Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft
File:                     CDWHSXi6MJ7X2kZz53OdkyLyYps.mft (raw, json)
Hash identifier:          ltp5qTU6uq5KXXJoM6C3obDAea9UbYX6fNtkNqsIKII=
Subject key identifier:   BE:7C:58:DB:DC:50:7D:46:E6:AB:2B:31:AE:5F:E1:BE:8B:CB:19:35
Authority key identifier: 08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B
Certificate issuer:       /CN=A917E00F/serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B
Certificate serial:       011F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft
Manifest number:          011B
Signing time:             Thu 16 Jul 2026 23:15:20 +0000
Manifest this update:     Thu 16 Jul 2026 23:15:20 +0000
Manifest next update:     Thu 23 Jul 2026 23:15:20 +0000
Files and hashes:         1: CDWHSXi6MJ7X2kZz53OdkyLyYps.crl (hash: FrwgDM78xEyLQe+Bd0AlPcSIDaKHV3n6FY9JAxa30iQ=)
                          2: 2DA549EAE23E11EFB267422EC4F9AE02.roa (hash: Mr9U/6ZYvZu9qU4Dm1rrpvinPfnT7chjtNPRoJwGxK8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl
                          rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:15:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 287 (0x11f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E00F, serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B
        Validity
            Not Before: Jul 16 23:15:20 2026 GMT
            Not After : Jul 23 23:15:20 2026 GMT
        Subject: CN=6a596608-bb58
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:c6:10:4e:38:64:11:af:a5:16:87:55:e2:03:
                    23:58:7c:a9:3c:34:b9:a2:e4:ee:a1:fa:ef:c4:24:
                    ad:a4:38:0e:f9:9c:16:64:69:7b:49:d6:b2:c4:18:
                    11:44:13:d1:25:6f:07:7c:9c:7b:91:87:05:26:45:
                    73:38:5e:a7:97:d8:2b:29:14:fe:d7:71:7f:70:ad:
                    6f:0b:23:46:86:52:c1:30:c3:e6:5e:09:6b:1e:f3:
                    d0:cd:be:65:31:c1:37:a6:47:93:ef:8e:12:d1:15:
                    6e:d4:55:90:bc:89:57:c0:53:2b:ba:8e:86:26:57:
                    e2:ac:df:26:c3:f4:d7:47:e1:f5:77:db:39:08:d2:
                    ab:bb:ff:e5:16:ed:70:cd:62:27:b8:9a:8e:77:5d:
                    7e:86:35:2d:76:f7:d3:0f:08:ac:3b:e4:31:a8:da:
                    e6:04:9e:65:53:e0:45:22:dd:6a:aa:8c:11:e8:3f:
                    c5:ac:d8:fc:f3:5b:eb:2c:f1:7a:bf:eb:18:8f:cb:
                    b7:be:f1:7a:8a:e2:bb:09:da:2a:35:b1:46:c0:78:
                    1a:4e:aa:d1:e4:36:e3:9a:38:f2:3b:35:ef:ea:d0:
                    d9:26:8b:8d:ad:4b:8f:2f:fc:e4:d3:d5:5f:c8:10:
                    c1:fa:73:10:ca:cf:d2:fa:f4:ce:72:81:2b:6d:35:
                    db:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BE:7C:58:DB:DC:50:7D:46:E6:AB:2B:31:AE:5F:E1:BE:8B:CB:19:35
            X509v3 Authority Key Identifier:
                keyid:08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:cd:04:82:c4:6f:ab:16:ab:9d:c9:d2:f5:0f:2c:b8:07:8c:
         44:3a:1d:57:88:8c:d9:d3:08:a6:e6:64:77:54:d6:90:b2:90:
         0c:ab:6a:a8:13:e5:81:5d:ae:27:b8:75:0e:55:75:4f:58:d9:
         0f:3f:1a:72:f3:78:4e:1b:74:99:6c:9f:74:86:4f:83:e0:d0:
         a5:7f:83:66:7a:36:2b:85:e4:37:9d:d8:06:fe:c3:8a:c2:c5:
         9a:9d:be:79:d3:03:e4:8a:21:e5:09:7c:4c:2f:82:05:8a:ad:
         b1:86:d5:90:fb:d7:6f:9a:1d:75:22:64:a0:8f:05:af:d5:3b:
         44:8c:ae:af:55:d9:9b:04:8a:c5:62:00:77:da:ca:57:4c:4f:
         0c:22:8e:b9:5d:6f:c9:ff:f4:0d:76:2e:40:13:fc:2d:bc:81:
         bc:25:f6:5b:c6:58:be:bc:4e:04:7b:65:f4:cc:58:b7:8f:9f:
         11:e8:f9:ca:7c:df:0c:6e:2f:6e:b0:90:d8:1b:57:0c:69:60:
         18:1c:2f:91:8b:e5:22:4e:86:5d:9d:4e:fe:64:1e:ea:1b:06:
         ed:67:ca:cc:d1:66:aa:aa:13:2b:91:d1:c1:74:a8:29:ba:9f:
         05:7e:00:8a:39:fe:bd:13:0d:2a:59:6d:92:bb:1e:9b:c2:0d:
         55:37:31:c6
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0UwMEYxMTAvBgNVBAUTKDA4MzU4NzQ5NzhCQTMwOUVEN0RBNDY3M0U3NzM5RDkz
MjJGMjYyOUIwHhcNMjYwNzE2MjMxNTIwWhcNMjYwNzIzMjMxNTIwWjAYMRYwFAYD
VQQDEw02YTU5NjYwOC1iYjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtcYQTjhkEa+lFodV4gMjWHypPDS5ouTuofrvxCStpDgO+ZwWZGl7SdayxBgR
RBPRJW8HfJx7kYcFJkVzOF6nl9grKRT+13F/cK1vCyNGhlLBMMPmXglrHvPQzb5l
McE3pkeT744S0RVu1FWQvIlXwFMruo6GJlfirN8mw/TXR+H1d9s5CNKru//lFu1w
zWInuJqOd11+hjUtdvfTDwisO+QxqNrmBJ5lU+BFIt1qqowR6D/FrNj881vrLPF6
v+sYj8u3vvF6iuK7CdoqNbFGwHgaTqrR5DbjmjjyOzXv6tDZJouNrUuPL/zk09Vf
yBDB+nMQys/S+vTOcoErbTXbRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL58WNvc
UH1G5qsrMa5f4b6Lyxk1MB8GA1UdIwQYMBaAFAg1h0l4ujCe19pGc+dznZMi8mKb
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi83RDJCMURGMEQ3
RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1KN1gya1p6NTNPZGt5THlZ
cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0NEV0hTWGk2TUo3WDJrWno1M09ka3lMeVlwcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
RTAwRi83RDJCMURGMEQ3RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1K
N1gya1p6NTNPZGt5THlZcHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAeM0EgsRvqxarncnS9Q8suAeMRDodV4iM2dMIpuZkd1TWkLKQDKtqqBPlgV2u
J7h1DlV1T1jZDz8acvN4Tht0mWyfdIZPg+DQpX+DZno2K4XkN53YBv7DisLFmp2+
edMD5Ioh5Ql8TC+CBYqtsYbVkPvXb5oddSJkoI8Fr9U7RIyur1XZmwSKxWIAd9rK
V0xPDCKOuV1vyf/0DXYuQBP8LbyBvCX2W8ZYvrxOBHtl9MxYt4+fEej5ynzfDG4v
brCQ2BtXDGlgGBwvkYvlIk6GXZ1O/mQe6hsG7WfKzNFmqqoTK5HRwXSoKbqfBX4A
ijn+vRMNKlltkrsem8INVTcxxg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:26 2026 by rpki-client