Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft
File:                     hctAGQp33J5olNhX9zu3qQ4JdOQ.mft (raw, json)
Hash identifier:          MkYsnICRFKeEGjcoP3aBThvyaZA2x/bty6Nvaj/zvYU=
Subject key identifier:   33:2D:66:67:AD:1D:19:A2:C8:1A:85:92:B3:97:E5:A5:4F:B1:F8:A3
Authority key identifier: 85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4
Certificate issuer:       /CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4
Certificate serial:       0648
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft
Manifest number:          0638
Signing time:             Wed 08 Jul 2026 23:45:22 +0000
Manifest this update:     Wed 08 Jul 2026 23:45:21 +0000
Manifest next update:     Wed 15 Jul 2026 23:45:21 +0000
Files and hashes:         1: hctAGQp33J5olNhX9zu3qQ4JdOQ.crl (hash: DpXSJWWfEsOWGShKYQq85VY6Y59IHQb0z8qPzIkwVFA=)
                          2: 7FCFB4745E8411EE89DF693EC4F9AE02.roa (hash: eopWrcCTKAsMxcnNdOCRso+7nTOlyhMbbG0+6DVN/mA=)
                          3: FD9A4AA0E53111EBAB62446EC4F9AE02.roa (hash: aXUNgdPZaRVWUWRyzVl3gVNo/2yllW0aODydzNYrLyQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl
                          rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 15 Jul 2026 23:45:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1608 (0x648)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9169BB4, serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4
        Validity
            Not Before: Jul  8 23:45:21 2026 GMT
            Not After : Jul 15 23:45:21 2026 GMT
        Subject: CN=6a4ee111-af33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:19:a2:c1:61:37:06:82:a8:cc:4e:75:b9:c2:
                    1d:04:01:07:20:aa:42:06:d3:c1:62:05:b4:d8:09:
                    9b:b0:cd:55:6e:c0:bc:7f:03:92:4e:26:ff:0d:70:
                    53:52:98:f5:08:63:f8:fd:39:d1:76:42:74:0e:31:
                    aa:36:01:71:2e:99:56:fa:8c:d5:a8:9b:a8:16:db:
                    b8:93:9c:a7:99:a1:2a:42:b2:06:d8:da:ef:9b:62:
                    48:dd:75:55:20:f8:e7:98:31:51:f9:ee:c3:fe:6b:
                    56:12:66:80:d6:80:4f:30:66:e0:7b:9c:32:bc:e1:
                    f7:c4:d4:24:d8:13:a6:ad:65:54:ea:90:e2:07:b3:
                    f3:48:a0:f1:0c:47:04:68:dc:b5:62:e2:07:b4:b5:
                    9a:86:6c:f6:21:89:b6:dc:5e:e6:a6:23:ba:9b:87:
                    37:a0:10:7e:91:70:d6:18:cd:72:64:1b:f6:a0:da:
                    f5:59:e8:cf:36:0c:c8:97:4f:8a:bc:8e:71:8c:12:
                    8b:44:86:e2:b6:a1:a9:28:b1:b3:7e:b7:e6:0a:e5:
                    8d:58:dd:c3:42:87:2f:cd:40:f3:b1:de:cd:70:90:
                    f2:9d:78:b4:0a:60:08:bd:b5:98:a5:2d:4a:8e:a0:
                    15:0b:dc:4a:b3:d0:9d:3e:55:d8:b8:13:72:1e:2e:
                    72:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:2D:66:67:AD:1D:19:A2:C8:1A:85:92:B3:97:E5:A5:4F:B1:F8:A3
            X509v3 Authority Key Identifier:
                keyid:85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c1:ad:dd:a7:fc:76:43:46:e5:8a:0c:a9:ff:26:68:f4:5d:99:
         43:32:32:1d:29:75:cb:c1:d1:4e:b0:5c:00:32:b0:69:31:f0:
         c2:14:61:83:a2:51:85:3e:f7:2f:8d:7a:b8:09:43:f1:92:a2:
         bd:d7:61:58:e8:63:6d:9c:1a:c3:c5:9e:73:ab:26:95:0f:92:
         87:e9:20:65:7a:04:99:be:c9:4b:68:16:c9:98:8d:ed:fc:8f:
         b4:e0:58:07:81:ef:16:ec:65:c2:ca:87:94:8b:a1:04:71:aa:
         40:ed:22:a4:9b:8f:6f:8f:5a:68:26:1b:53:a8:be:4d:c9:33:
         1a:5e:1d:1b:91:aa:ee:bc:aa:27:8d:5d:9d:b3:41:19:97:50:
         47:ab:6e:a1:e8:10:2c:c4:76:70:89:4c:96:51:52:62:4f:e4:
         86:5c:51:fb:9b:90:36:7c:ec:85:d5:be:c2:16:e3:b4:65:34:
         ce:3c:02:02:3b:a0:ce:f5:d0:26:26:c2:73:c3:18:d1:66:2a:
         9b:df:68:90:c5:c6:c5:dc:77:b0:92:74:8b:81:c4:12:2d:6c:
         3f:73:ec:b9:b9:fa:e2:8b:11:f0:14:5d:b8:3a:f2:fe:64:79:
         7d:37:98:c4:aa:c4:23:0f:ce:22:2e:2f:4a:e3:30:e4:27:c4:
         b0:81:80:11
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjlCQjQxMTAvBgNVBAUTKDg1Q0I0MDE5MEE3N0RDOUU2ODk0RDg1N0Y3M0JCN0E5
MEUwOTc0RTQwHhcNMjYwNzA4MjM0NTIxWhcNMjYwNzE1MjM0NTIxWjAYMRYwFAYD
VQQDEw02YTRlZTExMS1hZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwRmiwWE3BoKozE51ucIdBAEHIKpCBtPBYgW02AmbsM1VbsC8fwOSTib/DXBT
Upj1CGP4/TnRdkJ0DjGqNgFxLplW+ozVqJuoFtu4k5ynmaEqQrIG2Nrvm2JI3XVV
IPjnmDFR+e7D/mtWEmaA1oBPMGbge5wyvOH3xNQk2BOmrWVU6pDiB7PzSKDxDEcE
aNy1YuIHtLWahmz2IYm23F7mpiO6m4c3oBB+kXDWGM1yZBv2oNr1WejPNgzIl0+K
vI5xjBKLRIbitqGpKLGzfrfmCuWNWN3DQocvzUDzsd7NcJDynXi0CmAIvbWYpS1K
jqAVC9xKs9CdPlXYuBNyHi5y8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDMtZmet
HRmiyBqFkrOX5aVPsfijMB8GA1UdIwQYMBaAFIXLQBkKd9yeaJTYV/c7t6kOCXTk
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUJCNC9CM0U3MzA5Q0U1
MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNKNW9sTmhYOXp1M3FRNEpk
T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2hjdEFHUXAzM0o1b2xOaFg5enUzcVE0SmRPUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
OUJCNC9CM0U3MzA5Q0U1MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNK
NW9sTmhYOXp1M3FRNEpkT1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAwa3dp/x2Q0bligyp/yZo9F2ZQzIyHSl1y8HRTrBcADKwaTHwwhRhg6JRhT73
L416uAlD8ZKivddhWOhjbZwaw8Wec6smlQ+Sh+kgZXoEmb7JS2gWyZiN7fyPtOBY
B4HvFuxlwsqHlIuhBHGqQO0ipJuPb49aaCYbU6i+TckzGl4dG5Gq7ryqJ41dnbNB
GZdQR6tuoegQLMR2cIlMllFSYk/khlxR+5uQNnzshdW+whbjtGU0zjwCAjugzvXQ
JibCc8MY0WYqm99okMXGxdx3sJJ0i4HEEi1sP3Psubn64osR8BRduDry/mR5fTeY
xKrEIw/OIi4vSuMw5CfEsIGAEQ==
-----END CERTIFICATE-----
Generated at Thu Jul 9 14:47:51 2026 by rpki-client