Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft
File:                     2j9P_11GRonTiYj1-yL2VVCz7_g.mft (raw, json)
Hash identifier:          NNgmwv4KZi025AVKnS0yOuTAAzdMPv80w94dgAa7IOQ=
Subject key identifier:   FE:E7:4A:EE:82:F5:D1:CC:D0:67:C8:6D:22:37:B5:52:EB:23:4E:FE
Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8
Certificate issuer:       /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8
Certificate serial:       0576
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft
Manifest number:          053D
Signing time:             Fri 17 Jul 2026 00:03:16 +0000
Manifest this update:     Fri 17 Jul 2026 00:03:15 +0000
Manifest next update:     Fri 24 Jul 2026 00:03:15 +0000
Files and hashes:         1: 2j9P_11GRonTiYj1-yL2VVCz7_g.crl (hash: 3cemS+a+MtJpXBe55ETMgRkR6/dbK6OAtNCmDUPDNPI=)
                          2: 952AA4424DAF11EC86ED5273C4F9AE02.roa (hash: dY+BZEOINurtJjOA3yhjmWQ4kx2Zua1d5uXKZrya/Kk=)
                          3: AC63C4A4A62E11ECBDD6843FC4F9AE02.roa (hash: EOMIe0WcNYmNc20xtvF1NWvgi2RMO6+OBmsDK/hEYoY=)
                          4: 75426BC6A8C511EC8F560C42C4F9AE02.roa (hash: 7xZPQJy4FlDqQRK4ZNxBOqn11xvYRCTnG5Hl+SBa0kA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl
                          rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:03:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1398 (0x576)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A3FFF, serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8
        Validity
            Not Before: Jul 17 00:03:15 2026 GMT
            Not After : Jul 24 00:03:15 2026 GMT
        Subject: CN=6a597144-b33d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:66:c8:7b:2f:c4:9f:a7:7d:a2:b9:71:00:a4:
                    10:ea:53:1e:db:7f:b4:d5:14:11:92:49:92:50:a2:
                    57:64:fa:d9:42:18:6b:e3:2c:02:a4:44:c5:5e:af:
                    ce:3c:9c:74:e3:23:5a:0e:53:17:26:9f:fb:9d:7e:
                    4f:79:ce:c9:4b:73:68:c1:17:5c:cf:3f:d4:50:04:
                    d4:7a:8c:a0:82:e4:8d:dc:58:af:77:3d:e3:6b:56:
                    62:d0:f0:31:02:75:4e:0a:3f:10:fd:f0:13:0d:cd:
                    0b:c0:d4:a5:4c:6d:d2:f1:f0:55:2d:e5:ec:f6:59:
                    15:da:ac:10:ea:aa:90:11:ea:53:bc:9b:16:7d:77:
                    d5:fe:72:bd:f3:a1:8e:19:2e:1d:31:c6:c7:4e:af:
                    72:30:87:b9:03:72:4f:7f:53:6e:cf:ff:c2:a0:08:
                    21:58:32:ef:a6:3c:9d:fc:0f:ec:01:39:fe:61:34:
                    fc:e1:dd:9a:dd:48:45:10:65:96:18:e3:50:c3:32:
                    06:3d:29:ad:e6:1c:7f:2d:c6:bd:84:23:92:13:80:
                    a4:1a:33:24:f6:68:2e:cf:f0:64:12:52:b5:b3:f3:
                    e7:06:fc:00:08:ac:d3:b7:95:4b:7e:a6:19:1c:49:
                    89:81:61:b0:98:a8:1d:84:be:1d:3a:11:d9:1e:d4:
                    ba:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:E7:4A:EE:82:F5:D1:CC:D0:67:C8:6D:22:37:B5:52:EB:23:4E:FE
            X509v3 Authority Key Identifier:
                keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:d2:ca:ab:e2:60:61:3e:be:ca:85:7b:0f:da:35:22:50:d6:
         77:84:6e:3d:6d:90:75:0b:ba:ff:f3:86:1a:05:ec:24:63:6a:
         a1:e3:3c:c9:2a:b3:67:68:be:f3:e6:fa:b4:61:8d:a5:55:c3:
         dc:06:13:09:0d:6a:14:98:b4:5b:ca:5b:33:9e:37:9d:f4:db:
         a2:2c:b5:87:ae:bd:6f:03:6f:f4:43:bd:23:00:10:eb:a9:d0:
         84:e5:89:bf:55:2f:2b:6a:89:64:00:e3:96:99:45:97:8b:98:
         e8:0c:fc:f2:d1:89:52:30:11:04:1f:87:38:53:5b:3f:e8:d1:
         7b:72:5f:90:80:89:4b:8f:02:35:37:2f:91:74:f9:06:c4:42:
         5f:93:4a:70:a3:4e:2e:31:98:71:0f:a5:48:ea:dd:20:8d:39:
         b1:5a:bf:0e:18:e5:ab:ca:55:2b:fe:1f:8b:73:06:d3:da:0a:
         c6:17:a0:bf:2d:ea:fd:5c:4c:5d:8c:5b:5f:3b:e0:64:7c:14:
         e4:67:98:8b:ce:5a:0f:fa:87:e2:0d:e5:9b:ec:7e:ba:5a:4c:
         1a:a1:45:26:43:d7:7b:0b:bc:cc:76:cb:31:90:ad:43:db:62:
         6e:2f:16:95:ed:ed:31:3d:4c:91:71:6e:c8:73:e2:01:72:ed:
         56:04:85:10
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1
NTBCM0VGRjgwHhcNMjYwNzE3MDAwMzE1WhcNMjYwNzI0MDAwMzE1WjAYMRYwFAYD
VQQDEw02YTU5NzE0NC1iMzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyWbIey/En6d9orlxAKQQ6lMe23+01RQRkkmSUKJXZPrZQhhr4ywCpETFXq/O
PJx04yNaDlMXJp/7nX5Pec7JS3NowRdczz/UUATUeoygguSN3Fivdz3ja1Zi0PAx
AnVOCj8Q/fATDc0LwNSlTG3S8fBVLeXs9lkV2qwQ6qqQEepTvJsWfXfV/nK986GO
GS4dMcbHTq9yMIe5A3JPf1Nuz//CoAghWDLvpjyd/A/sATn+YTT84d2a3UhFEGWW
GONQwzIGPSmt5hx/Lca9hCOSE4CkGjMk9mguz/BkElK1s/PnBvwACKzTt5VLfqYZ
HEmJgWGwmKgdhL4dOhHZHtS62QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP7nSu6C
9dHM0GfIbSI3tVLrI07+MB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE
QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3
X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
M0ZGRi84MkFEMzc3QTREQUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1Jv
blRpWWoxLXlMMlZWQ3o3X2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEATNLKq+JgYT6+yoV7D9o1IlDWd4RuPW2QdQu6//OGGgXsJGNqoeM8ySqzZ2i+
8+b6tGGNpVXD3AYTCQ1qFJi0W8pbM543nfTboiy1h669bwNv9EO9IwAQ66nQhOWJ
v1UvK2qJZADjlplFl4uY6Az88tGJUjARBB+HOFNbP+jRe3JfkICJS48CNTcvkXT5
BsRCX5NKcKNOLjGYcQ+lSOrdII05sVq/Dhjlq8pVK/4fi3MG09oKxhegvy3q/VxM
XYxbXzvgZHwU5GeYi85aD/qH4g3lm+x+ulpMGqFFJkPXewu8zHbLMZCtQ9tibi8W
le3tMT1MkXFuyHPiAXLtVgSFEA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 09:25:51 2026 by rpki-client