Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft
File:                     IffNCqAWhDVSmHRj5kIpcu8DnOg.mft (raw, json)
Hash identifier:          xUjzAWCj2xnSdWgmIrrpnk2ljiUZ9ky2NapJbt1mvv0=
Subject key identifier:   D8:C9:AC:3D:F8:5B:D8:F7:4B:7A:D3:85:44:DA:82:32:92:4C:A5:71
Authority key identifier: 21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8
Certificate issuer:       /CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8
Certificate serial:       0556
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft
Manifest number:          0541
Signing time:             Fri 17 Jul 2026 00:01:58 +0000
Manifest this update:     Fri 17 Jul 2026 00:01:57 +0000
Manifest next update:     Fri 24 Jul 2026 00:01:57 +0000
Files and hashes:         1: IffNCqAWhDVSmHRj5kIpcu8DnOg.crl (hash: 1VjCnysPB5QjtTxitL/HQmoHNtmvBnQ2HoPBBNnryUc=)
                          2: E097013E910C11EFB994E187C4F9AE02.roa (hash: ZdZHwag+6Cd1JHK+9hW+Jbti2LN6Ngqb+sChSvSjYdc=)
                          3: F47ED252878B11EEA8C62644C4F9AE02.roa (hash: qA7mB7J1Wr5PxdKSeV/plvT1JHfQHozWTf8vXejp5kc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl
                          rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:01:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1366 (0x556)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919710C, serialNumber=21F7CD0AA016843552987463E6422972EF039CE8
        Validity
            Not Before: Jul 17 00:01:57 2026 GMT
            Not After : Jul 24 00:01:57 2026 GMT
        Subject: CN=6a5970f6-868d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:06:81:6c:6d:0e:99:c6:f1:cc:97:eb:91:e5:
                    8c:13:d8:86:ce:77:91:3c:9b:e2:a4:cc:28:77:5d:
                    00:b1:35:c4:f3:8d:02:d2:4c:a1:ff:2b:bb:7a:ab:
                    7a:f2:77:96:20:3d:0f:7a:06:d3:be:01:f4:97:ab:
                    bf:96:77:c5:e9:1d:6d:55:a6:6b:d4:3c:f7:8f:ba:
                    17:ee:f5:ca:36:cd:1b:b5:94:d9:cd:bb:1e:d5:35:
                    61:7b:c9:55:71:85:d6:b6:09:58:6f:0d:a4:9e:15:
                    a8:a1:bc:ca:b4:dc:8f:d7:f8:c6:02:ea:6b:23:8a:
                    b3:62:00:5e:1d:6d:3a:3f:e4:53:cd:d0:68:ca:55:
                    e6:d3:29:f8:cc:d9:aa:23:34:98:22:3f:4e:1b:a1:
                    a7:c2:d1:77:85:26:96:ac:1b:c2:be:0d:df:e6:36:
                    d7:74:d5:dc:6d:64:46:16:36:6d:6c:6b:8b:7a:95:
                    ce:73:99:b4:66:95:cc:2a:87:df:b6:3a:11:2b:42:
                    a4:ff:02:f3:cb:24:fa:da:b6:3b:f2:5b:da:a7:65:
                    fb:0a:7e:22:98:31:b0:9e:03:a1:e1:f5:15:d6:4a:
                    06:bd:ad:2a:cf:ad:61:88:33:9b:a4:bf:1c:90:fb:
                    31:0a:ff:37:48:80:05:c7:27:a8:c6:79:99:4a:ed:
                    b1:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:C9:AC:3D:F8:5B:D8:F7:4B:7A:D3:85:44:DA:82:32:92:4C:A5:71
            X509v3 Authority Key Identifier:
                keyid:21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:30:5d:77:34:92:bc:b4:8a:56:91:65:a5:47:fe:9f:18:2a:
         0a:b9:1e:0e:1c:62:71:fd:6d:35:54:5f:2a:41:f7:5c:10:cf:
         c8:3d:fe:ae:05:4d:2e:0a:b0:a5:6e:ad:0b:28:a5:90:c8:b6:
         9f:48:0e:8e:46:35:07:63:be:ae:c9:bd:58:c5:bb:58:6e:85:
         f3:40:9b:48:f2:3c:ac:1c:79:81:48:20:4e:6e:a6:5a:a9:80:
         79:a4:95:d3:3c:fc:d0:59:2c:67:32:c2:22:42:9e:ba:9f:fe:
         f3:4e:12:85:0e:ed:46:fe:d1:e0:6b:ea:d7:3d:af:f2:ef:31:
         7c:9a:95:17:03:a8:5c:6f:4e:f8:ed:69:fa:a6:bb:d5:19:7b:
         e5:3f:73:78:51:d4:d2:16:27:d1:df:1e:a5:59:7b:54:db:5e:
         c1:20:2f:14:9e:45:2f:7c:75:54:0c:7d:18:25:e7:f3:63:5b:
         6c:7f:74:32:b1:c3:39:99:49:94:dd:02:fc:77:35:21:38:57:
         de:a4:13:fc:fc:0a:a8:ab:6e:c6:1f:a4:99:40:b0:d5:1f:56:
         19:3a:89:a4:2d:69:33:0e:3f:05:fc:43:ad:37:24:9c:5e:f3:
         05:7c:dd:fe:20:3a:0c:b4:c2:79:41:ca:39:d7:7c:d8:c3:e7:
         65:c1:7c:41
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTcxMEMxMTAvBgNVBAUTKDIxRjdDRDBBQTAxNjg0MzU1Mjk4NzQ2M0U2NDIyOTcy
RUYwMzlDRTgwHhcNMjYwNzE3MDAwMTU3WhcNMjYwNzI0MDAwMTU3WjAYMRYwFAYD
VQQDEw02YTU5NzBmNi04NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAswaBbG0OmcbxzJfrkeWME9iGzneRPJvipMwod10AsTXE840C0kyh/yu7eqt6
8neWID0PegbTvgH0l6u/lnfF6R1tVaZr1Dz3j7oX7vXKNs0btZTZzbse1TVhe8lV
cYXWtglYbw2knhWoobzKtNyP1/jGAuprI4qzYgBeHW06P+RTzdBoylXm0yn4zNmq
IzSYIj9OG6GnwtF3hSaWrBvCvg3f5jbXdNXcbWRGFjZtbGuLepXOc5m0ZpXMKoff
tjoRK0Kk/wLzyyT62rY78lvap2X7Cn4imDGwngOh4fUV1koGva0qz61hiDObpL8c
kPsxCv83SIAFxyeoxnmZSu2xXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNjJrD34
W9j3S3rThUTagjKSTKVxMB8GA1UdIwQYMBaAFCH3zQqgFoQ1Uph0Y+ZCKXLvA5zo
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzEwQy8yRjM2NzYxMjRC
NjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hEVlNtSFJqNWtJcGN1OERu
T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lmZk5DcUFXaERWU21IUmo1a0lwY3U4RG5PZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
NzEwQy8yRjM2NzYxMjRCNjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hE
VlNtSFJqNWtJcGN1OERuT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAITBddzSSvLSKVpFlpUf+nxgqCrkeDhxicf1tNVRfKkH3XBDPyD3+rgVNLgqw
pW6tCyilkMi2n0gOjkY1B2O+rsm9WMW7WG6F80CbSPI8rBx5gUggTm6mWqmAeaSV
0zz80FksZzLCIkKeup/+804ShQ7tRv7R4Gvq1z2v8u8xfJqVFwOoXG9O+O1p+qa7
1Rl75T9zeFHU0hYn0d8epVl7VNtewSAvFJ5FL3x1VAx9GCXn82NbbH90MrHDOZlJ
lN0C/Hc1IThX3qQT/PwKqKtuxh+kmUCw1R9WGTqJpC1pMw4/BfxDrTcknF7zBXzd
/iA6DLTCeUHKOdd82MPnZcF8QQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:37 2026 by rpki-client