Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.mft
File:                     EY5vss8Va51aJq7AUfscX37-AeM.mft (raw, json)
Hash identifier:          +JNB37K6d+DPOk0h+0MsrUgFVZ3lg9bo6XBq9af6pjc=
Subject key identifier:   94:A6:73:1E:FD:83:FD:4F:39:19:0D:40:3C:5D:01:0A:44:A6:D0:76
Authority key identifier: 11:8E:6F:B2:CF:15:6B:9D:5A:26:AE:C0:51:FB:1C:5F:7E:FE:01:E3
Certificate issuer:       /CN=A914DA3F/serialNumber=118E6FB2CF156B9D5A26AEC051FB1C5F7EFE01E3
Certificate serial:       0293
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY5vss8Va51aJq7AUfscX37-AeM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.mft
Manifest number:          0288
Signing time:             Fri 03 Jul 2026 02:26:47 +0000
Manifest this update:     Fri 03 Jul 2026 02:26:47 +0000
Manifest next update:     Fri 10 Jul 2026 02:26:47 +0000
Files and hashes:         1: EY5vss8Va51aJq7AUfscX37-AeM.crl (hash: CMmpayU7+pVtQmnbWoKZVNwXB7vLpvD3wE66EkcSruE=)
                          2: 487A18B804CA11F1B2B56954083D8C67.roa (hash: ycuyie7LwkxG6yrjgKRl5/hSDxED87sOezbxhhIb1w0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.crl
                          rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY5vss8Va51aJq7AUfscX37-AeM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 02:26:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 659 (0x293)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914DA3F, serialNumber=118E6FB2CF156B9D5A26AEC051FB1C5F7EFE01E3
        Validity
            Not Before: Jul  3 02:26:47 2026 GMT
            Not After : Jul 10 02:26:47 2026 GMT
        Subject: CN=6a471de7-01da
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:b0:e6:6c:3d:ae:a7:a5:70:eb:50:70:a1:24:
                    a2:38:1b:0a:5e:42:ef:b1:2a:c9:79:46:47:ab:ba:
                    dd:88:ae:fc:75:dc:8b:d6:63:eb:d2:c3:2e:9a:20:
                    15:26:d1:f5:78:21:d6:a6:db:5b:bd:75:0d:06:73:
                    e8:0b:e3:de:fd:40:20:03:12:e2:49:e4:96:5b:45:
                    81:b5:1e:81:b2:69:fb:9a:fd:76:11:76:83:d3:04:
                    aa:45:50:be:95:53:0e:d7:77:24:2e:da:96:b4:94:
                    78:ef:a3:15:a2:d0:47:98:55:9c:a5:86:f4:09:c5:
                    30:2f:ba:e3:97:87:ac:6b:8e:e8:62:1c:f6:02:43:
                    86:67:1f:a7:38:1d:3e:61:a8:7f:c4:80:3b:81:98:
                    3c:cf:96:b7:76:0a:93:8b:2e:1e:38:94:a6:cf:9e:
                    b7:d8:a7:21:7d:e9:cf:c6:45:d9:1b:1e:88:c8:be:
                    95:1d:9e:9c:89:01:6e:db:c7:fc:43:93:b3:00:c8:
                    92:17:21:0f:03:a4:17:1d:49:3b:0c:86:a3:c2:9d:
                    47:20:2c:56:5e:9c:fe:1f:8c:3b:dc:9d:8b:73:b5:
                    7f:fd:79:0e:6d:0c:6f:37:61:b0:e4:97:76:77:ad:
                    6f:c0:1c:49:4c:2a:02:06:c3:c8:89:35:b4:1a:ea:
                    8e:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:A6:73:1E:FD:83:FD:4F:39:19:0D:40:3C:5D:01:0A:44:A6:D0:76
            X509v3 Authority Key Identifier:
                keyid:11:8E:6F:B2:CF:15:6B:9D:5A:26:AE:C0:51:FB:1C:5F:7E:FE:01:E3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY5vss8Va51aJq7AUfscX37-AeM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA3F/469B176AA6CA11ED8D109978C4F9AE02/EY5vss8Va51aJq7AUfscX37-AeM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:2a:53:10:cc:ea:dc:ad:b8:bd:41:3e:17:ea:62:a3:7a:23:
         57:d9:ba:7e:ea:da:c0:d4:4c:00:40:15:5b:b0:99:ac:b6:80:
         75:c2:b0:ea:28:04:87:99:4a:86:16:4e:de:9e:4e:38:85:59:
         a2:b7:e9:75:68:a1:99:af:5a:52:00:c9:34:7b:53:7f:e9:0e:
         30:f8:c2:a7:bb:b9:ca:c4:30:00:da:f9:86:64:0f:1c:4f:87:
         96:bc:cb:80:7a:fc:b8:75:54:79:be:f9:fc:9b:51:59:27:bc:
         f9:d5:82:ff:3c:02:d1:4f:45:10:a4:bb:cf:5b:f8:f5:4f:27:
         be:f0:5e:3e:55:2e:81:56:88:6d:58:14:df:c1:84:93:04:e5:
         66:c2:3c:24:44:9f:c6:ed:a5:e6:d0:7a:ef:2f:58:c3:f3:2f:
         b1:c3:2d:5c:45:0b:d1:b0:b4:60:bc:1c:b7:60:1b:b7:6b:58:
         f4:d1:e4:9e:e0:61:e3:26:96:e2:1d:6a:e1:2d:06:98:2f:bc:
         68:cc:8e:77:27:d6:a7:35:c2:1a:ac:ba:f0:52:55:89:f2:1a:
         49:97:04:5b:39:99:4e:08:6b:3e:3a:36:2c:96:be:e3:d5:e2:
         28:f2:fe:cd:37:43:d8:bd:a8:16:6e:4c:fb:a0:8a:1c:e5:f3:
         3f:26:c9:d8
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NERBM0YxMTAvBgNVBAUTKDExOEU2RkIyQ0YxNTZCOUQ1QTI2QUVDMDUxRkIxQzVG
N0VGRTAxRTMwHhcNMjYwNzAzMDIyNjQ3WhcNMjYwNzEwMDIyNjQ3WjAYMRYwFAYD
VQQDEw02YTQ3MWRlNy0wMWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnrDmbD2up6Vw61BwoSSiOBsKXkLvsSrJeUZHq7rdiK78ddyL1mPr0sMumiAV
JtH1eCHWpttbvXUNBnPoC+Pe/UAgAxLiSeSWW0WBtR6Bsmn7mv12EXaD0wSqRVC+
lVMO13ckLtqWtJR476MVotBHmFWcpYb0CcUwL7rjl4esa47oYhz2AkOGZx+nOB0+
Yah/xIA7gZg8z5a3dgqTiy4eOJSmz5632KchfenPxkXZGx6IyL6VHZ6ciQFu28f8
Q5OzAMiSFyEPA6QXHUk7DIajwp1HICxWXpz+H4w73J2Lc7V//XkObQxvN2Gw5Jd2
d61vwBxJTCoCBsPIiTW0GuqOKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJSmcx79
g/1PORkNQDxdAQpEptB2MB8GA1UdIwQYMBaAFBGOb7LPFWudWiauwFH7HF9+/gHj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEzRi80NjlCMTc2QUE2
Q0ExMUVEOEQxMDk5NzhDNEY5QUUwMi9FWTV2c3M4VmE1MWFKcTdBVWZzY1gzNy1B
ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0VZNXZzczhWYTUxYUpxN0FVZnNjWDM3LUFlTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
REEzRi80NjlCMTc2QUE2Q0ExMUVEOEQxMDk5NzhDNEY5QUUwMi9FWTV2c3M4VmE1
MWFKcTdBVWZzY1gzNy1BZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAGipTEMzq3K24vUE+F+pio3ojV9m6furawNRMAEAVW7CZrLaAdcKw6igEh5lK
hhZO3p5OOIVZorfpdWihma9aUgDJNHtTf+kOMPjCp7u5ysQwANr5hmQPHE+HlrzL
gHr8uHVUeb75/JtRWSe8+dWC/zwC0U9FEKS7z1v49U8nvvBePlUugVaIbVgU38GE
kwTlZsI8JESfxu2l5tB67y9Yw/MvscMtXEUL0bC0YLwct2Abt2tY9NHknuBh4yaW
4h1q4S0GmC+8aMyOdyfWpzXCGqy68FJVifIaSZcEWzmZTghrPjo2LJa+49XiKPL+
zTdD2L2oFm5M+6CKHOXzPybJ2A==
-----END CERTIFICATE-----
Generated at Sat Jul 4 12:17:40 2026 by rpki-client