Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft
File:                     QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json)
Hash identifier:          nQiOrz3XYJRAITz3r0eam1Zc5dDHT8mV0xN6fFPTqeA=
Subject key identifier:   3C:FC:3B:3C:3C:63:20:46:88:57:4F:10:BF:E5:DF:E1:EB:22:C4:0F
Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE
Certificate issuer:       /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE
Certificate serial:       0121
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft
Manifest number:          011E
Signing time:             Fri 17 Jul 2026 06:58:24 +0000
Manifest this update:     Fri 17 Jul 2026 06:58:24 +0000
Manifest next update:     Fri 24 Jul 2026 06:58:24 +0000
Files and hashes:         1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: NWMH9duqAMblHGwBuA+pfNGT5mGkSWMkg/A8Db3DOss=)
                          2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: tykKMCNyhL8YIODSIbVTOG4k2NzgIkvRLrrP9k8uYXw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl
                          rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:58:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 289 (0x121)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE
        Validity
            Not Before: Jul 17 06:58:24 2026 GMT
            Not After : Jul 24 06:58:24 2026 GMT
        Subject: CN=6a59d290-a166
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:7a:fb:04:c9:ea:10:85:4c:31:24:f4:7e:1f:
                    56:1b:14:d7:65:dd:c4:3d:a2:b3:8c:50:cf:52:a1:
                    a9:05:7f:06:97:d6:c9:af:be:79:7b:73:26:ae:a2:
                    76:c5:c6:1e:0b:c5:b6:5c:f3:f3:37:c0:f2:bc:1d:
                    d7:e2:46:21:db:08:9d:9d:3d:80:e6:61:b3:c5:d3:
                    39:fa:cb:a3:5e:e2:16:18:43:6f:f3:6f:32:41:32:
                    06:6e:cd:62:f6:6b:65:d5:da:05:94:ff:db:07:75:
                    52:3b:a4:26:d2:a0:b4:14:5f:36:c9:b5:ff:01:90:
                    1b:bb:5b:df:2d:55:3f:d4:57:f4:f1:39:09:cc:91:
                    52:91:69:05:d4:0f:21:7b:37:bc:f4:07:65:1b:10:
                    91:05:75:08:86:a9:ff:a2:a9:f9:50:c8:52:cf:e8:
                    c7:b2:16:e1:6e:99:b3:ee:46:d9:93:f9:20:0f:a6:
                    2b:32:28:3c:8c:84:05:0f:f6:d6:35:26:23:67:52:
                    5a:bc:6c:75:56:70:95:9f:37:a7:8e:b1:4e:f8:60:
                    d8:c8:92:55:08:a1:3d:f6:b3:b3:33:4d:a9:10:a6:
                    d2:90:1f:51:dc:8f:b7:4f:bf:40:57:f6:56:dd:2c:
                    99:e6:f2:cb:6e:34:d9:36:e2:f8:0a:8b:91:92:2c:
                    d2:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:FC:3B:3C:3C:63:20:46:88:57:4F:10:BF:E5:DF:E1:EB:22:C4:0F
            X509v3 Authority Key Identifier:
                keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:b8:2d:29:4c:a8:1e:ea:ec:d1:00:7d:fc:00:35:63:5b:fc:
         2a:51:b2:82:ad:08:af:fd:00:df:dd:8f:4f:a9:e5:2a:ed:42:
         41:a4:54:e3:51:5d:01:b2:5e:45:ae:8a:1e:b7:fb:19:1b:db:
         a1:64:d6:a5:fe:2f:54:06:d5:54:57:6a:e6:54:92:f2:19:0b:
         3c:a4:8c:0e:57:07:27:02:5f:b6:ae:44:6d:d0:81:28:cf:1a:
         4b:ff:56:36:2e:d9:89:51:5f:e7:47:65:a6:6a:ab:93:4b:3a:
         73:28:fc:cb:c4:48:a5:08:3b:d5:85:e5:29:2b:4e:a8:c3:df:
         16:d4:4f:3c:a6:95:64:32:89:25:3d:ac:92:6d:f6:b5:d8:6f:
         d5:34:03:50:92:20:81:b1:93:47:1c:c1:c3:67:8e:d3:ec:e0:
         44:80:ca:49:80:1f:e9:ce:34:57:e6:7f:17:ba:5d:d6:00:f7:
         b0:e1:87:50:ea:f8:9f:78:2d:16:e3:2e:2d:b6:be:5b:01:8f:
         ff:54:d8:57:04:2f:91:54:10:42:5d:ee:fa:88:f8:21:03:d6:
         76:26:2a:38:75:79:bc:8b:fb:ed:8a:8d:05:70:b1:06:ec:81:
         40:03:e2:60:96:16:0c:73:5f:44:6a:d7:02:73:f5:bf:e9:95:
         91:b3:4c:10
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzYzMUYxMTAvBgNVBAUTKDQwM0JCN0I5MThGOTE1NEFEODJDMkFEMzVBRUZDMEFC
RThEMDZBREUwHhcNMjYwNzE3MDY1ODI0WhcNMjYwNzI0MDY1ODI0WjAYMRYwFAYD
VQQDEw02YTU5ZDI5MC1hMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAznr7BMnqEIVMMST0fh9WGxTXZd3EPaKzjFDPUqGpBX8Gl9bJr755e3MmrqJ2
xcYeC8W2XPPzN8DyvB3X4kYh2widnT2A5mGzxdM5+sujXuIWGENv828yQTIGbs1i
9mtl1doFlP/bB3VSO6Qm0qC0FF82ybX/AZAbu1vfLVU/1Ff08TkJzJFSkWkF1A8h
eze89AdlGxCRBXUIhqn/oqn5UMhSz+jHshbhbpmz7kbZk/kgD6YrMig8jIQFD/bW
NSYjZ1JavGx1VnCVnzenjrFO+GDYyJJVCKE99rOzM02pEKbSkB9R3I+3T79AV/ZW
3SyZ5vLLbjTZNuL4CouRkizSswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDz8Ozw8
YyBGiFdPEL/l3+HrIsQPMB8GA1UdIwQYMBaAFEA7t7kY+RVK2Cwq01rvwKvo0Gre
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjMxRi83QjNGMEIxQ0NG
MUMxMUVGODE5NDdGODVDNEY5QUUwMi9RRHUzdVJqNUZVcllMQ3JUV3VfQXEtalFh
dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0NC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
NjMxRi83QjNGMEIxQ0NGMUMxMUVGODE5NDdGODVDNEY5QUUwMi9RRHUzdVJqNUZV
cllMQ3JUV3VfQXEtalFhdDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAB7gtKUyoHurs0QB9/AA1Y1v8KlGygq0Ir/0A392PT6nlKu1CQaRU41FdAbJe
Ra6KHrf7GRvboWTWpf4vVAbVVFdq5lSS8hkLPKSMDlcHJwJftq5EbdCBKM8aS/9W
Ni7ZiVFf50dlpmqrk0s6cyj8y8RIpQg71YXlKStOqMPfFtRPPKaVZDKJJT2skm32
tdhv1TQDUJIggbGTRxzBw2eO0+zgRIDKSYAf6c40V+Z/F7pd1gD3sOGHUOr4n3gt
FuMuLba+WwGP/1TYVwQvkVQQQl3u+oj4IQPWdiYqOHV5vIv77YqNBXCxBuyBQAPi
YJYWDHNfRGrXAnP1v+mVkbNMEA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:53 2026 by rpki-client