Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft
File:                     z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json)
Hash identifier:          9eQ1+HDxGJh4O5af7303gVGzqGdp5KcwaqwdM/ztlbk=
Subject key identifier:   AA:F9:3A:5A:E8:BA:70:B7:5C:40:C8:EB:17:66:3E:3C:FB:35:C8:23
Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC
Certificate issuer:       /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC
Certificate serial:       0230
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft
Manifest number:          022B
Signing time:             Fri 17 Jul 2026 03:33:22 +0000
Manifest this update:     Fri 17 Jul 2026 03:33:21 +0000
Manifest next update:     Fri 24 Jul 2026 03:33:21 +0000
Files and hashes:         1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: ABdfZYQhJhsiJt86QhkbtHrrz0ouF3P4RpwSz7DF9RY=)
                          2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: z9CfvJM12QlNZXNF44p70rHwRjByPI+ZqLnmCsquLHk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl
                          rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 03:33:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 560 (0x230)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC
        Validity
            Not Before: Jul 17 03:33:21 2026 GMT
            Not After : Jul 24 03:33:21 2026 GMT
        Subject: CN=6a59a282-c1bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:6a:9e:ba:5b:21:2d:68:09:7c:f9:3b:84:12:
                    26:18:e0:c9:21:14:b1:0e:5a:37:d7:b4:6c:eb:12:
                    38:27:80:61:66:74:e1:1a:92:fe:50:6f:25:e1:a1:
                    98:62:54:bf:ed:dc:44:ff:8d:5b:c0:d0:98:dd:b6:
                    a6:2f:b5:45:18:a3:04:e0:eb:fc:a0:78:56:44:4e:
                    4c:39:8a:48:c6:14:4f:02:d5:a3:bc:0e:bd:38:f5:
                    d7:48:47:55:11:f3:3e:9b:17:6a:32:ac:ba:15:ac:
                    6a:c8:a6:4d:4b:53:30:69:41:5a:f1:67:e9:50:a0:
                    24:88:63:8f:b2:51:e4:4e:c7:49:2c:d6:2d:77:2e:
                    cb:82:25:52:5f:8f:6d:14:92:1d:a6:12:a3:02:59:
                    47:00:8e:9a:9c:cc:dc:0f:19:da:73:d5:60:ae:03:
                    b3:3d:13:77:9d:be:63:86:ed:7a:7f:65:5e:15:cc:
                    86:66:7d:01:74:bc:c9:f4:56:07:30:d1:69:57:6f:
                    56:65:41:61:dd:ea:ee:94:d9:f3:9d:7d:39:60:05:
                    ec:cf:59:82:72:be:7d:b9:e6:ff:24:65:d0:69:bf:
                    aa:13:46:66:0c:4e:cb:96:a6:43:90:9f:f9:e5:75:
                    83:06:3b:e5:83:ed:e9:55:63:e5:64:f2:10:1e:e8:
                    a7:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:F9:3A:5A:E8:BA:70:B7:5C:40:C8:EB:17:66:3E:3C:FB:35:C8:23
            X509v3 Authority Key Identifier:
                keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:a1:a9:9b:aa:81:01:bf:bd:f6:77:eb:1e:25:fe:21:98:ab:
         f1:5e:ff:40:c0:0f:47:72:f9:e3:af:b8:c1:24:6b:78:8f:ee:
         47:b1:67:c6:60:bd:26:fa:41:fc:9e:c2:fc:64:22:12:83:66:
         11:00:02:75:21:9c:73:e0:4b:0a:b3:49:b9:87:ed:12:76:ac:
         dd:5e:d1:a2:37:b1:bc:ff:c8:f5:fe:97:87:dd:d5:ad:a8:7f:
         c5:d0:c4:ba:2b:2d:b8:7d:0f:bd:7e:4b:0a:69:25:03:3a:06:
         63:d2:26:56:d4:16:ef:85:2a:16:62:af:1d:e4:15:67:27:31:
         c9:ff:cc:36:ce:27:ec:e9:31:b2:5d:8c:13:97:42:b0:1a:d6:
         89:60:1e:39:fd:21:b0:82:53:9f:a1:45:42:2c:cf:d2:a3:d6:
         8c:16:8e:13:6d:d6:e8:f5:d5:ef:c7:64:48:3a:29:c0:0a:17:
         c9:73:a0:43:e6:11:17:dd:a2:0b:de:ea:b4:70:ed:96:2a:54:
         ac:19:93:a9:ff:b5:56:c2:f4:19:70:c8:fb:a3:f7:10:9f:8b:
         6f:39:12:a1:bb:03:4a:79:be:0f:43:16:e2:1c:06:fa:d0:79:
         6a:93:0d:c3:e5:01:92:20:24:0a:aa:5d:a4:a7:5f:a7:03:aa:
         54:a0:26:2b
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1
ODU4MThFREMwHhcNMjYwNzE3MDMzMzIxWhcNMjYwNzI0MDMzMzIxWjAYMRYwFAYD
VQQDEw02YTU5YTI4Mi1jMWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAu2qeulshLWgJfPk7hBImGODJIRSxDlo317Rs6xI4J4BhZnThGpL+UG8l4aGY
YlS/7dxE/41bwNCY3bamL7VFGKME4Ov8oHhWRE5MOYpIxhRPAtWjvA69OPXXSEdV
EfM+mxdqMqy6FaxqyKZNS1MwaUFa8WfpUKAkiGOPslHkTsdJLNYtdy7LgiVSX49t
FJIdphKjAllHAI6anMzcDxnac9VgrgOzPRN3nb5jhu16f2VeFcyGZn0BdLzJ9FYH
MNFpV29WZUFh3erulNnznX05YAXsz1mCcr59ueb/JGXQab+qE0ZmDE7LlqZDkJ/5
5XWDBjvlg+3pVWPlZPIQHuinkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKr5Olro
unC3XEDI6xdmPjz7NcgjMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG
NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq
dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f
WWRyWlY4d2swaE5ZV0JqdHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAgaGpm6qBAb+99nfrHiX+IZir8V7/QMAPR3L546+4wSRreI/uR7FnxmC9JvpB
/J7C/GQiEoNmEQACdSGcc+BLCrNJuYftEnas3V7RojexvP/I9f6Xh93Vrah/xdDE
uistuH0PvX5LCmklAzoGY9ImVtQW74UqFmKvHeQVZycxyf/MNs4n7Okxsl2ME5dC
sBrWiWAeOf0hsIJTn6FFQizP0qPWjBaOE23W6PXV78dkSDopwAoXyXOgQ+YRF92i
C97qtHDtlipUrBmTqf+1VsL0GXDI+6P3EJ+LbzkSobsDSnm+D0MW4hwG+tB5apMN
w+UBkiAkCqpdpKdfpwOqVKAmKw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:23 2026 by rpki-client