Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft
File:                     3FejmXtffOj7ybTZiz1F1jMHcRg.mft (raw, json)
Hash identifier:          ZdZh6sDOL/X9kaKIVPzDr5eehTu7rBEH2qxztFrDY8c=
Subject key identifier:   EC:33:63:09:95:AB:67:1B:59:49:94:C9:B4:9C:B6:F6:54:53:12:3E
Authority key identifier: DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18
Certificate issuer:       /CN=A917CABB/serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118
Certificate serial:       0CF2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft
Manifest number:          0CE8
Signing time:             Thu 16 Jul 2026 18:33:05 +0000
Manifest this update:     Thu 16 Jul 2026 18:33:05 +0000
Manifest next update:     Thu 23 Jul 2026 18:33:05 +0000
Files and hashes:         1: 3FejmXtffOj7ybTZiz1F1jMHcRg.crl (hash: kGY0rasSABT1hIHukOd17ht5Jy6y5ZVid11zJpguUt8=)
                          2: 17BA5658D1FA11EDA0A31C2FC4F9AE02.roa (hash: STCKrvlRsuBwgCCitF/41y1bZsQULp/xbRwSRQTsp2k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl
                          rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 18:33:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3314 (0xcf2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917CABB, serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118
        Validity
            Not Before: Jul 16 18:33:05 2026 GMT
            Not After : Jul 23 18:33:05 2026 GMT
        Subject: CN=6a5923e1-1685
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:ee:d9:1f:c0:8a:c7:2f:8f:20:44:5f:cf:d8:
                    20:f1:bb:83:da:6e:26:34:6a:cb:10:de:7a:4a:9e:
                    60:bd:49:0c:68:98:42:aa:c2:2b:27:a1:e5:aa:cb:
                    b5:b3:cf:43:29:7c:81:3f:3b:61:0e:33:42:42:b2:
                    06:e5:0f:72:47:ee:b4:41:9b:a3:50:b8:6d:6b:03:
                    08:42:a4:89:38:67:41:24:3e:ec:34:9a:1b:49:43:
                    f4:00:26:ec:b9:e6:ac:53:e8:7e:7f:0a:83:c2:dd:
                    e3:62:a3:c3:c6:5e:f7:27:23:3a:2f:0f:35:ea:f6:
                    9b:2c:ea:b6:e1:93:10:21:1b:51:c0:32:7f:ed:cf:
                    f1:fb:c9:45:96:01:7e:84:99:6e:2b:92:85:bd:f0:
                    4e:c6:bc:b2:03:be:db:5a:de:e2:9d:c7:0e:b6:34:
                    c3:58:01:60:91:b9:3b:39:01:73:bf:15:b8:58:80:
                    b7:13:b2:fd:ac:5a:1f:1d:72:e4:1c:b2:99:bb:7b:
                    b2:45:22:ff:75:92:e6:54:6c:1d:7d:73:5a:1d:55:
                    e4:df:71:b1:21:91:2c:e6:c7:a4:84:32:67:67:11:
                    39:c8:1a:8d:f6:b0:f2:be:1b:e0:72:10:95:d2:c7:
                    6c:2f:a9:fe:39:2c:26:f8:aa:ea:97:d2:f0:e7:da:
                    f0:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:33:63:09:95:AB:67:1B:59:49:94:C9:B4:9C:B6:F6:54:53:12:3E
            X509v3 Authority Key Identifier:
                keyid:DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:16:83:6b:63:8e:1b:df:fd:8c:1e:3e:ad:38:3f:3d:1d:09:
         d4:83:11:fb:2f:75:dc:53:9b:09:ef:5d:1f:ee:fd:a6:88:b4:
         f6:68:15:f3:41:e9:d5:75:13:01:cb:e5:b9:06:3c:5a:29:89:
         88:ce:74:ef:db:05:56:08:fa:d0:ed:27:4d:42:0a:c4:8e:d3:
         c1:db:10:76:ff:d8:ed:49:f2:68:19:ff:02:d3:53:aa:d8:1b:
         3d:c2:6d:32:34:63:ba:e3:c4:b5:3d:7c:1f:63:13:20:69:3c:
         a5:09:05:58:3a:ee:23:18:ba:86:3a:0b:8d:3f:f0:db:dc:aa:
         6a:43:d6:57:88:9b:60:04:3a:44:14:b0:f5:bc:76:ee:8b:bf:
         b1:ab:7a:1f:90:8f:e2:d9:24:3d:6c:d1:00:9e:54:84:a7:01:
         bc:bb:41:36:20:7c:93:37:de:fb:38:fc:03:c6:85:82:95:d0:
         c0:54:d1:4b:55:fc:e9:ba:f7:1f:f0:d4:7b:94:be:14:0c:41:
         e2:e3:33:28:5a:16:3c:b8:02:47:a8:1e:d9:d9:f8:fa:0d:39:
         3c:80:0d:75:61:25:fc:92:92:09:09:49:1a:fd:91:db:97:82:
         51:df:a4:c9:a8:5a:df:8d:7f:d4:6b:1c:45:58:6a:f2:84:63:
         01:56:c1:1b
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0NBQkIxMTAvBgNVBAUTKERDNTdBMzk5N0I1RjdDRThGQkM5QjREOThCM0Q0NUQ2
MzMwNzcxMTgwHhcNMjYwNzE2MTgzMzA1WhcNMjYwNzIzMTgzMzA1WjAYMRYwFAYD
VQQDEw02YTU5MjNlMS0xNjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAou7ZH8CKxy+PIERfz9gg8buD2m4mNGrLEN56Sp5gvUkMaJhCqsIrJ6Hlqsu1
s89DKXyBPzthDjNCQrIG5Q9yR+60QZujULhtawMIQqSJOGdBJD7sNJobSUP0ACbs
ueasU+h+fwqDwt3jYqPDxl73JyM6Lw816vabLOq24ZMQIRtRwDJ/7c/x+8lFlgF+
hJluK5KFvfBOxryyA77bWt7inccOtjTDWAFgkbk7OQFzvxW4WIC3E7L9rFofHXLk
HLKZu3uyRSL/dZLmVGwdfXNaHVXk33GxIZEs5sekhDJnZxE5yBqN9rDyvhvgchCV
0sdsL6n+OSwm+Krql9Lw59rwCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOwzYwmV
q2cbWUmUybSctvZUUxI+MB8GA1UdIwQYMBaAFNxXo5l7X3zo+8m02Ys9RdYzB3EY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0FCQi8wNzY3NUYxRTBG
NjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZPajd5YlRaaXoxRjFqTUhj
UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzNGZWptWHRmZk9qN3liVFppejFGMWpNSGNSZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
Q0FCQi8wNzY3NUYxRTBGNjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZP
ajd5YlRaaXoxRjFqTUhjUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAOBaDa2OOG9/9jB4+rTg/PR0J1IMR+y913FObCe9dH+79poi09mgV80Hp1XUT
AcvluQY8WimJiM5079sFVgj60O0nTUIKxI7TwdsQdv/Y7UnyaBn/AtNTqtgbPcJt
MjRjuuPEtT18H2MTIGk8pQkFWDruIxi6hjoLjT/w29yqakPWV4ibYAQ6RBSw9bx2
7ou/sat6H5CP4tkkPWzRAJ5UhKcBvLtBNiB8kzfe+zj8A8aFgpXQwFTRS1X86br3
H/DUe5S+FAxB4uMzKFoWPLgCR6ge2dn4+g05PIANdWEl/JKSCQlJGv2R25eCUd+k
yaha341/1GscRVhq8oRjAVbBGw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:13:37 2026 by rpki-client