Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft
File:                     5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json)
Hash identifier:          rqPBnk86U2DruIlUVNsjgn9mI3mRuP50qyQ7vsNQGPE=
Subject key identifier:   46:91:E7:26:F2:46:82:A0:A4:28:D2:3C:30:60:DC:AD:C5:3C:46:5E
Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37
Certificate issuer:       /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537
Certificate serial:       1E89
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft
Manifest number:          1E6E
Signing time:             Sun 12 Jul 2026 16:01:19 +0000
Manifest this update:     Sun 12 Jul 2026 16:01:18 +0000
Manifest next update:     Sun 19 Jul 2026 16:01:18 +0000
Files and hashes:         1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: ctB5qyjRejOz0gyHk1jZHySmQNAIlXOFY2FI4d6hoCQ=)
                          2: 1D57FF40A01311E684546521C4F9AE02.roa (hash: lNaIu73lqivuKf4impc1RoL9Iorynr8Oq1i414eOVLY=)
                          3: 4865DD00A13B11E687921078C4F9AE02.roa (hash: ct9I/aMYPGYqo53jKTnyxK/j3JeT25nkuXtpX13/eJM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl
                          rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 19 Jul 2026 16:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7817 (0x1e89)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537
        Validity
            Not Before: Jul 12 16:01:18 2026 GMT
            Not After : Jul 19 16:01:18 2026 GMT
        Subject: CN=6a53ba4f-52a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:18:51:c5:b8:ad:23:a7:f1:20:c4:44:b4:b3:
                    35:fc:11:34:1d:fa:78:1d:07:b7:7c:97:19:42:ea:
                    f1:17:da:fd:0e:ff:6f:67:d8:35:d3:f7:2f:d3:a7:
                    ee:cf:f5:5d:f7:2e:6e:83:8d:79:d4:1f:ee:b7:ec:
                    65:d4:6c:16:be:bc:79:99:15:6b:85:58:14:d2:4d:
                    99:e8:25:fe:29:17:0a:36:17:0a:7a:0f:15:6b:be:
                    65:ee:ff:6f:2c:29:87:ea:3b:82:5e:55:f5:5c:cb:
                    c3:bf:bf:66:b2:41:c1:0d:a1:14:04:fc:01:54:b6:
                    e8:e1:c3:8c:c3:51:15:47:4f:4d:ba:df:b1:1f:d5:
                    89:7f:a6:98:92:79:79:84:48:c5:2e:96:dc:b9:11:
                    77:a3:75:ec:82:58:fc:d0:d0:5f:63:7c:61:c0:c8:
                    b8:74:68:1a:ac:fa:4d:8b:af:a6:18:b0:d5:28:7e:
                    1e:6e:e7:04:a7:b0:45:d6:db:02:c2:5a:7a:fe:7a:
                    31:4a:f5:83:58:e9:ce:b8:a4:52:8e:4c:c2:e1:00:
                    fa:8e:dc:37:cf:2b:c2:53:2e:e7:43:cf:a0:7a:8b:
                    4d:90:2e:ee:a9:eb:97:b4:ca:67:42:57:1d:c1:de:
                    10:48:a4:af:d4:a5:e2:c3:06:3c:e0:c9:80:9d:18:
                    a8:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:91:E7:26:F2:46:82:A0:A4:28:D2:3C:30:60:DC:AD:C5:3C:46:5E
            X509v3 Authority Key Identifier:
                keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:fc:19:aa:d9:7f:d2:a6:58:22:b3:ad:11:ff:bd:99:9f:33:
         52:de:8e:51:04:7d:03:d0:d2:4f:1a:27:fa:07:a3:bc:04:96:
         43:14:93:27:2d:f4:70:4c:64:a6:4e:c3:a8:ac:7e:cf:0b:ce:
         d8:d5:82:9a:70:42:7d:88:86:4b:66:57:c1:d2:eb:29:71:2f:
         5b:91:16:ca:88:6c:51:7a:79:a4:4b:56:8d:ed:6f:bc:20:e1:
         d0:22:b8:76:96:29:a8:8b:ba:8e:08:23:37:b7:70:16:59:c3:
         4a:42:69:11:f0:81:4d:2c:06:9b:e1:7d:de:42:98:ad:90:e9:
         cb:0b:0a:51:3d:59:fc:09:56:63:a0:db:bc:e3:bd:bf:7a:1f:
         1c:b6:40:ea:bf:d7:a1:5f:05:f1:cb:6a:ee:8f:09:c6:fd:a4:
         da:cb:b3:7f:b8:8b:09:90:54:5f:24:bb:3b:8a:11:87:fa:a1:
         13:46:50:18:4c:e0:8e:40:97:16:b6:a1:f4:88:8b:37:d6:03:
         62:48:52:fc:e8:f5:b6:f2:be:16:87:49:a4:71:2f:b3:26:d5:
         e2:11:b7:52:10:89:7f:07:0b:55:7b:0d:4d:5f:9c:8a:c8:28:
         42:d3:82:57:ef:07:0e:d9:a6:d5:ad:55:7b:99:91:20:4d:aa:
         75:db:bc:06
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICHokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw
REI5QTA1MzcwHhcNMjYwNzEyMTYwMTE4WhcNMjYwNzE5MTYwMTE4WjAYMRYwFAYD
VQQDEw02YTUzYmE0Zi01MmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqBhRxbitI6fxIMREtLM1/BE0Hfp4HQe3fJcZQurxF9r9Dv9vZ9g10/cv06fu
z/Vd9y5ug4151B/ut+xl1GwWvrx5mRVrhVgU0k2Z6CX+KRcKNhcKeg8Va75l7v9v
LCmH6juCXlX1XMvDv79mskHBDaEUBPwBVLbo4cOMw1EVR09Nut+xH9WJf6aYknl5
hEjFLpbcuRF3o3Xsglj80NBfY3xhwMi4dGgarPpNi6+mGLDVKH4ebucEp7BF1tsC
wlp6/noxSvWDWOnOuKRSjkzC4QD6jtw3zyvCUy7nQ8+geotNkC7uqeuXtMpnQlcd
wd4QSKSv1KXiwwY84MmAnRioAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEaR5yby
RoKgpCjSPDBg3K3FPEZeMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF
RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC
VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa
S1ZyMlROLTZZcmNOdWFCVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAsfwZqtl/0qZYIrOtEf+9mZ8zUt6OUQR9A9DSTxon+gejvASWQxSTJy30cExk
pk7DqKx+zwvO2NWCmnBCfYiGS2ZXwdLrKXEvW5EWyohsUXp5pEtWje1vvCDh0CK4
dpYpqIu6jggjN7dwFlnDSkJpEfCBTSwGm+F93kKYrZDpywsKUT1Z/AlWY6DbvOO9
v3ofHLZA6r/XoV8F8ctq7o8Jxv2k2suzf7iLCZBUXyS7O4oRh/qhE0ZQGEzgjkCX
Frah9IiLN9YDYkhS/Oj1tvK+FodJpHEvsybV4hG3UhCJfwcLVXsNTV+cisgoQtOC
V+8HDtmm1a1Ve5mRIE2qddu8Bg==
-----END CERTIFICATE-----
Generated at Tue Jul 14 04:23:39 2026 by rpki-client