Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
File:                     bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json)
Hash identifier:          /I25XdLHiBDBMxcrVYwIBeFyqgkiaFeZc6VBUrRYliM=
Subject key identifier:   3B:FD:77:8E:80:0E:C5:50:4B:09:96:F0:F6:6B:C8:86:BD:E5:D7:BA
Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C
Certificate issuer:       /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C
Certificate serial:       0759
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
Manifest number:          0750
Signing time:             Mon 06 Jul 2026 22:19:56 +0000
Manifest this update:     Mon 06 Jul 2026 22:19:56 +0000
Manifest next update:     Mon 13 Jul 2026 22:19:56 +0000
Files and hashes:         1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: KrsL1wzRJ1SSctyTtsmQBirj/Zvf5i3HRyvQgZndhLQ=)
                          2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: Pjx2fk1ERBs14VqIaD9LJOxFbqs8w+2aRHPGV9fMHnc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl
                          rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 22:19:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1881 (0x759)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C
        Validity
            Not Before: Jul  6 22:19:56 2026 GMT
            Not After : Jul 13 22:19:56 2026 GMT
        Subject: CN=6a4c2a0c-ea54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:cc:02:fa:ca:1f:66:90:52:1c:2a:23:fd:52:
                    ed:32:29:f1:11:22:b9:05:77:e8:78:f7:db:0c:dd:
                    f2:67:6e:24:43:85:c3:d8:9e:a1:05:41:40:dd:8b:
                    9f:68:4c:9a:aa:07:fb:3f:74:71:d0:ba:c1:d2:4d:
                    84:49:6b:0f:40:b0:65:8d:6b:40:60:b5:2c:d8:65:
                    f1:ba:8a:50:bf:38:5b:81:36:27:61:42:0d:4c:95:
                    da:89:80:b5:a8:1e:59:dd:25:38:f2:e2:2a:7c:09:
                    cf:d2:02:cc:ee:ee:11:ec:95:f8:c5:96:8e:34:b4:
                    e9:36:c8:03:98:0f:75:21:b9:87:3e:4a:22:a9:d9:
                    b6:43:9c:e6:cf:64:93:9d:99:90:74:b1:09:1c:17:
                    74:81:ff:64:13:24:e5:f4:eb:88:07:b1:a2:e2:39:
                    21:f1:b0:51:80:e0:e6:45:d5:20:83:5c:a3:72:9f:
                    bb:fc:9e:b6:1d:4f:b7:6a:69:3b:46:2d:19:f9:52:
                    27:a4:bc:35:e5:0e:b3:7a:e7:c2:ae:c2:95:3f:9f:
                    9a:90:50:0c:30:3b:c8:8e:a2:25:72:32:58:fa:92:
                    8f:10:9f:b9:33:6c:7f:2b:18:ab:ef:cd:21:a3:29:
                    1c:79:d5:fc:3a:df:1e:4e:69:ae:41:68:80:10:c3:
                    c8:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:FD:77:8E:80:0E:C5:50:4B:09:96:F0:F6:6B:C8:86:BD:E5:D7:BA
            X509v3 Authority Key Identifier:
                keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:5d:1d:d4:21:3a:5f:db:e4:68:af:72:cd:9f:46:4c:3f:61:
         82:50:4b:66:40:85:f4:78:33:82:bf:24:1c:c2:93:98:e9:41:
         62:73:77:33:ec:c7:f3:37:07:b8:08:9a:00:69:b4:df:7a:0a:
         c6:63:e8:95:f5:e1:b6:1b:be:79:50:02:1a:3a:fc:78:2e:3a:
         d5:b7:07:64:ab:9b:67:e9:1a:60:6d:a5:51:91:d5:54:96:37:
         06:40:7e:c9:ef:c3:36:3f:5a:fc:ca:8a:46:56:75:5c:8b:ba:
         c6:73:16:93:c5:65:15:0c:d9:41:94:51:72:31:90:1e:93:b5:
         ef:16:e8:dd:22:62:b3:bd:fa:7b:38:ff:ec:18:c8:dc:74:1c:
         c0:94:6c:62:ec:3b:37:a1:4b:07:90:37:95:5e:43:26:d0:6f:
         d1:6b:1d:41:41:d0:ff:9c:0f:72:ea:56:a2:aa:e0:66:e3:4b:
         2b:da:6b:f8:ec:00:19:82:4c:e5:13:45:8d:06:b7:6d:16:8f:
         5b:9a:f4:ac:e9:41:4a:b4:3b:2b:cf:0b:f8:ee:aa:72:e2:78:
         45:e9:ab:9a:ae:82:5d:a6:1d:53:1c:22:06:6f:8f:86:27:92:
         26:8e:3d:f6:c9:5b:bf:00:71:8f:4a:f5:34:ac:01:33:2f:c2:
         a4:f3:bf:4d
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5
MTUyNDNEMEMwHhcNMjYwNzA2MjIxOTU2WhcNMjYwNzEzMjIxOTU2WjAYMRYwFAYD
VQQDEw02YTRjMmEwYy1lYTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnswC+sofZpBSHCoj/VLtMinxESK5BXfoePfbDN3yZ24kQ4XD2J6hBUFA3Yuf
aEyaqgf7P3Rx0LrB0k2ESWsPQLBljWtAYLUs2GXxuopQvzhbgTYnYUINTJXaiYC1
qB5Z3SU48uIqfAnP0gLM7u4R7JX4xZaONLTpNsgDmA91IbmHPkoiqdm2Q5zmz2ST
nZmQdLEJHBd0gf9kEyTl9OuIB7Gi4jkh8bBRgODmRdUgg1yjcp+7/J62HU+3amk7
Ri0Z+VInpLw15Q6zeufCrsKVP5+akFAMMDvIjqIlcjJY+pKPEJ+5M2x/Kxir780h
oykcedX8Ot8eTmmuQWiAEMPI1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDv9d46A
DsVQSwmW8PZryIa95de6MB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD
Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ
UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l
TFdWaFlJWjNvd3lSVWtQUXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAnV0d1CE6X9vkaK9yzZ9GTD9hglBLZkCF9Hgzgr8kHMKTmOlBYnN3M+zH8zcH
uAiaAGm033oKxmPolfXhthu+eVACGjr8eC461bcHZKubZ+kaYG2lUZHVVJY3BkB+
ye/DNj9a/MqKRlZ1XIu6xnMWk8VlFQzZQZRRcjGQHpO17xbo3SJis736ezj/7BjI
3HQcwJRsYuw7N6FLB5A3lV5DJtBv0WsdQUHQ/5wPcupWoqrgZuNLK9pr+OwAGYJM
5RNFjQa3bRaPW5r0rOlBSrQ7K88L+O6qcuJ4Remrmq6CXaYdUxwiBm+PhieSJo49
9slbvwBxj0r1NKwBMy/CpPO/TQ==
-----END CERTIFICATE-----
Generated at Tue Jul 7 10:45:52 2026 by rpki-client