Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
File:                     aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json)
Hash identifier:          xR8Rs61zJmISh9eEKh3qe1URZCmdHjv1Rx/36mGPXLY=
Subject key identifier:   33:73:B5:E8:16:C1:44:3C:EA:51:7F:46:76:D3:FB:C7:39:E3:E7:31
Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32
Certificate issuer:       /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32
Certificate serial:       13E8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
Manifest number:          13D1
Signing time:             Sun 12 Jul 2026 16:54:30 +0000
Manifest this update:     Sun 12 Jul 2026 16:54:29 +0000
Manifest next update:     Sun 19 Jul 2026 16:54:29 +0000
Files and hashes:         1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: m/KOXqob3y9M+wa9LkgPQCKnt8c5bSki+Gh3C5LFvqU=)
                          2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: jPVq1FqdO/7Sa1Zo63l4DDlY46514aXTAgnERyot6WE=)
                          3: B80482FC748911F19DCB36BA84A30FBC.roa (hash: jW6OnogRVDWjla3xscS9xPToyDbj+RJjVrfHDwtYH9Y=)
                          4: AE7603724F8711F1ACC1478F91833773.roa (hash: m3sG9C0voTAzwCTrnGEExTYMamH/vClHoEE2jHx5FJc=)
                          5: F5B633B2283411F1B1D7DF7FCA833773.roa (hash: Kt9rQh1UmXU3aG3p58XCWtin2O3CyyL613kv0PisisY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl
                          rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 19 Jul 2026 16:54:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5096 (0x13e8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32
        Validity
            Not Before: Jul 12 16:54:29 2026 GMT
            Not After : Jul 19 16:54:29 2026 GMT
        Subject: CN=6a53c6c5-1334
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:cb:1a:ff:cc:c6:f9:0a:e6:52:2a:9d:77:fc:
                    7a:3d:28:c9:20:1d:77:0a:6e:3c:a6:8a:8a:a4:37:
                    31:00:9f:09:32:98:e0:1a:4b:a6:ab:e8:2c:32:27:
                    3c:9b:32:3b:d3:82:1b:ef:13:5a:53:48:b0:08:eb:
                    5e:7a:5d:c2:d8:76:e2:25:a1:19:4c:33:b2:df:31:
                    87:75:95:08:09:7a:9a:02:35:35:ab:0f:74:f4:b5:
                    73:7e:2f:40:a7:a8:03:51:1c:7a:f9:7a:f5:cc:9a:
                    77:5e:0f:b4:03:fb:60:ca:94:ef:63:88:d1:3e:3c:
                    6b:36:eb:a7:59:3f:9e:80:32:63:b0:a3:f3:1d:63:
                    63:f7:e9:13:a8:25:b2:3e:22:0c:aa:26:0a:7e:d5:
                    69:45:94:08:00:1c:64:bc:96:02:3d:5e:39:e9:13:
                    92:44:de:cb:6f:76:a2:61:fd:70:21:e9:06:e6:6b:
                    2b:66:b9:f2:2b:23:23:69:3d:35:0e:78:b0:6f:78:
                    9c:e5:97:21:85:52:43:9c:09:a3:36:31:8c:36:d7:
                    dc:9d:b8:7f:41:74:ca:cf:86:f4:b3:29:22:1b:7f:
                    5e:92:d4:ae:a9:c7:5f:6f:56:be:32:f7:b8:76:d4:
                    d7:3e:e9:06:b6:99:e9:13:b9:b6:dc:db:c6:ba:8b:
                    93:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:73:B5:E8:16:C1:44:3C:EA:51:7F:46:76:D3:FB:C7:39:E3:E7:31
            X509v3 Authority Key Identifier:
                keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:1c:e8:0e:b7:bd:dd:c6:13:f5:7d:ae:d3:48:25:6c:89:24:
         b4:a1:64:06:5f:05:68:2f:02:46:a6:81:e0:b7:01:7b:14:24:
         dd:78:fd:87:ae:2b:1f:1b:7d:fe:86:bb:75:49:34:ed:6a:74:
         dc:a3:49:18:bf:e9:cc:97:d3:75:f8:17:e5:6b:60:58:09:a1:
         7f:c3:4f:ae:64:22:14:2d:7f:2c:a0:db:74:73:c1:90:32:68:
         a9:d2:16:b5:a7:35:9f:bb:2e:c7:49:1b:9f:39:f7:5c:74:39:
         a9:42:24:71:8a:b0:76:4d:4e:b3:6e:e1:6b:23:b4:f8:c4:3d:
         ed:ab:a8:03:19:6d:ed:dc:3c:6e:45:74:07:59:85:a5:cb:79:
         fd:a3:4d:08:66:e6:1f:09:cc:cf:e8:c8:8c:7c:bb:b6:6a:5e:
         7a:ee:86:8c:4b:b9:81:74:f6:81:fd:fc:5d:23:8b:fc:81:a2:
         ef:31:b4:e0:03:83:67:c5:90:c5:e3:c1:b4:6a:96:5d:ce:02:
         be:f5:95:e6:fb:18:4d:b1:30:81:f3:11:9d:b3:32:2e:a5:fa:
         ef:82:77:46:de:3e:56:ce:82:cb:3d:5d:42:38:01:c3:04:a5:
         d7:b9:9e:81:9c:02:b6:47:33:16:3f:f4:eb:12:96:bb:ed:90:
         9f:af:a6:b5
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICE+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz
RDY5NTZFMzIwHhcNMjYwNzEyMTY1NDI5WhcNMjYwNzE5MTY1NDI5WjAYMRYwFAYD
VQQDEw02YTUzYzZjNS0xMzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3csa/8zG+QrmUiqdd/x6PSjJIB13Cm48poqKpDcxAJ8JMpjgGkumq+gsMic8
mzI704Ib7xNaU0iwCOteel3C2HbiJaEZTDOy3zGHdZUICXqaAjU1qw909LVzfi9A
p6gDURx6+Xr1zJp3Xg+0A/tgypTvY4jRPjxrNuunWT+egDJjsKPzHWNj9+kTqCWy
PiIMqiYKftVpRZQIABxkvJYCPV456ROSRN7Lb3aiYf1wIekG5msrZrnyKyMjaT01
Dniwb3ic5ZchhVJDnAmjNjGMNtfcnbh/QXTKz4b0sykiG39ektSuqcdfb1a+Mve4
dtTXPukGtpnpE7m23NvGuouTuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDNztegW
wUQ86lF/RnbT+8c54+cxMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2
OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi
akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5
YV9vSktEQWhfcEU5YVZiakkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEApBzoDre93cYT9X2u00glbIkktKFkBl8FaC8CRqaB4LcBexQk3Xj9h64rHxt9
/oa7dUk07Wp03KNJGL/pzJfTdfgX5WtgWAmhf8NPrmQiFC1/LKDbdHPBkDJoqdIW
tac1n7sux0kbnzn3XHQ5qUIkcYqwdk1Os27hayO0+MQ97auoAxlt7dw8bkV0B1mF
pct5/aNNCGbmHwnMz+jIjHy7tmpeeu6GjEu5gXT2gf38XSOL/IGi7zG04AODZ8WQ
xePBtGqWXc4CvvWV5vsYTbEwgfMRnbMyLqX674J3Rt4+Vs6Cyz1dQjgBwwSl17me
gZwCtkczFj/06xKWu+2Qn6+mtQ==
-----END CERTIFICATE-----
Generated at Sun Jul 12 22:26:36 2026 by rpki-client