Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft
File:                     jNZeQOKuy7xVttozRr8czjg1wnc.mft (raw, json)
Hash identifier:          OtllE7GpjTluRduSP4Gc/317+yEtsdzRnyYhevlRFZ8=
Subject key identifier:   BD:B1:E0:5C:D3:A1:AC:8A:04:F7:D5:C5:36:46:9F:E2:F8:4A:B7:B7
Authority key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77
Certificate issuer:       /CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277
Certificate serial:       024A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft
Manifest number:          0244
Signing time:             Fri 17 Jul 2026 03:18:22 +0000
Manifest this update:     Fri 17 Jul 2026 03:18:22 +0000
Manifest next update:     Fri 24 Jul 2026 03:18:22 +0000
Files and hashes:         1: jNZeQOKuy7xVttozRr8czjg1wnc.crl (hash: WhPjIS9eHonWLYIH4BEjI/ilRfpwmc3X+1vKmMZPgwk=)
                          2: 27623F48040711F193DC81CA173D8C67.roa (hash: mzCIZfKTucgozxw0jlm4c47n5Z3DTwwALFRuv9z3XQs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl
                          rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 03:18:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 586 (0x24a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919A6EB, serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277
        Validity
            Not Before: Jul 17 03:18:22 2026 GMT
            Not After : Jul 24 03:18:22 2026 GMT
        Subject: CN=6a599efe-8826
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:c3:e7:60:83:92:4a:7b:ce:2a:6b:66:01:ca:
                    2b:81:f3:c7:98:d3:09:a1:65:75:79:64:5c:79:17:
                    9b:19:37:00:0b:ac:f2:55:62:00:3d:bc:dd:fb:50:
                    32:1e:0c:49:3c:46:c9:d9:ae:fe:db:ea:e5:a0:b1:
                    4d:45:20:9c:58:3c:69:de:58:5a:13:11:8f:d9:0e:
                    ec:a1:6e:52:97:bf:7e:d5:6e:92:22:34:52:21:1f:
                    4d:15:91:2e:86:11:ec:b7:d1:b7:ca:88:ff:7c:8f:
                    5d:0e:47:fd:64:88:5e:b1:08:e1:99:b9:dc:fc:ed:
                    70:37:aa:45:f5:de:34:5b:65:f5:e2:4d:a3:59:81:
                    77:08:f3:a6:c6:9c:ce:53:17:cb:16:34:9b:08:4f:
                    62:ca:87:19:49:e0:41:1e:8d:92:bd:55:24:86:af:
                    cb:79:2b:af:aa:ad:be:07:af:82:d4:fb:4c:32:31:
                    d0:c1:81:89:df:df:b2:e4:72:6a:c9:fa:73:1e:2d:
                    09:85:62:b7:55:ed:73:1f:4c:c2:1f:13:56:3e:a8:
                    27:fb:1e:42:d7:43:ea:d9:4c:82:88:a9:33:2e:e4:
                    20:08:e7:81:60:2e:a7:6e:b2:70:45:f2:04:59:11:
                    5d:29:3b:47:d6:3b:d2:f7:72:a6:7e:2d:7c:d9:bf:
                    f4:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:B1:E0:5C:D3:A1:AC:8A:04:F7:D5:C5:36:46:9F:E2:F8:4A:B7:B7
            X509v3 Authority Key Identifier:
                keyid:8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:ff:42:c3:8f:a4:bc:fc:a3:64:f7:13:ee:c6:d6:01:28:ed:
         ef:fb:d9:4f:43:f6:3e:aa:b2:8b:9d:84:22:4b:0e:f4:9d:a1:
         b5:5c:64:21:95:ee:e4:70:40:91:70:7b:c7:40:d2:cc:8a:f7:
         49:58:ee:7a:1e:aa:b0:49:31:85:ff:12:65:06:05:dd:52:86:
         d0:e0:4d:e7:6a:4f:84:b4:83:20:4a:8f:fb:c9:cd:70:90:03:
         76:66:90:cf:c3:8e:3d:e7:0a:7e:db:f1:6f:44:36:31:37:a0:
         52:3d:aa:ae:a0:95:24:de:79:a1:cc:2a:3b:1a:d0:ce:13:0f:
         27:79:85:e8:73:a6:05:ba:4e:5e:36:5d:11:b4:4e:cd:22:bd:
         fd:22:35:88:f0:bd:b8:d1:24:ef:51:52:ce:4c:53:92:f6:92:
         0d:21:ed:fc:83:02:11:0f:a9:99:11:f3:af:5d:1e:ab:42:76:
         e3:c1:ef:c7:9f:9c:bc:a9:c8:9f:43:46:73:22:51:4d:e5:26:
         5b:cf:87:17:76:09:f7:ec:56:ef:c3:fb:f5:06:dd:d7:d7:aa:
         36:b2:77:04:b9:71:fa:1e:38:e5:26:0f:34:b0:b9:07:a9:02:
         00:27:8c:f5:70:b3:f7:90:cf:8d:f3:03:49:ff:57:0f:2b:ab:
         14:f6:c5:17
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEzMzQ2QkYxQ0NF
MzgzNUMyNzcwHhcNMjYwNzE3MDMxODIyWhcNMjYwNzI0MDMxODIyWjAYMRYwFAYD
VQQDEw02YTU5OWVmZS04ODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7cPnYIOSSnvOKmtmAcorgfPHmNMJoWV1eWRceRebGTcAC6zyVWIAPbzd+1Ay
HgxJPEbJ2a7+2+rloLFNRSCcWDxp3lhaExGP2Q7soW5Sl79+1W6SIjRSIR9NFZEu
hhHst9G3yoj/fI9dDkf9ZIhesQjhmbnc/O1wN6pF9d40W2X14k2jWYF3CPOmxpzO
UxfLFjSbCE9iyocZSeBBHo2SvVUkhq/LeSuvqq2+B6+C1PtMMjHQwYGJ39+y5HJq
yfpzHi0JhWK3Ve1zH0zCHxNWPqgn+x5C10Pq2UyCiKkzLuQgCOeBYC6nbrJwRfIE
WRFdKTtH1jvS93Kmfi182b/0KQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL2x4FzT
oayKBPfVxTZGn+L4Sre3MB8GA1UdIwQYMBaAFIzWXkDirsu8VbbaM0a/HM44NcJ3
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTZFQi9ERDRDMUIyQTBB
NUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3eFZ0dG96UnI4Y3pqZzF3
bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2pOWmVRT0t1eTd4VnR0b3pScjhjempnMXduYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3
eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAjP9Cw4+kvPyjZPcT7sbWASjt7/vZT0P2Pqqyi52EIksO9J2htVxkIZXu5HBA
kXB7x0DSzIr3SVjueh6qsEkxhf8SZQYF3VKG0OBN52pPhLSDIEqP+8nNcJADdmaQ
z8OOPecKftvxb0Q2MTegUj2qrqCVJN55ocwqOxrQzhMPJ3mF6HOmBbpOXjZdEbRO
zSK9/SI1iPC9uNEk71FSzkxTkvaSDSHt/IMCEQ+pmRHzr10eq0J248Hvx5+cvKnI
n0NGcyJRTeUmW8+HF3YJ9+xW78P79Qbd19eqNrJ3BLlx+h445SYPNLC5B6kCACeM
9XCz95DPjfMDSf9XDyurFPbFFw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:59 2026 by rpki-client