Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft
File:                     FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json)
Hash identifier:          lphBna+Wx40UQ7A1OEvUMGKQpD9oWUNUsfOXTHFa7AY=
Subject key identifier:   5D:0D:77:2C:37:D2:65:F2:0E:A2:47:C2:8A:20:44:79:EE:49:81:60
Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90
Certificate issuer:       /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990
Certificate serial:       FD
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft
Manifest number:          F5
Signing time:             Sun 05 Jul 2026 07:01:11 +0000
Manifest this update:     Sun 05 Jul 2026 07:01:11 +0000
Manifest next update:     Sun 12 Jul 2026 07:01:11 +0000
Files and hashes:         1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: 3VyX1tomSCIXXxG1N2OXCctcdTWwwLE/Ewl9poeIvj8=)
                          2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: 50HTgUj8BYD/Up0LzcZVR1qzl5yUcfq0/gOWZsXxQLA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl
                          rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:54:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 253 (0xfd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990
        Validity
            Not Before: Jul  5 07:01:11 2026 GMT
            Not After : Jul 12 07:01:11 2026 GMT
        Subject: CN=6a4a0137-b498
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:0e:54:fa:c8:c7:f4:a2:5f:bb:d6:d9:4b:c8:
                    18:fa:4d:a3:da:f0:72:ea:93:a2:62:97:f9:c3:1a:
                    28:34:d9:46:cd:94:af:fe:82:a7:39:7b:aa:99:b2:
                    a1:50:3c:92:cd:d6:1a:99:10:52:18:6a:b6:e2:01:
                    07:37:a1:08:79:ff:c6:0b:d8:2d:6f:92:7b:54:5a:
                    bb:3a:69:9c:1c:8b:0c:13:84:ae:66:88:74:53:07:
                    76:27:18:83:85:ab:19:44:d1:ab:a5:57:17:0f:35:
                    e1:8e:ea:0d:73:13:b3:f1:e0:83:23:9e:ad:01:c7:
                    01:59:5c:6f:39:ac:f2:03:d3:63:23:c2:44:2c:c0:
                    6c:94:98:19:13:0f:d2:1e:cb:16:cd:f1:69:a3:cd:
                    a5:78:e5:7b:9d:8a:2e:20:e2:bb:e1:77:b5:38:1e:
                    28:a8:27:e4:33:22:1b:9d:9c:7b:b3:a7:07:58:e8:
                    2d:c6:01:4f:3f:e7:a8:af:5f:47:64:3a:87:c1:64:
                    9d:b5:ca:5e:ff:b8:20:8b:0c:79:64:47:70:2f:c1:
                    c0:44:16:84:5a:ec:7c:ec:46:7f:54:91:c6:f2:e7:
                    a7:9c:c2:ad:a6:bc:94:a8:81:df:97:ce:06:f8:05:
                    c9:08:a6:fd:69:75:42:34:e5:2d:81:22:19:cd:13:
                    14:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:0D:77:2C:37:D2:65:F2:0E:A2:47:C2:8A:20:44:79:EE:49:81:60
            X509v3 Authority Key Identifier:
                keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:0c:5b:1c:17:c3:f9:22:9b:4c:fc:79:d0:66:0a:43:05:1e:
         3c:fa:51:4d:8a:18:15:7e:7e:af:e9:2c:b0:b1:a2:e7:e8:c9:
         46:84:02:47:81:c5:b5:bd:ac:67:b1:cb:10:b7:ec:1c:ea:46:
         b4:d7:7d:f5:92:ec:d7:90:0b:bb:ff:4f:9b:b7:12:e8:ff:ae:
         f1:e8:d6:12:9b:88:c1:2e:43:cb:fc:1b:52:94:d2:47:fe:ff:
         65:62:2f:2a:77:a2:ea:44:82:ab:03:28:37:57:b1:c9:b7:38:
         ac:47:99:8b:92:05:75:4b:b1:36:8b:7c:7c:b4:d2:0b:e7:e1:
         2d:d9:51:0e:ff:47:f6:d4:b9:a0:e6:f8:b0:2b:67:16:37:a6:
         22:5e:d7:22:24:90:bc:4e:e7:11:3e:e1:8f:31:af:64:1a:13:
         9d:60:07:b2:96:72:5f:2f:04:47:21:79:7f:3c:38:78:c5:49:
         8c:9c:85:59:92:92:27:0e:ba:4f:a3:be:32:f3:8a:a4:1d:b5:
         88:33:8d:ee:cd:d2:06:24:86:cd:b8:c4:8a:d8:0d:44:6e:5b:
         34:f0:38:a9:72:f8:83:5c:dc:c0:90:b5:b7:4a:1e:b2:18:a1:
         03:a1:7d:70:38:7b:e6:0e:72:5d:c1:2d:a2:3e:59:fe:22:ab:
         61:9f:ec:fe
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjdGQkExMTAvBgNVBAUTKDE1M0M5OEQzMzEzQ0M2NEVEQjlBRTE1QUJBM0I1NDNF
NDgwNDU5OTAwHhcNMjYwNzA1MDcwMTExWhcNMjYwNzEyMDcwMTExWjAYMRYwFAYD
VQQDEw02YTRhMDEzNy1iNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyQ5U+sjH9KJfu9bZS8gY+k2j2vBy6pOiYpf5wxooNNlGzZSv/oKnOXuqmbKh
UDySzdYamRBSGGq24gEHN6EIef/GC9gtb5J7VFq7OmmcHIsME4SuZoh0Uwd2JxiD
hasZRNGrpVcXDzXhjuoNcxOz8eCDI56tAccBWVxvOazyA9NjI8JELMBslJgZEw/S
HssWzfFpo82leOV7nYouIOK74Xe1OB4oqCfkMyIbnZx7s6cHWOgtxgFPP+eor19H
ZDqHwWSdtcpe/7ggiwx5ZEdwL8HARBaEWux87EZ/VJHG8uennMKtpryUqIHfl84G
+AXJCKb9aXVCNOUtgSIZzRMU6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF0Ndyw3
0mXyDqJHwoogRHnuSYFgMB8GA1UdIwQYMBaAFBU8mNMxPMZO25rhWro7VD5IBFmQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80QjZFMDBGQzA0
OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9GVHlZMHpFOHhrN2JtdUZhdWp0VVBrZ0VX
WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVdaQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
N0ZCQS80QjZFMDBGQzA0OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9GVHlZMHpFOHhr
N2JtdUZhdWp0VVBrZ0VXWkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAPgxbHBfD+SKbTPx50GYKQwUePPpRTYoYFX5+r+kssLGi5+jJRoQCR4HFtb2s
Z7HLELfsHOpGtNd99ZLs15ALu/9Pm7cS6P+u8ejWEpuIwS5Dy/wbUpTSR/7/ZWIv
Knei6kSCqwMoN1exybc4rEeZi5IFdUuxNot8fLTSC+fhLdlRDv9H9tS5oOb4sCtn
FjemIl7XIiSQvE7nET7hjzGvZBoTnWAHspZyXy8ERyF5fzw4eMVJjJyFWZKSJw66
T6O+MvOKpB21iDON7s3SBiSGzbjEitgNRG5bNPA4qXL4g1zcwJC1t0oeshihA6F9
cDh75g5yXcEtoj5Z/iKrYZ/s/g==
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:45:14 2026 by rpki-client