Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft
File:                     4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json)
Hash identifier:          4GQg3qoOuCWuAuHZBSkXf0xAXPUzI2XABHv+Kq3YppA=
Subject key identifier:   27:11:8E:39:A3:35:40:33:9B:D7:26:15:8B:15:9F:42:FA:9A:CB:DF
Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA
Certificate issuer:       /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA
Certificate serial:       0295
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft
Manifest number:          0268
Signing time:             Fri 17 Jul 2026 02:59:57 +0000
Manifest this update:     Fri 17 Jul 2026 02:59:56 +0000
Manifest next update:     Fri 24 Jul 2026 02:59:56 +0000
Files and hashes:         1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: orKvGYPz9Fw+cQ9I0oli4ysoicpFwDkvpmXIrQ5ws3U=)
                          2: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: LUHYZ/6kqurL/jOA9WsqOIbXqqpGM7KM4Mk7l+DENE0=)
                          3: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: GKQTSqIzwIY4GOth+FkYLT5SOAlB26R/4wVLOg8mq+Q=)
                          4: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RremoPLYHwOMsWIoI3OXSWs8zLNwfSA8SoWwpFXqkZA=)
                          5: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: sE0FXcv6AB6dmDFKiWcu8KQiOOpk2VVY0iuOGiUmgoI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl
                          rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 02:59:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 661 (0x295)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA
        Validity
            Not Before: Jul 17 02:59:56 2026 GMT
            Not After : Jul 24 02:59:56 2026 GMT
        Subject: CN=6a599aac-b4c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:aa:11:34:f2:51:2f:28:3c:eb:aa:c6:c2:bc:
                    05:44:f5:0c:0e:25:75:3d:60:e7:47:eb:5b:75:08:
                    70:03:c4:13:c6:eb:f3:70:f2:d7:5c:1a:42:b0:0d:
                    5c:cc:5b:fc:99:a2:c8:2f:d8:87:b7:a0:ab:76:98:
                    6c:bb:83:1e:9c:04:b3:5c:fd:e9:6b:90:06:ef:1c:
                    77:83:aa:46:d3:34:b8:1f:b2:de:4f:f0:14:28:b8:
                    cb:1c:3a:18:12:2a:84:7c:6a:af:29:e2:51:1c:a8:
                    3e:90:2d:d1:5d:b8:5d:c9:46:5d:d6:ab:6b:5c:f5:
                    a4:7b:4b:9a:8c:8f:b7:3b:fb:c8:82:e8:e4:ab:0d:
                    8a:df:9f:6f:77:54:73:01:cb:fb:f0:d1:5c:0a:1d:
                    00:96:64:4b:54:d7:95:70:70:38:58:c7:38:fc:89:
                    9d:23:5e:e6:4a:a2:3b:59:92:4a:38:98:e3:d9:5c:
                    4f:63:6e:df:28:5d:99:41:c7:02:2a:bc:f8:9f:c9:
                    61:01:0a:64:65:70:cc:8a:f1:65:b0:f5:b8:9c:ef:
                    47:d4:a3:30:85:6d:19:a7:70:4f:9f:98:53:93:fe:
                    64:32:a3:c0:39:91:2b:94:dc:c3:05:2a:45:f6:9b:
                    1b:a9:81:a0:e1:ec:ab:5e:03:a2:ca:bc:fa:c5:cf:
                    55:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:11:8E:39:A3:35:40:33:9B:D7:26:15:8B:15:9F:42:FA:9A:CB:DF
            X509v3 Authority Key Identifier:
                keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:6a:96:df:5e:8d:37:58:e0:27:20:db:05:c0:cb:13:33:cc:
         ef:26:18:22:58:e8:92:38:2d:5e:c8:e0:8b:c2:96:35:50:1d:
         23:51:2e:d4:7e:6d:80:be:3e:a7:69:25:93:df:5e:19:71:f7:
         6d:ac:8d:63:1f:6b:bf:83:cf:85:af:8e:41:19:db:d9:b5:24:
         b8:02:ce:ba:3e:39:27:9c:49:0f:dc:f6:1f:2a:82:f7:16:ad:
         31:ea:e0:3e:48:6a:8e:dd:bb:e4:c0:a8:fc:81:40:2e:2b:e7:
         17:ea:9b:f1:9e:cd:64:0e:3a:df:28:23:54:0e:2a:4d:a1:a2:
         7f:da:3a:46:a7:94:23:97:ce:82:f6:e1:e8:df:df:7f:80:26:
         40:2d:12:70:a5:52:65:ed:01:6a:9e:06:75:4e:f3:1d:27:f1:
         1b:7d:a1:d2:1d:fa:4f:05:dd:e8:5a:b5:e8:5b:96:b4:89:8b:
         31:61:99:1b:c8:94:7b:3a:38:3d:cf:96:01:23:ac:d0:31:2c:
         e9:0c:20:06:5c:1b:ef:16:7a:cb:11:09:e1:01:a8:d8:fb:f4:
         79:c7:2f:a8:fa:65:57:3d:74:be:7f:bc:1d:fd:46:6d:48:e1:
         4d:01:73:42:90:90:95:e9:0d:7b:06:d3:0f:3a:fe:ff:c8:41:
         f4:85:c9:c4
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF
RTI4QjVBQUEwHhcNMjYwNzE3MDI1OTU2WhcNMjYwNzI0MDI1OTU2WjAYMRYwFAYD
VQQDEw02YTU5OWFhYy1iNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0qoRNPJRLyg866rGwrwFRPUMDiV1PWDnR+tbdQhwA8QTxuvzcPLXXBpCsA1c
zFv8maLIL9iHt6Crdphsu4MenASzXP3pa5AG7xx3g6pG0zS4H7LeT/AUKLjLHDoY
EiqEfGqvKeJRHKg+kC3RXbhdyUZd1qtrXPWke0uajI+3O/vIgujkqw2K359vd1Rz
Acv78NFcCh0AlmRLVNeVcHA4WMc4/ImdI17mSqI7WZJKOJjj2VxPY27fKF2ZQccC
Krz4n8lhAQpkZXDMivFlsPW4nO9H1KMwhW0Zp3BPn5hTk/5kMqPAOZErlNzDBSpF
9psbqYGg4eyrXgOiyrz6xc9VbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCcRjjmj
NUAzm9cmFYsVn0L6msvfMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB
NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX
cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp
Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAMGqW316NN1jgJyDbBcDLEzPM7yYYIljokjgtXsjgi8KWNVAdI1Eu1H5tgL4+
p2klk99eGXH3bayNYx9rv4PPha+OQRnb2bUkuALOuj45J5xJD9z2HyqC9xatMerg
Pkhqjt275MCo/IFALivnF+qb8Z7NZA463ygjVA4qTaGif9o6RqeUI5fOgvbh6N/f
f4AmQC0ScKVSZe0Bap4GdU7zHSfxG32h0h36TwXd6Fq16FuWtImLMWGZG8iUezo4
Pc+WASOs0DEs6QwgBlwb7xZ6yxEJ4QGo2Pv0eccvqPplVz10vn+8Hf1GbUjhTQFz
QpCQlekNewbTDzr+/8hB9IXJxA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 09:26:27 2026 by rpki-client