Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
File:                     pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json)
Hash identifier:          Tlz22FqXoizaClQ5HoEVDSnemlnklvxy1MUjhUig9ss=
Subject key identifier:   25:54:74:3A:14:2F:62:25:50:C1:F6:3D:BB:BA:70:EC:0D:28:4E:FF
Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA
Certificate issuer:       /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
Certificate serial:       020F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
Manifest number:          0209
Signing time:             Mon 06 Jul 2026 19:22:30 +0000
Manifest this update:     Mon 06 Jul 2026 19:22:30 +0000
Manifest next update:     Mon 13 Jul 2026 19:22:30 +0000
Files and hashes:         1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: zQql0u9QEN/ab0Sh0o92upk0tpjDxzIFZLxfbUrQZLY=)
                          2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: IZDaa3RvwLLyBno3E88edLLqf6N/YltnYG0ukbjvIk4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl
                          rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 19:22:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 527 (0x20f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
        Validity
            Not Before: Jul  6 19:22:30 2026 GMT
            Not After : Jul 13 19:22:30 2026 GMT
        Subject: CN=6a4c0076-0492
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:f3:23:79:7c:4c:bc:e9:fd:cd:d3:a1:e6:3b:
                    63:7b:25:b4:00:6a:e4:39:f6:67:55:82:08:ff:a6:
                    c6:e8:22:4a:95:02:ae:88:57:bf:00:25:0c:d7:b1:
                    c7:69:cd:f0:b1:b7:fe:48:45:63:b4:8a:7c:d2:5c:
                    87:0e:e0:69:1c:b8:1d:a1:bd:48:d3:e6:de:93:a7:
                    38:15:98:8a:23:5e:17:70:e9:48:41:62:74:42:2d:
                    63:2e:05:f0:92:a7:cc:37:b5:dc:9b:6e:6a:bb:08:
                    4a:83:5d:cb:6d:21:42:f4:37:3c:da:63:2d:c5:9f:
                    49:3a:1d:ca:e4:9f:e7:d9:7f:89:5a:75:7d:b2:c8:
                    4d:f3:ec:11:d2:98:51:1a:1c:e3:81:bb:61:50:84:
                    d5:c3:61:63:a4:d2:9c:a2:6a:59:0a:a5:9e:52:3f:
                    65:ca:c3:b1:42:09:b6:ca:ad:42:b1:3f:32:a9:f2:
                    ec:73:e7:e3:79:ff:45:61:7c:75:ba:ff:a2:e1:5d:
                    e5:41:7d:cb:cf:68:2f:a5:16:48:30:56:45:84:e1:
                    24:02:19:1d:67:7b:23:29:c9:f1:63:14:81:76:e9:
                    f4:e8:d3:f5:4b:fd:30:cc:62:7e:6e:57:c5:16:5e:
                    3b:8a:19:c5:1f:8b:9d:b4:0a:1b:0e:c0:fa:fe:10:
                    5e:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:54:74:3A:14:2F:62:25:50:C1:F6:3D:BB:BA:70:EC:0D:28:4E:FF
            X509v3 Authority Key Identifier:
                keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:f6:e4:ce:31:5f:48:b2:59:f3:6b:5a:cc:10:3e:fa:3e:4f:
         99:84:7f:17:8c:9e:9c:43:13:00:29:43:59:ed:f6:f9:2b:31:
         f1:e0:d2:4f:53:65:f6:68:2f:ef:c2:1f:9e:b6:5a:02:ec:f2:
         12:cc:d3:ee:1e:40:4d:94:4e:99:da:68:81:0d:7a:9f:e6:4e:
         14:bc:6c:8d:77:c6:35:04:5e:9c:a7:60:66:52:81:a7:82:d9:
         55:a7:71:f0:62:43:5f:e1:f5:b9:64:94:ef:c0:d3:09:6b:27:
         8a:1a:d9:21:38:4a:5c:29:c3:69:84:4f:21:3c:ef:af:f6:dd:
         fa:6c:a3:de:e0:f8:1b:ee:48:01:21:85:b5:5f:84:57:89:d8:
         69:4d:81:29:79:87:2c:9a:13:0c:0f:da:56:5c:63:6d:cd:dd:
         0e:23:55:82:39:bc:c3:62:29:7a:07:d9:7b:42:6f:50:9c:af:
         68:f2:7b:24:66:b4:2a:8e:72:32:40:fb:0c:45:47:06:16:54:
         ac:a7:cb:08:c2:ce:af:f6:47:73:21:89:2f:4f:0f:04:35:91:
         d7:cf:8f:73:7d:8e:6c:e3:f6:c9:01:b5:20:9b:3e:91:d9:30:
         52:c9:6e:bf:7b:19:7c:62:c3:5c:d3:af:74:b3:80:61:4e:79:
         63:f6:86:65
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG
NTE4NjY1Q0EwHhcNMjYwNzA2MTkyMjMwWhcNMjYwNzEzMTkyMjMwWjAYMRYwFAYD
VQQDEw02YTRjMDA3Ni0wNDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAjfMjeXxMvOn9zdOh5jtjeyW0AGrkOfZnVYII/6bG6CJKlQKuiFe/ACUM17HH
ac3wsbf+SEVjtIp80lyHDuBpHLgdob1I0+bek6c4FZiKI14XcOlIQWJ0Qi1jLgXw
kqfMN7Xcm25quwhKg13LbSFC9Dc82mMtxZ9JOh3K5J/n2X+JWnV9sshN8+wR0phR
GhzjgbthUITVw2FjpNKcompZCqWeUj9lysOxQgm2yq1CsT8yqfLsc+fjef9FYXx1
uv+i4V3lQX3Lz2gvpRZIMFZFhOEkAhkdZ3sjKcnxYxSBdun06NP1S/0wzGJ+blfF
Fl47ihnFH4udtAobDsD6/hBeOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCVUdDoU
L2IlUMH2Pbu6cOwNKE7/MB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4
MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da
Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU
QTZtd09ZQmhfbzcxR0daY28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAT/bkzjFfSLJZ82tazBA++j5PmYR/F4yenEMTAClDWe32+Ssx8eDST1Nl9mgv
78IfnrZaAuzyEszT7h5ATZROmdpogQ16n+ZOFLxsjXfGNQRenKdgZlKBp4LZVadx
8GJDX+H1uWSU78DTCWsnihrZIThKXCnDaYRPITzvr/bd+myj3uD4G+5IASGFtV+E
V4nYaU2BKXmHLJoTDA/aVlxjbc3dDiNVgjm8w2IpegfZe0JvUJyvaPJ7JGa0Ko5y
MkD7DEVHBhZUrKfLCMLOr/ZHcyGJL08PBDWR18+Pc32ObOP2yQG1IJs+kdkwUslu
v3sZfGLDXNOvdLOAYU55Y/aGZQ==
-----END CERTIFICATE-----
Generated at Tue Jul 7 01:19:07 2026 by rpki-client