Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft
File:                     WATZMgJnrePvrVaVURWF9sMl5wQ.mft (raw, json)
Hash identifier:          5fkZtUdkDZlYdmgnsD6XeMqdik+pxFon6MUTNYcFi74=
Subject key identifier:   60:41:47:58:E9:D4:77:40:F8:3A:5A:82:F2:73:E0:64:9E:8A:BB:14
Authority key identifier: 58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04
Certificate issuer:       /CN=A91811D8/serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704
Certificate serial:       57
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft
Manifest number:          55
Signing time:             Fri 17 Jul 2026 09:33:08 +0000
Manifest this update:     Fri 17 Jul 2026 09:33:08 +0000
Manifest next update:     Fri 24 Jul 2026 09:33:08 +0000
Files and hashes:         1: WATZMgJnrePvrVaVURWF9sMl5wQ.crl (hash: eECc6l2Uptxl4Q1rso+WUEkI1DylUu9XMyroskWTUiQ=)
                          2: 35672430030A11F19BB01507153D8C67.roa (hash: ZqkwJDczIP3SqWXgDmi1JIlpUn8khhS031ocDNHD7iI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl
                          rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 09:33:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 87 (0x57)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91811D8, serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704
        Validity
            Not Before: Jul 17 09:33:08 2026 GMT
            Not After : Jul 24 09:33:08 2026 GMT
        Subject: CN=6a59f6d4-5eeb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:27:9e:16:e5:32:c1:4f:5a:d7:b9:05:e2:20:
                    6c:2e:91:b1:35:b3:bd:b8:9b:3b:e6:bc:58:1c:94:
                    f3:d3:b7:65:68:62:60:35:1e:b1:0a:56:aa:66:ae:
                    b2:99:2d:01:18:16:f3:1c:68:13:95:1c:2b:af:52:
                    72:2c:58:83:2e:47:6c:76:ce:2c:a7:1f:5d:59:b7:
                    31:2b:ed:ef:0d:aa:8e:07:38:52:e4:f9:7f:71:38:
                    69:51:1c:ed:7f:5a:be:0d:9d:0d:47:fb:71:c0:df:
                    8d:61:31:89:19:f2:32:45:c8:7e:da:87:51:e2:aa:
                    8e:67:5c:52:08:65:21:32:70:75:fe:75:5c:1e:94:
                    aa:42:ed:a5:9e:dd:90:64:59:f7:0f:72:b2:d0:98:
                    c1:32:63:14:b4:39:ff:d9:89:e9:cd:c5:87:4f:0a:
                    e2:af:5e:44:b2:ca:91:d8:81:0b:f1:3d:f6:88:c1:
                    36:50:7c:00:62:bf:ac:19:47:5c:b8:2a:46:77:ac:
                    91:00:7a:b6:7d:ee:4c:84:59:0d:5a:bb:3d:35:c4:
                    ac:1a:ba:44:20:d2:aa:5c:c9:b1:f3:0d:71:65:99:
                    c3:c1:ca:c1:3a:fe:bd:45:27:b2:19:d8:b0:5b:df:
                    21:04:16:a1:45:c7:cd:7a:c9:f6:ef:11:2c:76:76:
                    8b:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:41:47:58:E9:D4:77:40:F8:3A:5A:82:F2:73:E0:64:9E:8A:BB:14
            X509v3 Authority Key Identifier:
                keyid:58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:22:23:9f:a7:05:83:a3:34:c3:39:43:51:6b:11:6d:a2:99:
         4e:34:a6:2e:f5:2d:f6:10:89:e8:ba:44:72:4e:40:99:46:59:
         36:90:b2:88:b0:a5:74:0e:dd:c1:41:c9:2b:2c:00:13:2b:9a:
         ce:76:3b:39:4c:e7:bd:a2:a8:48:c0:1d:05:4f:41:b4:6d:3b:
         aa:b4:ed:f6:96:c6:76:4f:88:9f:bb:d1:cc:73:db:21:27:fe:
         03:61:92:9a:09:e7:d3:50:fb:f5:88:3b:0f:51:3a:68:b1:1a:
         44:4d:9e:64:5b:37:31:d1:bc:3b:39:81:f5:ad:db:e2:60:9e:
         45:81:6a:98:c8:37:23:d2:57:af:f2:dc:e4:26:a2:ee:b3:a4:
         72:64:a4:aa:7b:7b:64:9f:a2:0b:63:5a:ea:fd:70:6b:6f:41:
         62:a2:cf:6a:d4:fb:2f:b0:3d:1d:d0:77:c7:66:85:03:6c:4a:
         09:4c:4c:32:4a:48:06:a1:72:53:33:49:c6:2b:e7:e4:63:0d:
         77:90:03:a2:1f:ad:34:b8:aa:5e:a9:02:2d:76:80:84:27:4c:
         d9:2f:ce:38:7a:79:d8:ea:f0:97:0e:aa:90:da:b4:87:d6:d5:
         57:9a:eb:df:73:81:82:01:5f:2a:32:24:7e:7f:be:61:42:5a:
         73:15:ad:a4
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4
MTFEODExMC8GA1UEBRMoNTgwNEQ5MzIwMjY3QURFM0VGQUQ1Njk1NTExNTg1RjZD
MzI1RTcwNDAeFw0yNjA3MTcwOTMzMDhaFw0yNjA3MjQwOTMzMDhaMBgxFjAUBgNV
BAMTDTZhNTlmNmQ0LTVlZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC5J54W5TLBT1rXuQXiIGwukbE1s724mzvmvFgclPPTt2VoYmA1HrEKVqpmrrKZ
LQEYFvMcaBOVHCuvUnIsWIMuR2x2ziynH11ZtzEr7e8Nqo4HOFLk+X9xOGlRHO1/
Wr4NnQ1H+3HA341hMYkZ8jJFyH7ah1Hiqo5nXFIIZSEycHX+dVwelKpC7aWe3ZBk
WfcPcrLQmMEyYxS0Of/ZienNxYdPCuKvXkSyypHYgQvxPfaIwTZQfABiv6wZR1y4
KkZ3rJEAerZ97kyEWQ1auz01xKwaukQg0qpcybHzDXFlmcPBysE6/r1FJ7IZ2LBb
3yEEFqFFx816yfbvESx2dothAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUYEFHWOnU
d0D4OlqC8nPgZJ6KuxQwHwYDVR0jBBgwFoAUWATZMgJnrePvrVaVURWF9sMl5wQw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxMUQ4L0RDRTdCREUyMDMw
OTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQdnJWYVZVUldGOXNNbDV3
US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvV0FUWk1nSm5yZVB2clZhVlVSV0Y5c01sNXdRLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx
MUQ4L0RDRTdCREUyMDMwOTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQ
dnJWYVZVUldGOXNNbDV3US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQBOIiOfpwWDozTDOUNRaxFtoplONKYu9S32EInoukRyTkCZRlk2kLKIsKV0Dt3B
QckrLAATK5rOdjs5TOe9oqhIwB0FT0G0bTuqtO32lsZ2T4ifu9HMc9shJ/4DYZKa
CefTUPv1iDsPUTposRpETZ5kWzcx0bw7OYH1rdviYJ5FgWqYyDcj0lev8tzkJqLu
s6RyZKSqe3tkn6ILY1rq/XBrb0Fios9q1PsvsD0d0HfHZoUDbEoJTEwySkgGoXJT
M0nGK+fkYw13kAOiH600uKpeqQItdoCEJ0zZL844ennY6vCXDqqQ2rSH1tVXmuvf
c4GCAV8qMiR+f75hQlpzFa2k
-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:53 2026 by rpki-client