Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
File:                     hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json)
Hash identifier:          NsX+ARqSnE72PkS27DMJw3TXRYwM/M8s/KVQyPVkKeI=
Subject key identifier:   78:92:8A:AD:5F:5D:C8:00:6B:7E:A1:98:F5:8F:DA:B5:01:3A:8C:0F
Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8
Certificate issuer:       /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8
Certificate serial:       0747
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
Manifest number:          073F
Signing time:             Thu 16 Jul 2026 22:15:04 +0000
Manifest this update:     Thu 16 Jul 2026 22:15:03 +0000
Manifest next update:     Thu 23 Jul 2026 22:15:03 +0000
Files and hashes:         1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: cPegYU9qst0JlfHBuiZVteMVrmTp/XuG05WVmmQhMjY=)
                          2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: oGpaoJnN0XSnyU8TN0NZVM9McHxZfbUaTEUnM8LnSNk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl
                          rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 22:15:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1863 (0x747)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8
        Validity
            Not Before: Jul 16 22:15:03 2026 GMT
            Not After : Jul 23 22:15:03 2026 GMT
        Subject: CN=6a5957e8-e755
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:dd:95:a1:84:d0:df:2a:e3:e0:e0:43:0c:46:
                    12:98:80:7b:59:3f:4f:22:1c:4b:8f:de:bf:e8:c0:
                    e5:90:2b:c6:74:e3:c6:7b:0d:76:8f:6a:83:2f:60:
                    60:81:a1:8a:38:05:8a:1c:20:92:1d:9b:17:b6:65:
                    ea:b4:65:0b:dd:bc:71:a8:9a:ea:80:be:55:9a:94:
                    3b:45:ac:a2:90:d9:df:7a:b4:01:f9:01:2b:9f:fc:
                    32:5e:3a:7a:e5:6f:e2:66:26:3e:26:3b:b3:b5:5c:
                    ba:f4:ce:a3:1e:ee:1c:f7:34:b1:19:f5:c5:30:3e:
                    4a:7d:80:97:76:17:09:9b:42:1d:f9:4f:18:90:12:
                    b1:47:58:96:a1:df:8a:17:d4:b0:a9:0e:de:77:0a:
                    47:b3:5a:09:35:02:9c:10:d7:27:32:f7:a0:b1:c4:
                    a5:62:f3:4d:fa:2d:e4:f5:78:fe:74:e2:c2:85:a5:
                    f3:8e:60:6e:a5:8c:19:98:27:9e:96:98:95:c0:b0:
                    cf:7b:73:ed:75:09:af:26:02:09:45:cc:55:43:09:
                    71:28:1a:fd:49:8f:5a:7e:92:15:17:d2:b5:73:20:
                    16:ca:13:cb:5b:32:88:92:00:f8:ba:e8:72:4f:8e:
                    6b:98:0b:c5:bb:a9:85:45:fa:70:4c:10:f2:96:8d:
                    d0:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:92:8A:AD:5F:5D:C8:00:6B:7E:A1:98:F5:8F:DA:B5:01:3A:8C:0F
            X509v3 Authority Key Identifier:
                keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:b6:0c:b7:30:6a:4a:83:71:46:7c:0b:4e:af:d9:b5:71:b5:
         45:35:22:6b:a9:e6:1f:ad:42:9e:e5:01:d9:7e:a5:80:43:68:
         be:4f:38:f7:9e:35:ae:3d:c9:84:28:92:63:55:59:24:4e:62:
         96:c8:9a:03:d4:98:02:b2:19:e2:c2:fe:d4:2c:45:ba:3e:5e:
         63:31:98:f2:5a:88:84:8f:62:dc:c3:83:50:cb:1c:af:53:27:
         d6:b5:1e:aa:ba:8d:8f:32:e8:48:81:3e:f3:c3:c6:01:0a:d5:
         ce:24:e8:e3:d0:10:34:ca:ae:83:f7:be:3f:16:e8:b4:0d:3f:
         2d:5f:39:28:42:9d:bf:75:42:2a:eb:ce:97:0f:8a:a7:49:3d:
         29:da:70:3e:5f:df:dc:14:9d:e4:f3:46:4c:9e:70:88:f7:f8:
         58:8f:c1:02:25:df:0c:a3:a3:ec:9c:0d:64:dd:d4:e7:1c:f3:
         9f:c1:c5:c6:da:0b:9f:c7:2f:5b:ec:c3:bf:e8:56:4c:42:76:
         18:34:92:2e:32:03:6a:96:6f:5d:a6:b2:48:52:a0:9d:4b:fe:
         0c:19:1f:85:49:1c:17:9e:96:02:7f:bf:94:de:5a:db:46:c0:
         c2:7d:7e:ba:da:69:26:c1:f5:50:ba:2e:6a:eb:ec:c7:ad:0f:
         7d:ff:fe:37
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICB0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC
NjY3QjcyQTgwHhcNMjYwNzE2MjIxNTAzWhcNMjYwNzIzMjIxNTAzWjAYMRYwFAYD
VQQDEw02YTU5NTdlOC1lNzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAut2VoYTQ3yrj4OBDDEYSmIB7WT9PIhxLj96/6MDlkCvGdOPGew12j2qDL2Bg
gaGKOAWKHCCSHZsXtmXqtGUL3bxxqJrqgL5VmpQ7RayikNnferQB+QErn/wyXjp6
5W/iZiY+JjuztVy69M6jHu4c9zSxGfXFMD5KfYCXdhcJm0Id+U8YkBKxR1iWod+K
F9SwqQ7edwpHs1oJNQKcENcnMvegscSlYvNN+i3k9Xj+dOLChaXzjmBupYwZmCee
lpiVwLDPe3PtdQmvJgIJRcxVQwlxKBr9SY9afpIVF9K1cyAWyhPLWzKIkgD4uuhy
T45rmAvFu6mFRfpwTBDylo3Q/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHiSiq1f
XcgAa36hmPWP2rUBOowPMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw
QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj
cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB
T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAGbYMtzBqSoNxRnwLTq/ZtXG1RTUia6nmH61CnuUB2X6lgENovk849541rj3J
hCiSY1VZJE5ilsiaA9SYArIZ4sL+1CxFuj5eYzGY8lqIhI9i3MODUMscr1Mn1rUe
qrqNjzLoSIE+88PGAQrVziTo49AQNMqug/e+PxbotA0/LV85KEKdv3VCKuvOlw+K
p0k9KdpwPl/f3BSd5PNGTJ5wiPf4WI/BAiXfDKOj7JwNZN3U5xzzn8HFxtoLn8cv
W+zDv+hWTEJ2GDSSLjIDapZvXaaySFKgnUv+DBkfhUkcF56WAn+/lN5a20bAwn1+
utppJsH1ULouauvsx60Pff/+Nw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:54 2026 by rpki-client