Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft
File:                     idaQRux8ca1__5jk_Zu5iB8pnIk.mft (raw, json)
Hash identifier:          T0vPz+d4X25KrNtmXNppvz0KXF6fFgSDzJ8DBxYh73U=
Subject key identifier:   13:5C:34:66:5E:B1:BF:14:9B:99:6A:CC:62:31:2B:2E:CF:DE:18:7F
Authority key identifier: 89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89
Certificate issuer:       /CN=A914D648/serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89
Certificate serial:       55
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft
Manifest number:          52
Signing time:             Fri 03 Jul 2026 09:11:11 +0000
Manifest this update:     Fri 03 Jul 2026 09:11:11 +0000
Manifest next update:     Fri 10 Jul 2026 09:11:11 +0000
Files and hashes:         1: idaQRux8ca1__5jk_Zu5iB8pnIk.crl (hash: 2ekr+ERtgl3ku/2x9RsfBckk6MQJGnoikwlHDgBFw60=)
                          2: 4A5A1A32001211F1BC55B3C9406F56BC.roa (hash: yCCSOKLm19MpEiNQt1HNvusaS66zOK2dLX4/U/YPzqA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl
                          rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 09:11:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 85 (0x55)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914D648, serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89
        Validity
            Not Before: Jul  3 09:11:11 2026 GMT
            Not After : Jul 10 09:11:11 2026 GMT
        Subject: CN=6a477caf-a4cf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:6b:ed:0f:eb:a0:ca:d4:e6:99:d7:86:f1:9f:
                    d4:a4:32:54:ab:99:60:96:95:c4:ad:53:0c:25:7c:
                    2f:1b:f6:c1:26:4f:c0:ac:f6:25:f9:28:d7:92:af:
                    26:08:b3:b1:53:83:96:13:b8:a1:db:c9:8b:ea:5a:
                    44:22:77:24:ae:ba:31:ba:83:91:22:cf:47:64:cb:
                    dc:47:af:10:4d:b4:77:9e:a9:25:1c:9f:65:56:14:
                    92:6c:1f:c6:ca:66:e4:6d:ee:81:84:94:c2:28:bd:
                    0d:33:b3:84:04:c9:03:59:34:dc:fa:a4:62:c5:40:
                    92:21:37:c0:d6:00:49:0d:b4:27:e4:44:d8:f3:71:
                    cb:9f:a1:9c:bd:25:61:93:79:52:75:b5:19:dc:7e:
                    91:63:0f:b1:a1:de:b5:df:39:ff:2a:17:6b:79:c5:
                    f4:58:9e:9d:33:5b:7a:7f:15:ab:61:05:86:9e:2e:
                    0a:c2:ca:dc:7c:df:12:d8:7b:40:a7:93:e2:ec:55:
                    97:2b:65:49:26:13:69:4b:c4:e2:4b:de:70:82:f6:
                    8a:f7:e9:62:57:8c:ac:7c:1e:2f:14:12:ca:2a:b7:
                    0a:de:ed:2e:7c:30:1d:c3:ba:1f:31:83:a3:7b:cf:
                    5a:b8:35:b5:dc:38:99:74:30:df:ab:47:1d:54:73:
                    a5:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:5C:34:66:5E:B1:BF:14:9B:99:6A:CC:62:31:2B:2E:CF:DE:18:7F
            X509v3 Authority Key Identifier:
                keyid:89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:e7:0f:8d:46:f9:7c:1e:ec:85:72:f0:22:c5:ae:19:43:5b:
         83:73:a0:2e:e9:51:cb:52:a2:dc:e2:69:6c:47:79:71:13:db:
         e5:be:6b:da:0b:69:84:90:5c:3c:39:31:23:af:d8:f5:0e:c4:
         0e:94:0c:7d:c1:dc:7c:eb:95:aa:53:30:bd:9c:f4:0c:dc:d5:
         e3:3f:7e:90:3d:b6:dc:57:01:bb:f3:46:2a:07:bb:f0:74:a9:
         48:95:64:36:c4:5a:87:dc:66:99:19:62:b0:0c:c9:65:fd:7d:
         ac:7a:a3:f6:fc:82:ef:5a:05:98:e0:5b:ef:41:72:c4:ca:41:
         80:82:9e:b2:44:78:99:70:69:99:c5:44:00:f2:ed:88:53:13:
         c6:46:b9:77:9c:07:2f:62:ca:5d:d1:de:1c:e2:4e:b0:f8:41:
         23:cf:45:74:3a:c5:04:51:fd:a9:04:f0:4f:74:76:de:e8:71:
         bc:48:d9:c1:08:94:5f:a4:39:0c:89:81:86:b0:2c:15:7f:a9:
         cb:7d:e2:c7:02:99:1d:63:6f:73:f5:97:0f:c8:aa:68:52:66:
         66:49:c9:e1:bd:41:48:d6:4f:56:01:f6:28:4f:e8:15:b8:d0:
         6a:73:0f:87:c9:34:ef:ea:bf:d9:ca:08:cb:f1:f0:e2:6d:f8:
         01:b9:4b:12
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0
RDY0ODExMC8GA1UEBRMoODlENjkwNDZFQzdDNzFBRDdGRkY5OEU0RkQ5QkI5ODgx
RjI5OUM4OTAeFw0yNjA3MDMwOTExMTFaFw0yNjA3MTAwOTExMTFaMBgxFjAUBgNV
BAMTDTZhNDc3Y2FmLWE0Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCXa+0P66DK1OaZ14bxn9SkMlSrmWCWlcStUwwlfC8b9sEmT8Cs9iX5KNeSryYI
s7FTg5YTuKHbyYvqWkQidySuujG6g5Eiz0dky9xHrxBNtHeeqSUcn2VWFJJsH8bK
ZuRt7oGElMIovQ0zs4QEyQNZNNz6pGLFQJIhN8DWAEkNtCfkRNjzccufoZy9JWGT
eVJ1tRncfpFjD7Gh3rXfOf8qF2t5xfRYnp0zW3p/FathBYaeLgrCytx83xLYe0Cn
k+LsVZcrZUkmE2lLxOJL3nCC9or36WJXjKx8Hi8UEsoqtwre7S58MB3Duh8xg6N7
z1q4NbXcOJl0MN+rRx1Uc6VFAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUE1w0Zl6x
vxSbmWrMYjErLs/eGH8wHwYDVR0jBBgwFoAUidaQRux8ca1//5jk/Zu5iB8pnIkw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRENjQ4LzAxRjcwMkYwMDAx
MjExRjE4NzhGOTdDMDQwNkY1NkJDL2lkYVFSdXg4Y2ExX181amtfWnU1aUI4cG5J
ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvaWRhUVJ1eDhjYTFfXzVqa19adTVpQjhwbklrLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE
NjQ4LzAxRjcwMkYwMDAxMjExRjE4NzhGOTdDMDQwNkY1NkJDL2lkYVFSdXg4Y2Ex
X181amtfWnU1aUI4cG5Jay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQBQ5w+NRvl8HuyFcvAixa4ZQ1uDc6Au6VHLUqLc4mlsR3lxE9vlvmvaC2mEkFw8
OTEjr9j1DsQOlAx9wdx865WqUzC9nPQM3NXjP36QPbbcVwG780YqB7vwdKlIlWQ2
xFqH3GaZGWKwDMll/X2seqP2/ILvWgWY4FvvQXLEykGAgp6yRHiZcGmZxUQA8u2I
UxPGRrl3nAcvYspd0d4c4k6w+EEjz0V0OsUEUf2pBPBPdHbe6HG8SNnBCJRfpDkM
iYGGsCwVf6nLfeLHApkdY29z9ZcPyKpoUmZmScnhvUFI1k9WAfYoT+gVuNBqcw+H
yTTv6r/ZygjL8fDibfgBuUsS
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:19 2026 by rpki-client