Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft
File:                     UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json)
Hash identifier:          z5kC65NViC0/9xnnxlrC8tsiY3G6Fy5Sdm/M0JB7ms4=
Subject key identifier:   A6:17:DF:A2:11:81:0B:95:AB:57:90:08:7B:F5:2F:29:4C:FB:BA:2B
Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF
Certificate issuer:       /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF
Certificate serial:       216B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft
Manifest number:          2146
Signing time:             Thu 16 Jul 2026 15:58:27 +0000
Manifest this update:     Thu 16 Jul 2026 15:58:26 +0000
Manifest next update:     Thu 23 Jul 2026 15:58:26 +0000
Files and hashes:         1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: OEIR91/H0pJKzqU+7sfsLz3ylQUtV+0MXdJPja27cPY=)
                          2: 2991FB703EBC11F0B4390D6CC4F9AE02.roa (hash: H6TSFHjxceqzGmdQryqjxQpaN4ogGNNs1wmONNfXYC4=)
                          3: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: o/MzyN7ge/ypeEuVIYd4HleoRWxXy+d/s8ghiWxojiQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl
                          rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:58:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8555 (0x216b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9159967, serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF
        Validity
            Not Before: Jul 16 15:58:26 2026 GMT
            Not After : Jul 23 15:58:26 2026 GMT
        Subject: CN=6a58ffa2-ba90
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:ce:65:50:18:2b:07:5a:76:cf:5d:39:43:ee:
                    80:e2:0b:27:56:00:ac:68:0a:15:b5:ec:39:18:2b:
                    10:54:0f:03:e7:ee:3b:a8:49:45:2b:b0:6f:90:0a:
                    fc:cf:dc:ae:21:88:bf:f2:fc:1d:cf:53:4c:6c:fb:
                    ab:72:c9:76:23:cb:ef:47:ad:86:4b:69:4d:a8:f8:
                    e4:e0:5d:b8:34:e4:98:05:63:88:20:d0:60:e8:79:
                    9a:de:a7:39:6a:6a:12:74:79:c5:59:45:56:42:e8:
                    32:9f:99:90:4e:8d:d6:53:ff:9a:a3:64:3a:02:73:
                    8b:9e:3c:89:e6:52:44:47:b4:9d:b7:05:8e:79:64:
                    8d:fe:df:2e:b2:eb:75:c9:25:b3:75:c5:c9:5e:73:
                    7e:c5:01:56:44:76:85:78:a1:99:cf:d5:d9:00:da:
                    1d:ad:f3:71:af:66:02:ab:4c:57:80:a1:ea:62:51:
                    f4:e2:db:27:11:2f:10:89:e7:ee:72:1c:96:21:68:
                    04:ab:bc:09:5a:e1:4e:c6:44:1f:89:77:d7:94:ca:
                    5d:2c:d8:91:69:f2:c1:4c:87:7a:5f:5f:07:1c:26:
                    92:d4:c7:8d:df:1a:fc:8c:c0:db:1b:a6:0c:77:a6:
                    d3:12:70:fc:c0:87:9a:66:61:8e:5b:b6:27:27:5f:
                    45:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:17:DF:A2:11:81:0B:95:AB:57:90:08:7B:F5:2F:29:4C:FB:BA:2B
            X509v3 Authority Key Identifier:
                keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:50:ca:bb:26:51:55:d6:e3:c4:db:44:c5:02:8c:bb:68:19:
         ae:e4:ef:30:d5:90:69:15:a5:bd:1e:e2:1c:04:46:3b:2b:c5:
         9a:30:c1:a3:ee:18:79:4f:be:e7:fe:68:ea:b8:ab:80:03:3a:
         bc:4a:d6:83:e8:ac:4c:57:fa:d9:a1:9f:77:62:be:d5:19:0b:
         f4:af:81:af:5e:75:e3:21:c6:a5:bb:6b:ba:df:b8:92:62:8f:
         16:bd:33:15:d8:da:f2:21:38:cf:eb:41:e9:ae:13:16:fc:fe:
         08:ba:4f:54:53:15:e5:15:b7:31:5c:13:62:33:78:2e:19:07:
         46:fa:f8:82:aa:af:bf:b0:be:00:18:bc:ef:14:6f:40:ea:9a:
         fb:c8:76:3b:d4:90:69:2f:d5:4a:10:72:5e:c9:d3:56:13:43:
         1e:56:03:13:aa:3e:1a:ad:1b:2e:f3:3b:e5:f5:ea:d6:d2:e4:
         a4:a0:ce:f0:9b:41:70:d1:f9:27:c5:7c:16:ba:99:0a:14:9f:
         02:1d:32:58:b8:cb:24:44:c5:c4:48:30:1c:a4:17:18:bb:ac:
         a0:3a:2a:f3:46:52:c1:47:33:23:5a:25:a4:45:3f:c8:da:b1:
         91:0a:a8:d3:b2:96:a1:39:eb:90:ef:37:91:d5:1b:ee:3b:78:
         3d:f8:54:51
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICIWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB
RjZDRTYwQUYwHhcNMjYwNzE2MTU1ODI2WhcNMjYwNzIzMTU1ODI2WjAYMRYwFAYD
VQQDEw02YTU4ZmZhMi1iYTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArM5lUBgrB1p2z105Q+6A4gsnVgCsaAoVtew5GCsQVA8D5+47qElFK7BvkAr8
z9yuIYi/8vwdz1NMbPurcsl2I8vvR62GS2lNqPjk4F24NOSYBWOIINBg6Hma3qc5
amoSdHnFWUVWQugyn5mQTo3WU/+ao2Q6AnOLnjyJ5lJER7SdtwWOeWSN/t8usut1
ySWzdcXJXnN+xQFWRHaFeKGZz9XZANodrfNxr2YCq0xXgKHqYlH04tsnES8Qiefu
chyWIWgEq7wJWuFOxkQfiXfXlMpdLNiRafLBTId6X18HHCaS1MeN3xr8jMDbG6YM
d6bTEnD8wIeaZmGOW7YnJ19FmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKYX36IR
gQuVq1eQCHv1LylM+7orMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1
QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z
SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
OTk2Ny8wQkJGMjU3ODE1QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFW
TmZySVVGNXpXRU92Yk9ZSzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAp1DKuyZRVdbjxNtExQKMu2gZruTvMNWQaRWlvR7iHARGOyvFmjDBo+4YeU++
5/5o6rirgAM6vErWg+isTFf62aGfd2K+1RkL9K+Br1514yHGpbtrut+4kmKPFr0z
Fdja8iE4z+tB6a4TFvz+CLpPVFMV5RW3MVwTYjN4LhkHRvr4gqqvv7C+ABi87xRv
QOqa+8h2O9SQaS/VShByXsnTVhNDHlYDE6o+Gq0bLvM75fXq1tLkpKDO8JtBcNH5
J8V8FrqZChSfAh0yWLjLJETFxEgwHKQXGLusoDoq80ZSwUczI1olpEU/yNqxkQqo
07KWoTnrkO83kdUb7jt4PfhUUQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 09:23:50 2026 by rpki-client