Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft
File:                     HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json)
Hash identifier:          ubRY/UCM7KQpkV7xSdat3Vps48gyJAFyhFdNVmtvEJo=
Subject key identifier:   36:63:E4:D7:73:81:41:46:A6:8C:6F:4C:92:AB:5C:4C:65:78:7B:A6
Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB
Certificate issuer:       /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB
Certificate serial:       0ED3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft
Manifest number:          0EC5
Signing time:             Tue 14 Jul 2026 17:46:22 +0000
Manifest this update:     Tue 14 Jul 2026 17:46:21 +0000
Manifest next update:     Tue 21 Jul 2026 17:46:21 +0000
Files and hashes:         1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: KMIumtmGgeVfSDutEw5/8EcfROxgUrGqqgeihyIMM4c=)
                          2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: FPxJw4sExbccVQ2M9hVDSe9NeO0aMI9+xaKlLCWTwe8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl
                          rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 21 Jul 2026 17:46:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3795 (0xed3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB
        Validity
            Not Before: Jul 14 17:46:21 2026 GMT
            Not After : Jul 21 17:46:21 2026 GMT
        Subject: CN=6a5675ee-cc52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:dc:29:13:5e:d6:ea:89:cc:63:47:c1:37:29:
                    6a:e6:b6:5e:ae:53:a1:e2:55:9e:e2:81:ce:bb:8a:
                    1b:15:3b:d4:dc:3e:ec:16:f4:0a:41:3a:c1:90:10:
                    4e:df:0f:19:de:ee:14:eb:cb:3e:3b:54:44:a4:f7:
                    96:97:14:0e:3d:21:5c:99:0c:e9:2f:84:e2:2f:a2:
                    7d:69:62:bf:e2:37:b0:ab:fd:25:ab:be:fb:41:43:
                    07:cc:c0:47:49:e6:8d:e6:20:10:5c:cd:03:d5:47:
                    54:1a:91:8f:bb:d6:f3:83:7e:c4:ee:65:a2:36:d9:
                    2d:e6:3f:70:03:3c:fa:73:28:6a:b3:e1:30:ae:d1:
                    86:9a:93:8b:f6:75:7b:16:a2:97:a6:e9:aa:c9:72:
                    af:9c:a1:cf:b1:9f:01:86:43:a7:44:43:f7:c2:7e:
                    ec:ec:d4:4d:6a:4c:2e:b8:23:f2:b1:29:7d:c7:89:
                    a3:50:3a:64:61:9a:0c:a0:be:e9:03:bd:0e:40:8c:
                    f4:09:ca:e8:96:35:48:bf:ea:96:ab:c7:55:21:ff:
                    3c:70:1c:08:e4:ed:05:23:61:63:a9:87:c8:e5:7e:
                    33:44:a5:d1:97:cc:05:c1:5c:98:68:6f:4e:73:06:
                    5c:fe:15:ce:61:b6:75:2a:0b:3d:ed:28:27:4b:b9:
                    32:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:63:E4:D7:73:81:41:46:A6:8C:6F:4C:92:AB:5C:4C:65:78:7B:A6
            X509v3 Authority Key Identifier:
                keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:11:03:e3:21:a2:9d:e7:cd:98:7f:60:a4:3a:33:c2:a3:50:
         1e:39:62:21:ed:5b:68:ee:53:7e:94:47:f6:83:44:d5:34:04:
         ec:6b:e4:f5:b2:1a:63:9a:15:c8:0f:ee:71:01:ec:ab:65:68:
         2e:05:e7:d1:83:55:9d:c2:04:9b:b4:a2:64:b8:90:4f:2b:d5:
         47:0c:24:f3:a8:61:61:b6:2f:b6:df:62:5b:a7:da:58:19:23:
         0d:af:0f:32:f4:4d:35:b4:45:f1:85:96:4a:84:0d:4c:cc:af:
         24:d2:9a:57:47:30:aa:68:30:5f:5b:19:d3:68:30:32:76:a1:
         e5:ef:86:27:b4:3f:55:ab:b6:11:5d:60:03:ea:ad:a0:1f:11:
         8d:9d:2d:cd:10:aa:3e:bf:aa:e4:21:ce:2e:49:5f:e8:77:6e:
         9a:b4:ed:a0:2e:b8:8d:cf:15:20:73:5f:73:f8:ab:6e:7b:97:
         de:dd:68:b1:62:60:1b:c4:3a:1c:52:da:4c:fe:19:8c:06:c3:
         ae:67:16:e9:68:0e:b5:8b:60:63:42:27:c6:19:ef:2b:35:49:
         97:ca:c2:5a:35:5c:cd:da:a1:1b:17:54:57:a7:00:3a:4f:07:
         5a:d8:3b:19:cb:72:eb:22:4d:ad:cd:42:0e:f7:28:53:de:5b:
         c3:ba:94:cc
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICDtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC
Mjk4QzQyREIwHhcNMjYwNzE0MTc0NjIxWhcNMjYwNzIxMTc0NjIxWjAYMRYwFAYD
VQQDEw02YTU2NzVlZS1jYzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3dwpE17W6onMY0fBNylq5rZerlOh4lWe4oHOu4obFTvU3D7sFvQKQTrBkBBO
3w8Z3u4U68s+O1REpPeWlxQOPSFcmQzpL4TiL6J9aWK/4jewq/0lq777QUMHzMBH
SeaN5iAQXM0D1UdUGpGPu9bzg37E7mWiNtkt5j9wAzz6cyhqs+EwrtGGmpOL9nV7
FqKXpumqyXKvnKHPsZ8BhkOnREP3wn7s7NRNakwuuCPysSl9x4mjUDpkYZoMoL7p
A70OQIz0CcroljVIv+qWq8dVIf88cBwI5O0FI2FjqYfI5X4zRKXRl8wFwVyYaG9O
cwZc/hXOYbZ1Kgs97SgnS7kyBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDZj5Ndz
gUFGpoxvTJKrXExleHumMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx
QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R
dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3
clU5ZmxsM05WZUN5bU1RdHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAchED4yGinefNmH9gpDozwqNQHjliIe1baO5TfpRH9oNE1TQE7Gvk9bIaY5oV
yA/ucQHsq2VoLgXn0YNVncIEm7SiZLiQTyvVRwwk86hhYbYvtt9iW6faWBkjDa8P
MvRNNbRF8YWWSoQNTMyvJNKaV0cwqmgwX1sZ02gwMnah5e+GJ7Q/Vau2EV1gA+qt
oB8RjZ0tzRCqPr+q5CHOLklf6HdumrTtoC64jc8VIHNfc/irbnuX3t1osWJgG8Q6
HFLaTP4ZjAbDrmcW6WgOtYtgY0InxhnvKzVJl8rCWjVczdqhGxdUV6cAOk8HWtg7
Gcty6yJNrc1CDvcoU95bw7qUzA==
-----END CERTIFICATE-----
Generated at Wed Jul 15 09:12:19 2026 by rpki-client