Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft
File:                     vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft (raw, json)
Hash identifier:          R+hhkys2Hvco+sBZvbw+m9kMoezkOfr8b+rHKD3yRJE=
Subject key identifier:   C2:0F:B2:01:A2:31:C3:E4:CE:B6:1A:4F:AF:9D:E1:54:87:94:03:98
Authority key identifier: BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97
Certificate issuer:       /CN=A918E1C4/serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997
Certificate serial:       7B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft
Manifest number:          78
Signing time:             Fri 17 Jul 2026 09:03:34 +0000
Manifest this update:     Fri 17 Jul 2026 09:03:33 +0000
Manifest next update:     Fri 24 Jul 2026 09:03:33 +0000
Files and hashes:         1: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl (hash: FZomWguD9sikpc13pEFyNA75kUoaksUgje+1wa/CgMw=)
                          2: 722C58FACE9311F0A2C11D25C4F9AE02.roa (hash: ERXxcYaD/BipGW6AIZDMmzRHcboCoePXi+aLABZ/mKA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl
                          rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 09:03:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 123 (0x7b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918E1C4, serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997
        Validity
            Not Before: Jul 17 09:03:33 2026 GMT
            Not After : Jul 24 09:03:33 2026 GMT
        Subject: CN=6a59efe6-6666
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:31:9b:ef:3a:a0:fa:ff:31:4c:12:52:6a:3f:
                    6e:55:ff:17:db:a4:16:52:03:08:5b:91:c8:ed:61:
                    39:9f:0c:0f:cf:e2:09:c9:30:7a:81:88:1a:79:4a:
                    58:0b:9f:cf:a0:ed:81:e8:c8:14:d9:9f:fc:ce:d8:
                    ea:ee:de:be:11:8f:7f:82:b8:e8:39:08:ea:bc:95:
                    1c:80:11:12:62:40:f3:38:f5:87:3a:b7:f4:8f:5d:
                    2a:1f:01:78:32:ca:40:69:84:1b:08:3c:20:9a:1b:
                    80:14:1a:7a:6c:61:9d:f7:9e:22:c9:8b:55:b1:f5:
                    2a:2b:e8:65:61:c3:26:08:d9:8a:41:06:47:78:e2:
                    67:5e:53:33:3f:68:ee:2d:bf:9d:0d:47:ae:f1:90:
                    9b:80:8b:a3:59:c6:ee:39:47:26:ac:72:77:94:60:
                    be:78:8a:46:d8:3e:6f:a9:d4:f7:94:dd:09:58:84:
                    72:8f:83:34:6c:d6:a2:a3:cc:3d:08:a1:0c:5a:19:
                    a5:cb:e9:92:60:7d:30:d6:7a:7b:0e:25:c7:5b:a2:
                    ae:50:38:20:ac:71:5f:26:93:60:eb:84:53:b8:b3:
                    ac:55:22:45:30:eb:10:d3:a7:0b:b4:e6:e8:b6:61:
                    69:31:f2:73:44:fc:77:f0:a8:04:0c:37:49:77:7a:
                    49:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:0F:B2:01:A2:31:C3:E4:CE:B6:1A:4F:AF:9D:E1:54:87:94:03:98
            X509v3 Authority Key Identifier:
                keyid:BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:a6:58:35:b5:3c:6d:b5:b7:df:6c:b3:29:2a:e7:50:ba:90:
         38:6f:87:24:82:c4:c1:d7:9d:3a:3e:62:65:d5:62:f6:d1:60:
         fb:52:03:43:60:25:72:1c:4e:3c:e2:8e:0a:f3:39:2a:1b:ed:
         df:d4:c2:e8:f6:e5:f8:66:69:34:73:9c:fe:c4:cf:b1:ad:32:
         d3:54:dd:f9:05:a8:7d:4c:fe:52:dd:bb:8e:43:75:6a:59:e4:
         55:22:b4:f5:04:b0:dd:16:6b:17:12:6e:14:10:02:4d:e0:ff:
         02:95:44:e0:e4:3f:0c:17:2d:63:84:75:74:cf:2a:3b:30:63:
         c7:0c:d7:fe:f7:e6:0f:16:91:d4:14:6b:75:12:2d:09:31:11:
         d0:36:cc:e3:83:dd:07:3e:d9:e5:29:75:cd:2c:ff:44:a5:83:
         51:de:2c:b0:14:73:9e:dc:e9:fc:c7:65:9a:9b:bb:f5:42:7f:
         ca:39:67:a7:a1:b0:4f:91:da:23:9b:72:69:41:61:18:d0:82:
         b6:09:58:f9:96:d1:62:4c:5e:a8:16:ef:b3:29:03:fc:cd:f1:
         6e:d0:42:54:dd:e0:92:8f:ce:be:fe:6c:ff:5d:1a:2b:60:52:
         67:ed:20:0b:a3:4a:51:eb:fa:7e:81:cb:4c:79:c2:2e:c3:4d:
         94:27:7d:7d
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4
RTFDNDExMC8GA1UEBRMoQkQ4OTc4MTY1NkQ5RDE1ODM0N0I3QjE0QzA0QUQ5RUE0
NDFDQzk5NzAeFw0yNjA3MTcwOTAzMzNaFw0yNjA3MjQwOTAzMzNaMBgxFjAUBgNV
BAMTDTZhNTllZmU2LTY2NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCVMZvvOqD6/zFMElJqP25V/xfbpBZSAwhbkcjtYTmfDA/P4gnJMHqBiBp5SlgL
n8+g7YHoyBTZn/zO2Oru3r4Rj3+CuOg5COq8lRyAERJiQPM49Yc6t/SPXSofAXgy
ykBphBsIPCCaG4AUGnpsYZ33niLJi1Wx9Sor6GVhwyYI2YpBBkd44mdeUzM/aO4t
v50NR67xkJuAi6NZxu45RyascneUYL54ikbYPm+p1PeU3QlYhHKPgzRs1qKjzD0I
oQxaGaXL6ZJgfTDWensOJcdboq5QOCCscV8mk2DrhFO4s6xVIkUw6xDTpwu05ui2
YWkx8nNE/HfwqAQMN0l3ekmvAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUwg+yAaIx
w+TOthpPr53hVIeUA5gwHwYDVR0jBBgwFoAUvYl4FlbZ0Vg0e3sUwErZ6kQcyZcw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMUM0LzBDNzFFN0ZBQ0U5
MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZnMGUzc1V3RXJaNmtRY3la
Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvdllsNEZsYlowVmcwZTNzVXdFclo2a1FjeVpjLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF
MUM0LzBDNzFFN0ZBQ0U5MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZn
MGUzc1V3RXJaNmtRY3laYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQAWplg1tTxttbffbLMpKudQupA4b4ckgsTB1506PmJl1WL20WD7UgNDYCVyHE48
4o4K8zkqG+3f1MLo9uX4Zmk0c5z+xM+xrTLTVN35Bah9TP5S3buOQ3VqWeRVIrT1
BLDdFmsXEm4UEAJN4P8ClUTg5D8MFy1jhHV0zyo7MGPHDNf+9+YPFpHUFGt1Ei0J
MRHQNszjg90HPtnlKXXNLP9EpYNR3iywFHOe3On8x2Wam7v1Qn/KOWenobBPkdoj
m3JpQWEY0IK2CVj5ltFiTF6oFu+zKQP8zfFu0EJU3eCSj86+/mz/XRorYFJn7SAL
o0pR6/p+gctMecIuw02UJ319
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:42 2026 by rpki-client