Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft
File:                     bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json)
Hash identifier:          q0dP0jtQlBGzzN/Ycm9kjc5LJII3m0kMvhTnr3RdM+k=
Subject key identifier:   6C:95:63:B9:2E:CA:40:80:DE:FC:85:22:0C:2C:C6:62:E7:C1:72:65
Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35
Certificate issuer:       /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35
Certificate serial:       0215
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft
Manifest number:          020E
Signing time:             Sun 05 Jul 2026 03:35:42 +0000
Manifest this update:     Sun 05 Jul 2026 03:35:41 +0000
Manifest next update:     Sun 12 Jul 2026 03:35:41 +0000
Files and hashes:         1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: QniUSd3YzM+u8Pa2cyoobUKFb68UoYq7ddLHfPNHEw0=)
                          2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: XXVUjsyhZNJjR2zCirDCP6YTvzsx5dU96ixceZ4TvBU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl
                          rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 03:35:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 533 (0x215)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35
        Validity
            Not Before: Jul  5 03:35:41 2026 GMT
            Not After : Jul 12 03:35:41 2026 GMT
        Subject: CN=6a49d10e-6e80
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:b8:e4:74:49:e5:7f:54:1b:07:88:ef:41:56:
                    19:20:03:3d:7b:64:c4:0f:a1:46:3e:13:6f:85:6f:
                    33:51:e9:3b:b0:de:db:78:14:1e:8a:bb:49:22:cb:
                    bc:e1:c1:a7:91:bd:1d:ba:32:83:6a:bf:2d:fc:62:
                    3f:4d:47:62:12:72:04:7a:bc:63:3c:9f:c9:95:50:
                    96:0b:e6:35:a1:92:53:60:67:25:81:e8:1b:45:23:
                    2a:66:b4:ea:32:ff:9b:be:5b:91:43:8e:0a:67:3a:
                    9f:ce:9a:f9:fa:a1:41:df:70:61:ec:88:d9:e8:5e:
                    8f:0f:91:e4:6d:d9:8c:47:e3:a7:99:67:c2:1e:1b:
                    b9:29:2b:f5:a5:ce:b5:9e:1a:10:89:c2:a2:76:c9:
                    51:fd:b9:ee:9f:1d:0e:5b:2d:15:66:ef:45:c9:f3:
                    5e:48:e7:06:93:66:48:5e:0f:31:96:47:2c:87:9b:
                    4f:18:1f:17:fd:7a:8b:a0:72:50:4d:a0:5a:42:97:
                    dd:03:6d:b6:7b:87:a5:d2:7f:65:e8:36:5a:7a:41:
                    57:26:63:35:5b:7a:05:6a:90:8c:4d:e7:bd:fd:f9:
                    37:d1:49:e7:a5:65:ce:e6:06:95:26:f9:82:46:16:
                    f7:01:92:0c:70:f4:92:0e:99:76:e1:4d:af:66:c5:
                    ab:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:95:63:B9:2E:CA:40:80:DE:FC:85:22:0C:2C:C6:62:E7:C1:72:65
            X509v3 Authority Key Identifier:
                keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:ec:af:cf:a4:c8:a7:39:e3:c8:3e:cf:24:71:ae:7a:58:fe:
         c2:11:09:8e:b2:3c:ae:74:d2:1c:ee:82:54:95:09:1e:2c:c1:
         64:da:7b:25:49:94:84:a1:05:ed:c4:a8:c8:78:cc:0c:54:38:
         24:72:d0:3c:25:e9:af:3a:bb:a8:b8:98:d2:d0:14:fa:9a:9a:
         ce:83:70:7b:52:cf:3f:79:64:1f:5f:0a:89:62:71:f1:68:e8:
         a2:e0:b6:dc:80:9a:f3:1c:f3:41:c3:e8:c5:4e:58:1b:a0:cb:
         60:ef:e3:f1:7b:ec:72:2c:1d:b4:fd:bd:2d:2f:96:98:ea:0f:
         c3:52:91:62:69:99:36:79:b2:70:5d:29:e2:10:8a:a6:7c:73:
         c3:c1:6d:c0:ca:b0:a4:09:e8:1b:c3:ce:5a:8f:6e:ab:c2:d5:
         b6:a3:21:85:a6:70:2a:16:17:d6:67:fe:cd:34:91:93:eb:92:
         53:29:1b:dc:e2:89:e1:fd:f6:d5:4f:24:9e:dd:5e:fd:e2:b5:
         6c:df:e1:6a:4f:f5:67:1a:64:04:dd:96:2c:f0:f6:1d:39:10:
         0f:8e:fc:c3:53:e8:13:f5:5d:80:d3:01:f1:cd:86:0e:c7:9c:
         6b:d7:91:ff:a6:c2:cb:0e:c2:8c:10:da:42:5d:d3:8e:b5:df:
         b1:55:3d:f9
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2
Nzc4RkVGMzUwHhcNMjYwNzA1MDMzNTQxWhcNMjYwNzEyMDMzNTQxWjAYMRYwFAYD
VQQDEw02YTQ5ZDEwZS02ZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA17jkdEnlf1QbB4jvQVYZIAM9e2TED6FGPhNvhW8zUek7sN7beBQeirtJIsu8
4cGnkb0dujKDar8t/GI/TUdiEnIEerxjPJ/JlVCWC+Y1oZJTYGclgegbRSMqZrTq
Mv+bvluRQ44KZzqfzpr5+qFB33Bh7IjZ6F6PD5HkbdmMR+OnmWfCHhu5KSv1pc61
nhoQicKidslR/bnunx0OWy0VZu9FyfNeSOcGk2ZIXg8xlkcsh5tPGB8X/XqLoHJQ
TaBaQpfdA222e4el0n9l6DZaekFXJmM1W3oFapCMTee9/fk30UnnpWXO5gaVJvmC
Rhb3AZIMcPSSDpl24U2vZsWr9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGyVY7ku
ykCA3vyFIgwsxmLnwXJlMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5
REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3
elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV
R25JWW1PbmdjLUZuZVA3elUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEALeyvz6TIpznjyD7PJHGuelj+whEJjrI8rnTSHO6CVJUJHizBZNp7JUmUhKEF
7cSoyHjMDFQ4JHLQPCXprzq7qLiY0tAU+pqazoNwe1LPP3lkH18KiWJx8WjoouC2
3ICa8xzzQcPoxU5YG6DLYO/j8XvsciwdtP29LS+WmOoPw1KRYmmZNnmycF0p4hCK
pnxzw8FtwMqwpAnoG8POWo9uq8LVtqMhhaZwKhYX1mf+zTSRk+uSUykb3OKJ4f32
1U8knt1e/eK1bN/hak/1ZxpkBN2WLPD2HTkQD478w1PoE/VdgNMB8c2GDseca9eR
/6bCyw7CjBDaQl3TjrXfsVU9+Q==
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:06 2026 by rpki-client