Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft
File:                     Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json)
Hash identifier:          DVRRmdjOmeV35Xc7dP2njlwbjbRRSv60ly0OP7rryos=
Subject key identifier:   06:4A:28:34:67:AD:B6:C3:4E:0C:14:AD:52:00:F4:54:E6:67:0D:73
Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E
Certificate issuer:       /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E
Certificate serial:       2190
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft
Manifest number:          56CE
Signing time:             Mon 06 Jul 2026 14:55:22 +0000
Manifest this update:     Mon 06 Jul 2026 14:55:22 +0000
Manifest next update:     Mon 13 Jul 2026 14:55:22 +0000
Files and hashes:         1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: Xk8onoAHnF36dKpXIVW8Cfkd80xx+EYetEx/QqYQ62w=)
                          2: 01804686B48E11EF81F55F3CC4F9AE02.roa (hash: N4+8fycTDr0KyyL1T8BnM1QnlOy4E1P+9kvY0kSTWus=)
                          3: 0211478AB48E11EF81F55F3CC4F9AE02.roa (hash: eXbj2/2PGJubPsuJy/6g3AgLU0HNFQl847an+DeMHhU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl
                          rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 14:55:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8592 (0x2190)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9199885, serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E
        Validity
            Not Before: Jul  6 14:55:22 2026 GMT
            Not After : Jul 13 14:55:22 2026 GMT
        Subject: CN=6a4bc1da-732a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:8d:fc:40:0e:ac:4e:e5:8a:4a:a1:3c:e4:d0:
                    db:ae:20:58:57:1b:86:43:f3:99:18:cf:76:73:ce:
                    f9:6c:14:eb:74:79:ed:7f:e1:8d:84:20:4e:3c:e1:
                    d9:50:00:2b:09:af:9a:6b:d3:f3:e8:95:48:ac:2a:
                    dc:ba:6f:b6:46:15:54:82:41:f9:b2:6a:a7:ab:d7:
                    d2:b7:12:04:15:1d:56:76:f0:bd:29:71:6b:e0:08:
                    5a:ea:fc:b8:01:3d:aa:d6:e0:58:4a:5f:5f:b2:13:
                    39:92:b7:96:ad:47:c5:cc:ed:be:3c:18:41:ad:7c:
                    ff:09:aa:64:fe:7e:46:13:d9:ed:f9:f7:f8:82:f3:
                    e1:48:63:d0:9a:23:63:91:8c:12:5b:ff:ea:95:a5:
                    b0:91:57:b6:42:78:0c:bd:57:d5:3c:22:36:79:f7:
                    c2:6f:22:d8:1c:8f:61:35:42:c2:1a:20:3d:a0:7a:
                    eb:db:90:0b:d6:ea:c0:e7:7d:ba:b9:db:4d:6b:21:
                    4e:cc:d5:af:cb:ee:73:f2:29:68:9c:ba:75:ae:cc:
                    11:48:6a:0e:cb:49:dc:ff:64:a6:87:4f:3a:e3:f9:
                    e3:c1:cb:ff:86:c3:d8:be:18:59:26:91:de:fd:f4:
                    2d:d8:30:fc:13:b0:f6:b2:c8:0d:e0:27:82:c5:7f:
                    08:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:4A:28:34:67:AD:B6:C3:4E:0C:14:AD:52:00:F4:54:E6:67:0D:73
            X509v3 Authority Key Identifier:
                keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:be:fd:2c:e0:3e:b6:54:d8:e8:42:cb:22:81:07:f8:a5:7c:
         78:2d:c1:44:61:6b:18:72:97:9d:cd:bc:12:81:a8:4d:06:0a:
         1b:ee:78:e3:4e:e7:b0:31:fa:10:95:59:26:0a:73:37:16:59:
         68:f1:38:f1:fd:73:c9:17:b5:ca:0d:75:ae:38:19:ad:bc:0c:
         df:74:c5:fd:16:6e:ea:f6:aa:f4:47:7d:78:10:0c:47:a9:dc:
         28:bd:a6:3d:50:23:12:96:13:af:a5:68:bb:79:a5:17:86:77:
         ef:41:0d:56:37:69:5b:10:a6:80:53:e5:22:a9:78:e1:2e:28:
         e1:2d:b9:dc:de:33:19:81:ee:79:5c:79:12:20:41:91:e8:c2:
         4d:13:ba:90:ed:78:6e:0d:55:b2:88:ac:03:b8:90:82:c3:9c:
         de:8d:3a:48:ea:42:1f:6f:38:c3:ab:e0:43:bc:4c:7a:e1:ac:
         ea:21:c2:81:11:8a:c1:04:04:f6:4e:6e:91:96:ef:07:83:8e:
         ee:88:ee:9f:35:f7:80:3c:47:78:0d:f6:31:1c:74:1b:7a:07:
         3f:9d:39:23:a1:c7:d4:37:7c:9f:60:2e:1a:80:1b:30:2b:30:
         ac:96:fb:69:f1:b1:0e:d0:0c:c0:15:af:4a:02:fa:06:a7:c7:
         7a:09:85:fb
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICIZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4
NDJFRkQ5OEUwHhcNMjYwNzA2MTQ1NTIyWhcNMjYwNzEzMTQ1NTIyWjAYMRYwFAYD
VQQDEw02YTRiYzFkYS03MzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvo38QA6sTuWKSqE85NDbriBYVxuGQ/OZGM92c875bBTrdHntf+GNhCBOPOHZ
UAArCa+aa9Pz6JVIrCrcum+2RhVUgkH5smqnq9fStxIEFR1WdvC9KXFr4Aha6vy4
AT2q1uBYSl9fshM5kreWrUfFzO2+PBhBrXz/Capk/n5GE9nt+ff4gvPhSGPQmiNj
kYwSW//qlaWwkVe2QngMvVfVPCI2effCbyLYHI9hNULCGiA9oHrr25AL1urA5326
udtNayFOzNWvy+5z8ilonLp1rswRSGoOy0nc/2Smh0864/njwcv/hsPYvhhZJpHe
/fQt2DD8E7D2ssgN4CeCxX8I2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAZKKDRn
rbbDTgwUrVIA9FTmZw1zMB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE
OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy
WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw
dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAjr79LOA+tlTY6ELLIoEH+KV8eC3BRGFrGHKXnc28EoGoTQYKG+54407nsDH6
EJVZJgpzNxZZaPE48f1zyRe1yg11rjgZrbwM33TF/RZu6vaq9Ed9eBAMR6ncKL2m
PVAjEpYTr6Vou3mlF4Z370ENVjdpWxCmgFPlIql44S4o4S253N4zGYHueVx5EiBB
kejCTRO6kO14bg1VsoisA7iQgsOc3o06SOpCH284w6vgQ7xMeuGs6iHCgRGKwQQE
9k5ukZbvB4OO7ojunzX3gDxHeA32MRx0G3oHP505I6HH1Dd8n2AuGoAbMCswrJb7
afGxDtAMwBWvSgL6BqfHegmF+w==
-----END CERTIFICATE-----
Generated at Mon Jul 6 19:16:47 2026 by rpki-client