Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft
File:                     hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json)
Hash identifier:          84F/CMnekRQGV+l02Ajr0TkdRPMUY6mTa5RuDkngV/k=
Subject key identifier:   E5:60:DB:0E:F3:87:C1:9E:0C:99:87:74:EE:F0:7C:A3:B6:D1:42:08
Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08
Certificate issuer:       /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08
Certificate serial:       0481
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft
Manifest number:          0469
Signing time:             Sun 05 Jul 2026 00:36:41 +0000
Manifest this update:     Sun 05 Jul 2026 00:36:41 +0000
Manifest next update:     Sun 12 Jul 2026 00:36:41 +0000
Files and hashes:         1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: imwneDjJvls8UsvrIWxLsltCcz7+N3FBvc8bcO8dOz0=)
                          2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: NtIL0Ds6f0ZS7MHa9CMEFQcx6i11Pda/8hAwPCcExQg=)
                          3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: cl/4/5b1299P9Rw9mt6jtdWymjlwHiUICZ1E9aWqHuM=)
                          4: F570D764773F11F09FC02036C4F9AE02.roa (hash: gvPu45DyIqZBu1jQxEhjgfSh962TYPXbAHfGb3N8kR4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl
                          rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 00:36:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1153 (0x481)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08
        Validity
            Not Before: Jul  5 00:36:41 2026 GMT
            Not After : Jul 12 00:36:41 2026 GMT
        Subject: CN=6a49a719-9b0c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:e6:1b:bb:46:8c:a3:d8:e9:6c:94:fc:52:f0:
                    bb:ee:05:c7:b3:97:81:7e:ef:64:9f:63:3f:74:63:
                    3b:9f:9e:b1:00:9c:be:50:42:14:a4:0a:12:64:7d:
                    8d:69:1c:36:48:49:58:6a:16:e4:d5:07:34:da:dc:
                    d6:83:7b:e7:53:01:23:50:57:e3:5c:3f:5a:a2:fa:
                    78:c2:d8:fe:62:f6:01:53:9c:87:42:07:62:d7:d3:
                    74:d2:a6:93:a0:63:86:cf:ab:34:33:de:da:e0:0d:
                    f7:84:c9:f5:57:54:12:9a:3e:68:d0:6a:ad:f0:44:
                    6c:40:77:cd:a1:2d:36:ab:e5:de:91:b3:1a:ec:4d:
                    04:7c:dd:ec:f3:88:de:c6:36:66:eb:33:46:29:7d:
                    72:bb:23:d4:3c:8c:15:19:01:fa:06:79:dd:e3:10:
                    af:5d:50:b2:eb:42:51:3a:40:76:7d:96:2f:41:8f:
                    1d:37:96:92:84:a9:80:ef:4b:74:51:bc:9e:bc:19:
                    0d:ce:07:b6:94:ca:9b:a8:fe:95:80:e9:25:c2:3d:
                    25:44:7a:43:71:d3:e4:72:41:61:22:b2:de:f7:31:
                    74:20:f7:7d:0c:02:e4:9b:9e:74:f6:73:25:c5:5f:
                    fd:fc:50:6c:4e:59:04:49:c3:ae:c2:28:6c:72:71:
                    ba:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:60:DB:0E:F3:87:C1:9E:0C:99:87:74:EE:F0:7C:A3:B6:D1:42:08
            X509v3 Authority Key Identifier:
                keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:f9:50:8f:c0:85:d8:34:d8:5a:cd:6e:ca:1c:42:e7:0b:fd:
         e0:24:7e:ce:fe:12:65:cc:d8:95:d0:fc:b9:0a:41:30:17:6c:
         5e:10:83:8c:da:3e:6b:be:0f:2a:83:3e:a5:a7:65:29:04:6e:
         7b:f2:59:02:49:51:b7:f9:68:0d:74:f5:d3:b8:35:00:fe:48:
         ff:3b:08:83:9c:ef:ab:a0:98:63:d8:ed:3a:e8:37:77:35:5b:
         49:2a:00:0b:ec:d0:1b:6c:04:0d:32:2c:f6:43:17:88:97:f5:
         17:1f:9d:95:fd:be:bc:06:62:fc:be:97:4b:04:01:71:c6:e4:
         1b:10:95:65:1f:75:72:91:66:65:5d:5c:98:f3:c7:5c:2c:96:
         c1:eb:6d:57:ec:fe:a2:e9:88:b3:1d:79:79:20:95:cc:db:b9:
         b2:41:fe:52:27:29:ee:7e:30:7c:24:27:a2:a9:c5:b6:dc:54:
         9a:3d:48:22:e7:5b:b6:34:4a:60:ca:a6:9f:30:1f:02:61:47:
         13:bb:a9:30:08:ab:32:2a:6b:f4:7c:46:d2:d4:a2:a0:9e:02:
         7a:cf:e8:bd:4e:bb:da:1d:f6:35:66:3d:d1:34:04:e1:35:15:
         41:f3:f4:45:ab:5a:a2:b8:68:d9:3c:d3:6c:cd:56:b5:bc:a0:
         08:33:78:d5
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD
QzNGNzhEMDgwHhcNMjYwNzA1MDAzNjQxWhcNMjYwNzEyMDAzNjQxWjAYMRYwFAYD
VQQDEw02YTQ5YTcxOS05YjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAu+Ybu0aMo9jpbJT8UvC77gXHs5eBfu9kn2M/dGM7n56xAJy+UEIUpAoSZH2N
aRw2SElYahbk1Qc02tzWg3vnUwEjUFfjXD9aovp4wtj+YvYBU5yHQgdi19N00qaT
oGOGz6s0M97a4A33hMn1V1QSmj5o0Gqt8ERsQHfNoS02q+XekbMa7E0EfN3s84je
xjZm6zNGKX1yuyPUPIwVGQH6Bnnd4xCvXVCy60JROkB2fZYvQY8dN5aShKmA70t0
UbyevBkNzge2lMqbqP6VgOklwj0lRHpDcdPkckFhIrLe9zF0IPd9DALkm5509nMl
xV/9/FBsTlkEScOuwihscnG6UwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOVg2w7z
h8GeDJmHdO7wfKO20UIIMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0
RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq
UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh
cU1pS3RzWG5qQl9NUDNqUWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEALvlQj8CF2DTYWs1uyhxC5wv94CR+zv4SZczYldD8uQpBMBdsXhCDjNo+a74P
KoM+padlKQRue/JZAklRt/loDXT107g1AP5I/zsIg5zvq6CYY9jtOug3dzVbSSoA
C+zQG2wEDTIs9kMXiJf1Fx+dlf2+vAZi/L6XSwQBccbkGxCVZR91cpFmZV1cmPPH
XCyWwettV+z+oumIsx15eSCVzNu5skH+Uicp7n4wfCQnoqnFttxUmj1IIudbtjRK
YMqmnzAfAmFHE7upMAirMipr9HxG0tSioJ4Ces/ovU672h32NWY90TQE4TUVQfP0
Rataorho2TzTbM1WtbygCDN41Q==
-----END CERTIFICATE-----
Generated at Mon Jul 6 19:15:35 2026 by rpki-client