Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft
File:                     9TkpGRnN4USwNO8oiwpjR4PoLH8.mft (raw, json)
Hash identifier:          x2gt+xT3xZ0zs4gqIgjlPM/ut2p6Hie6Q46WU+nCQz4=
Subject key identifier:   CD:8A:09:F8:D7:3B:B1:F8:BB:11:D6:A7:4E:0A:B2:51:77:52:0B:29
Authority key identifier: F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F
Certificate issuer:       /CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F
Certificate serial:       0547
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft
Manifest number:          0503
Signing time:             Sat 11 Jul 2026 00:23:18 +0000
Manifest this update:     Sat 11 Jul 2026 00:23:18 +0000
Manifest next update:     Sat 18 Jul 2026 00:23:18 +0000
Files and hashes:         1: 9TkpGRnN4USwNO8oiwpjR4PoLH8.crl (hash: +hdIcI7lYMjKPjE1UF+CAiyWVqDRg40VsN01utzq5xk=)
                          2: 976C4E84F72711EFB800B84BC4F9AE02.roa (hash: 0t2XzLmuMEGFlYc47wOulhyO7Ix5VKiALYfApcVZOOM=)
                          3: 06B47656E38A11EFA4DDBC1EC4F9AE02.roa (hash: 1ZjplIT3cgd+cosCI1JnL6/1YdmyRniKzJuka+Wx680=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl
                          rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 18 Jul 2026 00:23:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1351 (0x547)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916C61B, serialNumber=F539291919CDE144B034EF288B0A634783E82C7F
        Validity
            Not Before: Jul 11 00:23:18 2026 GMT
            Not After : Jul 18 00:23:18 2026 GMT
        Subject: CN=6a518cf6-1091
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:a4:2e:7e:7b:7d:b3:7b:6d:e1:54:52:a5:11:
                    8f:6b:2a:b8:9a:bd:76:9c:eb:08:0b:34:eb:94:0a:
                    73:ee:d7:54:e3:62:27:c0:74:af:81:d0:00:3b:40:
                    a8:d1:de:4a:47:08:1a:61:34:08:3e:68:f4:9e:8a:
                    44:a8:50:40:df:d8:8a:22:43:5a:f0:6d:2f:c5:cc:
                    86:21:08:9d:61:17:85:1c:10:13:a0:15:d0:32:ec:
                    f1:5b:84:0f:50:a1:05:0a:3c:16:91:ce:90:41:27:
                    13:77:2f:79:36:5a:3a:32:74:fe:0f:c5:d3:b0:8c:
                    10:1c:d4:a8:8a:81:f0:66:78:9e:9b:23:3b:c9:70:
                    f1:aa:28:d1:ec:47:35:27:d7:71:c6:24:8f:7c:7a:
                    ba:5d:4d:eb:98:71:ac:d1:37:4a:d2:3a:f5:98:6b:
                    f7:3b:85:63:7a:4b:a8:52:b0:77:aa:b6:15:8e:63:
                    14:36:c4:72:cb:c0:9a:10:0b:ba:a5:d5:97:ce:e3:
                    c1:04:84:af:df:03:9c:c2:a4:c3:42:7a:0d:fc:3a:
                    72:4a:7f:54:23:90:f7:66:26:b1:5b:f5:85:72:09:
                    8f:79:41:97:dd:b1:28:62:a8:ba:85:08:f4:a4:80:
                    f2:8a:2f:cb:a9:a3:dc:29:6c:f6:7a:6c:83:a5:ba:
                    d2:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:8A:09:F8:D7:3B:B1:F8:BB:11:D6:A7:4E:0A:B2:51:77:52:0B:29
            X509v3 Authority Key Identifier:
                keyid:F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:33:b0:19:99:a4:f3:4d:39:38:42:36:57:6d:37:cf:8a:73:
         e5:01:67:68:c3:ad:1b:0e:c5:3e:0d:75:66:11:4d:6f:35:4e:
         5f:0a:08:7c:80:f3:5b:a1:9f:a9:21:49:32:8c:8e:90:c8:fc:
         a6:14:72:8b:4b:5e:f6:aa:c0:be:d2:0a:72:3b:84:03:2d:71:
         d7:5f:45:2a:8c:d8:a6:48:28:db:eb:9d:5b:50:e5:ff:17:eb:
         2d:ba:cc:3c:15:73:36:35:38:8b:87:7f:d7:db:c7:d2:69:e1:
         cc:76:0b:c7:df:16:10:bc:7d:7b:c3:1d:00:f6:7d:73:28:82:
         ba:a2:5f:1a:f2:7a:2b:25:df:ee:2d:8a:43:f2:f5:af:52:5e:
         d3:b9:25:25:d9:46:4b:6a:fe:65:fe:ca:0a:b5:5a:61:62:7a:
         d1:8e:4d:8c:60:1b:df:72:e3:ad:45:d5:a6:34:71:78:cd:5c:
         8c:39:1f:6d:c6:13:a3:95:e9:01:f6:35:5d:bd:ce:bd:5e:d8:
         85:0c:6e:00:eb:a0:7c:81:5c:35:c6:6a:30:df:89:ae:b1:b6:
         fe:37:f8:6e:3b:b6:67:b6:88:02:7c:b2:c3:78:32:34:1a:5c:
         21:b0:fb:3d:7d:6e:53:2f:eb:2e:ba:ef:73:f7:bf:77:d5:5c:
         95:21:fd:ce
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkM2MUIxMTAvBgNVBAUTKEY1MzkyOTE5MTlDREUxNDRCMDM0RUYyODhCMEE2MzQ3
ODNFODJDN0YwHhcNMjYwNzExMDAyMzE4WhcNMjYwNzE4MDAyMzE4WjAYMRYwFAYD
VQQDEw02YTUxOGNmNi0xMDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArqQufnt9s3tt4VRSpRGPayq4mr12nOsICzTrlApz7tdU42InwHSvgdAAO0Co
0d5KRwgaYTQIPmj0nopEqFBA39iKIkNa8G0vxcyGIQidYReFHBAToBXQMuzxW4QP
UKEFCjwWkc6QQScTdy95Nlo6MnT+D8XTsIwQHNSoioHwZniemyM7yXDxqijR7Ec1
J9dxxiSPfHq6XU3rmHGs0TdK0jr1mGv3O4VjekuoUrB3qrYVjmMUNsRyy8CaEAu6
pdWXzuPBBISv3wOcwqTDQnoN/DpySn9UI5D3ZiaxW/WFcgmPeUGX3bEoYqi6hQj0
pIDyii/LqaPcKWz2emyDpbrS5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM2KCfjX
O7H4uxHWp04KslF3UgspMB8GA1UdIwQYMBaAFPU5KRkZzeFEsDTvKIsKY0eD6Cx/
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzYxQi81MUVGRkEzMDgy
NjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRVU3dOTzhvaXdwalI0UG9M
SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzlUa3BHUm5ONFVTd05POG9pd3BqUjRQb0xIOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
QzYxQi81MUVGRkEzMDgyNjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRV
U3dOTzhvaXdwalI0UG9MSDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEALDOwGZmk8005OEI2V203z4pz5QFnaMOtGw7FPg11ZhFNbzVOXwoIfIDzW6Gf
qSFJMoyOkMj8phRyi0te9qrAvtIKcjuEAy1x119FKozYpkgo2+udW1Dl/xfrLbrM
PBVzNjU4i4d/19vH0mnhzHYLx98WELx9e8MdAPZ9cyiCuqJfGvJ6KyXf7i2KQ/L1
r1Je07klJdlGS2r+Zf7KCrVaYWJ60Y5NjGAb33LjrUXVpjRxeM1cjDkfbcYTo5Xp
AfY1Xb3OvV7YhQxuAOugfIFcNcZqMN+JrrG2/jf4bju2Z7aIAnyyw3gyNBpcIbD7
PX1uUy/rLrrvc/e/d9VclSH9zg==
-----END CERTIFICATE-----
Generated at Sat Jul 11 12:06:02 2026 by rpki-client