Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft
File:                     dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json)
Hash identifier:          9rK0rhd0pHxlxlG61BT2REJDTplP6uu61hWk+qt6+rk=
Subject key identifier:   6B:63:08:53:36:51:4E:E6:72:11:95:B2:AA:17:42:A7:68:78:5D:30
Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17
Certificate issuer:       /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17
Certificate serial:       0FF4
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft
Manifest number:          0E7D
Signing time:             Thu 16 Jul 2026 18:55:31 +0000
Manifest this update:     Thu 16 Jul 2026 18:55:30 +0000
Manifest next update:     Thu 23 Jul 2026 18:55:30 +0000
Files and hashes:         1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: 9hOPCZ++I8z55dAWpwdJqM33mDqO4oVWEch6H8+gSk8=)
                          2: DA216556B3D411F090043E0CC4F9AE02.roa (hash: OQ3HyPs1pZ7zSFS7DMwapYFsNSsdKVPofXtlk91gzBQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl
                          rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 18:55:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4084 (0xff4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17
        Validity
            Not Before: Jul 16 18:55:30 2026 GMT
            Not After : Jul 23 18:55:30 2026 GMT
        Subject: CN=6a592923-8a38
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:3b:31:61:a3:ac:aa:f6:05:f5:8a:83:07:39:
                    4f:e9:1e:1e:42:a8:5e:90:97:e3:97:93:6b:d9:d3:
                    03:3b:63:39:a6:f4:27:84:20:a9:7a:49:a0:f3:47:
                    73:59:54:1d:44:e2:1d:53:6e:4c:bd:1a:82:48:7f:
                    64:11:87:f9:20:a1:fb:8e:9a:6c:2b:4f:36:e7:b3:
                    6e:b1:4b:f8:a0:8a:27:fe:ea:da:00:15:f0:4c:ef:
                    8c:22:40:7e:f8:d7:aa:d7:cd:77:8f:e0:70:fa:88:
                    54:3e:49:2a:e2:8b:d0:24:e1:09:29:18:9d:bf:4f:
                    8a:d1:f0:de:88:8e:6b:aa:e4:36:b4:bf:15:d2:94:
                    1d:4a:d2:1c:9d:d6:9f:ce:ec:88:f1:56:ef:c3:ab:
                    76:a2:6b:e2:32:4c:18:95:8b:4e:2a:1f:13:b8:18:
                    7c:25:0d:d2:d8:e8:d4:eb:b0:fe:5c:9d:fa:94:88:
                    9c:85:d3:86:96:10:80:6b:cd:62:a7:da:63:ef:ab:
                    86:7e:fb:41:ad:32:77:cb:ef:31:4a:42:c7:ba:06:
                    1c:8e:4a:5b:73:35:fe:77:a6:03:f4:2d:3a:61:d3:
                    ae:07:3e:8f:95:b3:23:45:a0:39:8e:e3:0e:0b:63:
                    b6:50:d6:5e:c2:14:46:16:57:4d:98:f6:17:75:ce:
                    6a:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:63:08:53:36:51:4E:E6:72:11:95:B2:AA:17:42:A7:68:78:5D:30
            X509v3 Authority Key Identifier:
                keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:97:ad:07:69:2f:4c:20:74:93:70:dd:95:30:f2:6d:66:00:
         9a:02:83:73:5e:53:be:94:01:a6:04:e4:4e:be:b8:7b:01:fd:
         c1:2d:f8:f3:b7:ac:bd:41:4d:38:25:0e:6c:3a:98:c5:ff:ef:
         f9:15:4f:17:37:27:13:f2:bb:33:5e:f6:d7:d0:a9:c1:59:30:
         a7:81:ef:b2:65:36:57:b2:3e:25:92:82:43:90:c0:b5:33:7e:
         22:77:63:65:85:83:61:1f:11:1c:a6:ac:b5:34:9a:27:61:85:
         23:e3:d2:1b:31:d0:6b:34:1a:cb:1c:88:74:e6:31:05:96:73:
         90:3f:84:17:e6:61:c4:fb:9d:a2:40:d3:8a:33:b9:59:3b:08:
         81:ca:8c:cd:92:2b:0d:9c:86:40:d5:55:22:92:51:38:69:46:
         b0:df:6a:42:e1:bb:f5:4a:76:c3:7f:0c:fa:2d:7a:66:63:18:
         63:75:9d:dd:e7:bb:75:e2:49:ba:b0:76:ff:9c:55:23:f2:6e:
         99:42:c9:fb:1e:cf:c2:5a:92:77:d7:3a:4d:c1:e0:5b:75:56:
         6c:31:f1:3d:cb:95:71:52:e7:a6:f5:9b:0d:f2:07:73:d4:8f:
         da:66:2b:26:52:95:80:5d:ac:14:ed:99:c3:f6:9b:b8:25:d1:
         4f:25:4f:a9
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICD/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2
NTlGMEVFMTcwHhcNMjYwNzE2MTg1NTMwWhcNMjYwNzIzMTg1NTMwWjAYMRYwFAYD
VQQDEw02YTU5MjkyMy04YTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyDsxYaOsqvYF9YqDBzlP6R4eQqhekJfjl5Nr2dMDO2M5pvQnhCCpekmg80dz
WVQdROIdU25MvRqCSH9kEYf5IKH7jppsK08257NusUv4oIon/uraABXwTO+MIkB+
+Neq1813j+Bw+ohUPkkq4ovQJOEJKRidv0+K0fDeiI5rquQ2tL8V0pQdStIcndaf
zuyI8Vbvw6t2omviMkwYlYtOKh8TuBh8JQ3S2OjU67D+XJ36lIichdOGlhCAa81i
p9pj76uGfvtBrTJ3y+8xSkLHugYcjkpbczX+d6YD9C06YdOuBz6PlbMjRaA5juMO
C2O2UNZewhRGFldNmPYXdc5qjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGtjCFM2
UU7mchGVsqoXQqdoeF0wMB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx
MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3
aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf
akNtb085eUVrcmxsbnc3aGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAJ5etB2kvTCB0k3DdlTDybWYAmgKDc15TvpQBpgTkTr64ewH9wS3487esvUFN
OCUObDqYxf/v+RVPFzcnE/K7M17219CpwVkwp4HvsmU2V7I+JZKCQ5DAtTN+Indj
ZYWDYR8RHKastTSaJ2GFI+PSGzHQazQayxyIdOYxBZZzkD+EF+ZhxPudokDTijO5
WTsIgcqMzZIrDZyGQNVVIpJROGlGsN9qQuG79Up2w38M+i16ZmMYY3Wd3ee7deJJ
urB2/5xVI/JumULJ+x7PwlqSd9c6TcHgW3VWbDHxPcuVcVLnpvWbDfIHc9SP2mYr
JlKVgF2sFO2Zw/abuCXRTyVPqQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:51 2026 by rpki-client