Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft
File:                     XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json)
Hash identifier:          lc/3hTqhu1dTtZSEm+JL2zCYpRcLwjF1MLvAWdBtqWM=
Subject key identifier:   A5:CF:7F:1D:B1:99:C0:A3:35:64:08:9D:A8:5E:87:E7:AC:B3:78:19
Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A
Certificate issuer:       /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A
Certificate serial:       05A1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft
Manifest number:          054C
Signing time:             Fri 17 Jul 2026 00:05:37 +0000
Manifest this update:     Fri 17 Jul 2026 00:05:37 +0000
Manifest next update:     Fri 24 Jul 2026 00:05:37 +0000
Files and hashes:         1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: Q27mQ7tK6vXumSg3BmZlgKP7K7kWz/9G0IPImXa87bU=)
                          2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: rcOga+YGZldqreiF0WCdj8lf5Z59J1hOmyY6+goJTWY=)
                          3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: vIEtRSxvBa0Xc/IiKtnrGRDGvVh6iD/nJgJJDv2I0S0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl
                          rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:05:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1441 (0x5a1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A
        Validity
            Not Before: Jul 17 00:05:37 2026 GMT
            Not After : Jul 24 00:05:37 2026 GMT
        Subject: CN=6a5971d1-b83c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:2d:9f:6f:7d:e8:46:17:12:d7:54:30:87:9e:
                    8e:c3:ab:6d:bc:a5:c3:0b:03:33:8c:6d:8e:12:8a:
                    cf:2b:33:e8:ea:fb:58:bb:87:ed:e8:9f:13:ba:09:
                    40:c3:c7:40:5b:51:5e:03:94:9e:33:3a:67:af:d1:
                    91:a5:1e:bd:29:86:7a:0d:ca:a0:cd:ee:7b:8f:82:
                    9e:18:e1:52:38:5f:3b:a6:26:60:f5:d5:86:83:ab:
                    e0:40:f5:15:1d:ba:cd:66:20:66:ed:1a:9d:ae:34:
                    3b:3c:0c:7c:1b:bf:78:3d:62:93:44:0b:40:f9:5b:
                    17:a4:77:04:9b:2f:c1:cf:ab:58:5b:2a:4a:5c:c6:
                    3c:28:b6:d6:59:11:a6:39:53:55:d9:53:c5:23:3d:
                    8d:07:a1:a6:7d:45:f7:30:e8:d3:a5:23:ba:3c:ed:
                    d6:c2:93:30:72:69:8e:46:32:52:8b:eb:f5:5e:eb:
                    02:f4:86:68:ab:30:ef:7f:f6:eb:dd:85:94:34:93:
                    56:72:0f:60:87:3e:32:d1:3f:db:ba:aa:0b:4b:54:
                    6e:50:22:34:f5:20:e3:b3:ab:4e:26:fc:b8:d0:a4:
                    17:8c:9c:65:7a:45:fe:a6:1f:0e:19:3d:00:61:5f:
                    26:78:0a:e2:8e:61:10:8b:74:14:53:69:30:65:01:
                    e0:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:CF:7F:1D:B1:99:C0:A3:35:64:08:9D:A8:5E:87:E7:AC:B3:78:19
            X509v3 Authority Key Identifier:
                keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:48:4b:71:17:ae:4c:46:d2:d4:ee:2f:40:ae:0f:a9:72:43:
         6b:25:1f:27:58:56:fb:d9:f3:c6:24:fe:f2:eb:69:92:eb:2a:
         26:bd:95:03:15:86:c0:0c:5c:b4:ef:6b:51:d4:1a:c2:8b:f9:
         ab:a8:17:d6:1d:6d:9e:17:2d:cc:9a:68:f9:35:92:02:8b:59:
         8a:0a:5f:41:13:c3:a1:e0:56:ec:2c:9a:98:65:a5:34:27:0e:
         1d:09:56:15:be:81:db:12:f9:7a:87:e0:33:9d:a3:ff:82:67:
         bb:19:4b:7d:9c:4a:5c:2c:6c:9b:a0:cf:9e:36:59:9f:b4:85:
         73:2f:80:f9:2d:93:cc:2c:1d:80:60:0f:56:6e:a3:96:ee:52:
         23:e1:38:63:cf:4b:a7:2b:6d:b9:10:52:01:91:c5:05:6c:67:
         27:fd:23:17:cb:d2:66:e6:3c:9d:02:3d:2f:fe:d4:ff:c0:00:
         fe:39:c1:e7:f3:0c:64:46:7d:76:4d:34:be:54:be:c2:8c:bf:
         80:2f:cc:4f:b6:eb:25:78:c9:cc:8f:5e:47:29:b3:c7:2f:8a:
         e5:7b:84:d1:a3:31:be:78:8f:1f:c2:96:24:90:7a:06:a4:11:
         1d:a1:29:35:28:41:56:c3:2d:df:84:9b:be:01:e1:c9:02:45:
         e1:f7:0a:cf
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz
M0JDMDI5N0EwHhcNMjYwNzE3MDAwNTM3WhcNMjYwNzI0MDAwNTM3WjAYMRYwFAYD
VQQDEw02YTU5NzFkMS1iODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3C2fb33oRhcS11Qwh56Ow6ttvKXDCwMzjG2OEorPKzPo6vtYu4ft6J8TuglA
w8dAW1FeA5SeMzpnr9GRpR69KYZ6Dcqgze57j4KeGOFSOF87piZg9dWGg6vgQPUV
HbrNZiBm7RqdrjQ7PAx8G794PWKTRAtA+VsXpHcEmy/Bz6tYWypKXMY8KLbWWRGm
OVNV2VPFIz2NB6GmfUX3MOjTpSO6PO3WwpMwcmmORjJSi+v1XusC9IZoqzDvf/br
3YWUNJNWcg9ghz4y0T/buqoLS1RuUCI09SDjs6tOJvy40KQXjJxlekX+ph8OGT0A
YV8meArijmEQi3QUU2kwZQHgBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKXPfx2x
mcCjNWQInaheh+ess3gZMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx
RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL
WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2
M1dMSElBWEhaRU16dkFLWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAC0hLcReuTEbS1O4vQK4PqXJDayUfJ1hW+9nzxiT+8utpkusqJr2VAxWGwAxc
tO9rUdQawov5q6gX1h1tnhctzJpo+TWSAotZigpfQRPDoeBW7CyamGWlNCcOHQlW
Fb6B2xL5eofgM52j/4JnuxlLfZxKXCxsm6DPnjZZn7SFcy+A+S2TzCwdgGAPVm6j
lu5SI+E4Y89LpyttuRBSAZHFBWxnJ/0jF8vSZuY8nQI9L/7U/8AA/jnB5/MMZEZ9
dk00vlS+woy/gC/MT7brJXjJzI9eRymzxy+K5XuE0aMxvniPH8KWJJB6BqQRHaEp
NShBVsMt34SbvgHhyQJF4fcKzw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:21:29 2026 by rpki-client