Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft
File:                     dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json)
Hash identifier:          D0fwmEpk2vAW5+uT8byCcaqh9TZzYm3bMwsRUUwy0t8=
Subject key identifier:   84:A2:CD:67:F1:B8:D4:D0:C2:A0:EC:EA:78:2C:EB:BB:F4:8C:A1:6A
Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4
Certificate issuer:       /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4
Certificate serial:       0C92
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft
Manifest number:          0C0C
Signing time:             Thu 16 Jul 2026 19:25:33 +0000
Manifest this update:     Thu 16 Jul 2026 19:25:33 +0000
Manifest next update:     Thu 23 Jul 2026 19:25:33 +0000
Files and hashes:         1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: S6yOaii1wOluX8Mo6Uh0G+9tVzeigUE1F4iuQA1J03w=)
                          2: FC895C72C39F11F095CC9914C4F9AE02.roa (hash: oeoqWRtwQTgBkvjilvWPRZDpoi0Ors8C695fBl0ectw=)
                          3: DC2FC844C39F11F0B36A6414C4F9AE02.roa (hash: V2qlmV4XkoxlRoXJX3GJoP5zWEsqS91ZCQdcyts5qHo=)
                          4: 50448A72911411EF9CAF3E55C4F9AE02.roa (hash: PUCwcVB7mOMKNLxgaPflJNHZ7wfZlaCCwrgkjtHbLlA=)
                          5: 9E173D98C3A011F09FB4B135C4F9AE02.roa (hash: Du9re4YnGbzI32FEa+5SNfgxUVGqyoMQw5ZZIhqirTQ=)
                          6: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: llpJTFb5gbR6BmRuVyy4JWW+914NmVxABUKSPBGS9YM=)
                          7: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: Uvg+BnkN8k4fglRUul1hQWU8OMx515TnEmaoTVsiH3Q=)
                          8: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: 0+4o+E6SOsFpjtUX15g9YSzD9JvjowUL7y6x/I96FSg=)
                          9: 305F24342A0811EE9D810010C4F9AE02.roa (hash: xTnjKFEkhv3ieLQOrP9C6yTVSU56UseqdjRyAJkV7Io=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl
                          rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 19:25:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3218 (0xc92)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912C8AF, serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4
        Validity
            Not Before: Jul 16 19:25:33 2026 GMT
            Not After : Jul 23 19:25:33 2026 GMT
        Subject: CN=6a59302d-6583
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:ed:f0:c7:57:5f:08:26:d0:2c:60:a6:b5:d3:
                    a3:a1:10:75:e9:81:b4:7e:4b:d5:2a:fc:6a:4f:5e:
                    90:ba:2a:77:d0:21:4b:13:58:e0:59:90:61:3c:20:
                    57:96:68:09:8b:0e:e8:1e:34:18:02:e2:ed:f6:38:
                    2f:1b:18:d4:ac:c1:94:a8:71:0b:20:61:7e:91:38:
                    7f:76:da:81:b8:5f:10:cd:a2:3e:b0:6b:d5:65:a7:
                    18:ad:d9:80:51:41:b8:be:73:9f:ba:2c:0e:ab:a5:
                    bf:7e:d4:d8:c4:2e:aa:16:3f:f6:d6:bc:06:70:1f:
                    9b:10:42:b6:80:f8:58:30:f9:c0:9b:81:27:a4:77:
                    02:20:e8:d6:29:32:02:1f:0d:d0:ef:21:d0:71:58:
                    e0:16:f9:c9:d3:44:ea:24:6d:00:a6:0a:43:3d:6d:
                    cc:d4:5d:c1:8c:02:85:c8:4f:1d:8d:47:0f:33:ac:
                    d1:eb:7c:b2:66:35:7f:c2:78:f1:eb:37:26:00:4b:
                    e8:1d:ff:c8:3c:14:40:30:92:4c:c8:1d:7e:d8:d3:
                    91:8f:1c:3b:fe:14:de:2e:8f:83:4e:53:61:63:3e:
                    72:c5:48:c8:60:23:8e:42:19:e8:73:2b:24:d5:e6:
                    1d:00:bd:bb:e7:92:7b:8c:8b:e9:92:bd:36:d0:a7:
                    5e:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:A2:CD:67:F1:B8:D4:D0:C2:A0:EC:EA:78:2C:EB:BB:F4:8C:A1:6A
            X509v3 Authority Key Identifier:
                keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:f8:b8:89:8a:1b:5e:62:e8:cf:dc:ff:d3:23:a9:54:bd:a2:
         c6:a3:7f:9e:cf:66:96:36:e6:a9:1a:7a:0a:5b:d4:37:1c:f7:
         24:f0:3b:c9:74:a9:cc:a4:fc:88:e6:45:28:9b:d2:fa:ba:62:
         c4:74:08:50:1a:83:20:fe:c4:b3:54:52:a5:77:e1:aa:e8:fc:
         df:8d:e1:0c:f7:e7:35:0d:ef:b3:b8:58:6a:d0:4b:94:a6:fc:
         fb:2d:1d:56:ca:8f:79:26:07:75:7f:05:52:f3:9b:83:4c:81:
         93:6b:66:e8:50:3a:09:4f:a1:26:02:2f:18:48:1d:9b:a6:13:
         6e:f0:f6:2f:de:8b:19:cf:7c:27:9a:94:c7:30:3e:d6:fb:7d:
         e0:20:84:c5:41:0d:55:9e:6e:bb:0a:7d:c7:f0:05:44:2b:48:
         f3:f7:0e:0f:21:28:55:27:66:c2:b2:15:66:ae:89:4d:24:20:
         dd:e2:17:63:83:82:01:a7:be:22:87:eb:57:3f:ad:09:b6:f8:
         2e:75:db:5b:b5:d1:77:bb:54:47:62:b5:dc:8a:36:53:80:ba:
         03:c8:eb:eb:9f:b3:3f:79:75:0c:c9:c6:79:5e:0a:97:08:9d:
         71:b4:d7:78:c1:bf:25:3f:6c:67:2f:31:e0:01:07:ce:9d:8c:
         ea:bc:18:91
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICDJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1
QzBEREY5RDQwHhcNMjYwNzE2MTkyNTMzWhcNMjYwNzIzMTkyNTMzWjAYMRYwFAYD
VQQDEw02YTU5MzAyZC02NTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAte3wx1dfCCbQLGCmtdOjoRB16YG0fkvVKvxqT16Quip30CFLE1jgWZBhPCBX
lmgJiw7oHjQYAuLt9jgvGxjUrMGUqHELIGF+kTh/dtqBuF8QzaI+sGvVZacYrdmA
UUG4vnOfuiwOq6W/ftTYxC6qFj/21rwGcB+bEEK2gPhYMPnAm4EnpHcCIOjWKTIC
Hw3Q7yHQcVjgFvnJ00TqJG0ApgpDPW3M1F3BjAKFyE8djUcPM6zR63yyZjV/wnjx
6zcmAEvoHf/IPBRAMJJMyB1+2NORjxw7/hTeLo+DTlNhYz5yxUjIYCOOQhnocysk
1eYdAL2755J7jIvpkr020KdejQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFISizWfx
uNTQwqDs6ngs67v0jKFqMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF
RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt
ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE
Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAd/i4iYobXmLoz9z/0yOpVL2ixqN/ns9mljbmqRp6ClvUNxz3JPA7yXSpzKT8
iOZFKJvS+rpixHQIUBqDIP7Es1RSpXfhquj8343hDPfnNQ3vs7hYatBLlKb8+y0d
VsqPeSYHdX8FUvObg0yBk2tm6FA6CU+hJgIvGEgdm6YTbvD2L96LGc98J5qUxzA+
1vt94CCExUENVZ5uuwp9x/AFRCtI8/cODyEoVSdmwrIVZq6JTSQg3eIXY4OCAae+
IofrVz+tCbb4LnXbW7XRd7tUR2K13Io2U4C6A8jr65+zP3l1DMnGeV4KlwidcbTX
eMG/JT9sZy8x4AEHzp2M6rwYkQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 02:56:34 2026 by rpki-client