Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft
File:                     3aSfQfYYpV-cp8_FW66nthbZV2I.mft (raw, json)
Hash identifier:          8C4suO5PAHv+7Kc5/o5rMh/ogazMNUtKUAflJg/hbZI=
Subject key identifier:   93:5D:8E:39:EF:E7:3D:42:BE:83:DA:D1:F3:70:8A:44:95:D5:39:97
Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62
Certificate issuer:       /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762
Certificate serial:       0114
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft
Manifest number:          0110
Signing time:             Fri 17 Jul 2026 07:10:52 +0000
Manifest this update:     Fri 17 Jul 2026 07:10:51 +0000
Manifest next update:     Fri 24 Jul 2026 07:10:51 +0000
Files and hashes:         1: 3aSfQfYYpV-cp8_FW66nthbZV2I.crl (hash: ir9eN6p5wnuhJgeXELJpo0J1TcqxcNPWx85B5rc5OdA=)
                          2: 3958EEC642BB11F0B449BB81C4F9AE02.roa (hash: xBMqZvhUayr3U1URgwrl8EIqJ+zMDOpes797KaEjYwY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl
                          rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:10:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 276 (0x114)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762
        Validity
            Not Before: Jul 17 07:10:51 2026 GMT
            Not After : Jul 24 07:10:51 2026 GMT
        Subject: CN=6a59d57c-2bc8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:26:dd:1a:74:21:8a:62:d6:21:4c:76:5e:f6:
                    03:1a:78:1c:43:a0:66:3b:e6:9e:00:18:10:61:a0:
                    95:18:66:b7:5a:17:ae:3c:c4:9e:6b:d6:98:96:9e:
                    67:a7:1b:28:25:17:46:fe:44:f8:4d:f9:6b:e3:40:
                    13:3d:ec:b1:a0:74:36:96:06:06:1b:ab:74:97:ca:
                    8f:cd:7c:06:c5:33:3e:ab:89:54:f6:12:0a:03:00:
                    ec:98:f1:a8:43:99:f2:48:9e:e1:13:5f:8f:5e:b3:
                    b1:b1:81:c2:82:ad:d2:29:d9:22:bf:9a:da:44:4d:
                    3a:c8:ee:5f:64:aa:10:59:88:18:21:e9:ce:1f:fd:
                    16:e8:92:6b:21:53:8e:4f:ee:ae:cf:5a:ad:c6:1c:
                    28:30:87:08:35:cc:64:90:2e:64:c5:1b:ac:bc:bd:
                    1e:26:6e:0a:86:f7:9a:2a:e4:36:82:92:9a:33:54:
                    27:25:a2:3d:be:94:50:a4:f6:a3:cb:f1:61:87:28:
                    50:52:70:d6:70:e8:fe:96:4a:eb:18:61:f9:a7:ad:
                    c4:39:cb:07:5f:fe:60:7b:c0:2c:49:91:77:d5:f6:
                    c6:22:ef:b2:25:88:db:83:00:a6:4e:e0:0e:5f:ea:
                    d9:cf:66:04:3b:54:f9:dd:04:05:68:02:df:84:4b:
                    17:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:5D:8E:39:EF:E7:3D:42:BE:83:DA:D1:F3:70:8A:44:95:D5:39:97
            X509v3 Authority Key Identifier:
                keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:40:94:06:46:3e:8e:bd:09:52:42:bd:7f:7d:61:84:6b:be:
         84:a8:e1:fc:27:62:3d:47:35:65:94:b5:25:3e:83:a0:6d:32:
         bc:e5:67:a9:8f:65:04:ae:eb:e7:da:aa:58:8a:8e:2f:cc:14:
         6f:85:ff:7a:d2:c8:d1:27:b2:18:e4:83:74:0a:df:1e:c0:db:
         9f:83:aa:48:29:b5:ff:f8:f0:4c:f2:2f:c3:3b:b7:a0:b2:91:
         33:70:cf:85:2b:11:73:d4:e5:77:4f:9d:37:07:7d:da:d6:d7:
         f2:41:b8:9b:a3:b0:c2:20:3e:69:39:7e:5d:d4:4c:c9:6f:6b:
         e7:12:3e:e1:19:fa:87:91:e0:fa:b9:bd:4a:1e:95:54:1f:cc:
         77:4b:0a:1f:a4:11:5f:9f:47:02:6f:9a:4f:77:64:c1:f5:be:
         3a:0b:fd:ca:7e:19:d1:2d:16:3c:be:08:97:d7:18:3a:70:27:
         9d:11:0d:c0:f9:90:3d:38:9b:f2:6d:0f:2c:3d:16:47:f0:af:
         72:88:00:b3:36:c0:ed:28:26:22:1e:36:3d:c9:cc:6d:19:52:
         93:07:d3:9d:cd:b1:c7:78:d7:61:0e:2b:be:16:a2:5e:c2:c4:
         4b:b8:b0:c3:33:45:ee:96:09:ee:b5:cd:ce:02:22:19:c3:26:
         46:bb:69:a4
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTcyNzMxMTAvBgNVBAUTKEREQTQ5RjQxRjYxOEE1NUY5Q0E3Q0ZDNTVCQUVBN0I2
MTZEOTU3NjIwHhcNMjYwNzE3MDcxMDUxWhcNMjYwNzI0MDcxMDUxWjAYMRYwFAYD
VQQDEw02YTU5ZDU3Yy0yYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvSbdGnQhimLWIUx2XvYDGngcQ6BmO+aeABgQYaCVGGa3WheuPMSea9aYlp5n
pxsoJRdG/kT4Tflr40ATPeyxoHQ2lgYGG6t0l8qPzXwGxTM+q4lU9hIKAwDsmPGo
Q5nySJ7hE1+PXrOxsYHCgq3SKdkiv5raRE06yO5fZKoQWYgYIenOH/0W6JJrIVOO
T+6uz1qtxhwoMIcINcxkkC5kxRusvL0eJm4KhveaKuQ2gpKaM1QnJaI9vpRQpPaj
y/FhhyhQUnDWcOj+lkrrGGH5p63EOcsHX/5ge8AsSZF31fbGIu+yJYjbgwCmTuAO
X+rZz2YEO1T53QQFaALfhEsXGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJNdjjnv
5z1CvoPa0fNwikSV1TmXMB8GA1UdIwQYMBaAFN2kn0H2GKVfnKfPxVuup7YW2Vdi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzI3My9GQzUwNTAwRUU3
NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBWLWNwOF9GVzY2bnRoYlpW
MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYySS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NzI3My9GQzUwNTAwRUU3NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBW
LWNwOF9GVzY2bnRoYlpWMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAQ0CUBkY+jr0JUkK9f31hhGu+hKjh/CdiPUc1ZZS1JT6DoG0yvOVnqY9lBK7r
59qqWIqOL8wUb4X/etLI0SeyGOSDdArfHsDbn4OqSCm1//jwTPIvwzu3oLKRM3DP
hSsRc9Tld0+dNwd92tbX8kG4m6OwwiA+aTl+XdRMyW9r5xI+4Rn6h5Hg+rm9Sh6V
VB/Md0sKH6QRX59HAm+aT3dkwfW+Ogv9yn4Z0S0WPL4Il9cYOnAnnRENwPmQPTib
8m0PLD0WR/CvcogAszbA7SgmIh42PcnMbRlSkwfTnc2xx3jXYQ4rvhaiXsLES7iw
wzNF7pYJ7rXNzgIiGcMmRrtppA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:16:25 2026 by rpki-client