:99:AE:04:42:D9:13:F6:B0:68:9D:B2:0B:DB:0A:D6:AE:27:A8:3E
            X509v3 Authority Key Identifier:
                keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:3c:76:c8:27:d1:57:6c:b6:27:fe:90:33:6b:bc:fc:84:6e:
         48:d0:23:58:ea:12:e4:d3:33:77:b0:2f:ff:48:b2:57:70:48:
         50:54:54:0e:84:d4:42:49:f4:d3:64:77:77:70:52:4e:50:70:
         8b:ed:cf:17:d7:87:a1:2f:b1:50:dd:46:cb:3c:2a:de:d5:40:
         4b:4b:86:c9:4b:b0:e6:49:17:92:b9:05:62:05:51:68:c3:33:
         b2:79:d6:45:5e:4c:d6:dd:f3:04:6e:af:00:06:b1:06:46:04:
         12:4a:35:17:1b:d1:22:2a:6b:82:45:44:51:85:d3:d6:7d:bd:
         65:25:6a:08:b5:0b:41:5c:3f:1a:6c:6c:09:fd:d4:dc:cb:f2:
         fd:65:09:e4:4b:90:21:d9:c4:46:fb:9e:d8:55:77:01:d2:31:
         da:8e:12:a3:48:eb:5d:4c:98:21:d5:42:9a:4f:e5:c0:fa:21:
         9b:03:74:84:ec:10:94:64:f3:0b:b6:85:db:6b:29:7c:0e:25:
         c9:b6:07:48:c0:2a:66:cd:c3:07:7d:d3:87:38:94:8f:c0:ca:
         4f:9c:cd:98:98:dc:8d:52:f4:ff:67:a4:af:bd:35:80:b5:14:
         80:ba:cf:63:24:30:ce:1e:54:37:87:d9:b4:ea:00:1d:04:90:
         5f:5e:fc:5e
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz
RjYzREIxMTgwHhcNMjYwNzA5MDQ0MTQwWhcNMjYwNzE2MDQ0MTQwWjAYMRYwFAYD
VQQDEw02YTRmMjY4NC0yMDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAiC+zkHlb7BTzXnctbih8PEgbGaeWySh2Yq48PImSBtaYC+N9Qta0vsOZBdxS
6VTrB5CXYMj/mYpRhnd52AVS4DXJQ71mn8B86jxuYBhFY7mrVqX1ouOARGFbed76
lDVANILzjSEzzUdFWOZRrYxhteAV7OmXLEnZB/8mpHo2HEP1Ux2c1kb4Aou3fLpg
pqNCSDzHYKvKJ9so33LA/aN8zPwlHH0seAIFsDtwFBduA+7lNUjYez8LT5MB27sD
H6y5CTkTOkgejzo8OHoYv1p+Lu9n4/uL7BQwSAToDgTDf1wgH1t0Mw4P1B8vnYBB
Zd45xV2Su90w2CxNd9u1ZA2aUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM+ZrgRC
2RP2sGidsgvbCtauJ6g+MB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE
NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz
UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp
X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEANDx2yCfRV2y2J/6QM2u8/IRuSNAjWOoS5NMzd7Av/0iyV3BIUFRUDoTUQkn0
02R3d3BSTlBwi+3PF9eHoS+xUN1Gyzwq3tVAS0uGyUuw5kkXkrkFYgVRaMMzsnnW
RV5M1t3zBG6vAAaxBkYEEko1FxvRIiprgkVEUYXT1n29ZSVqCLULQVw/GmxsCf3U
3Mvy/WUJ5EuQIdnERvue2FV3AdIx2o4So0jrXUyYIdVCmk/lwPohmwN0hOwQlGTz
C7aF22spfA4lybYHSMAqZs3DB33ThziUj8DKT5zNmJjcjVL0/2ekr701gLUUgLrP
YyQwzh5UN4fZtOoAHQSQX178Xg==
-----END CERTIFICATE-----
Generated at Thu Jul 9 07:29:05 2026 by rpki-client