Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
File:                     7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json)
Hash identifier:          fQX5cBKTZQMEe66aN1zrQYQ1RGmMQp78YqaWIWOLj6w=
Subject key identifier:   47:BE:DE:F0:AC:35:8C:C4:EA:A9:F9:89:3C:BC:81:E4:CA:0A:BD:6A
Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40
Certificate issuer:       /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
Certificate serial:       02AA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
Manifest number:          02A1
Signing time:             Sun 05 Jul 2026 02:10:34 +0000
Manifest this update:     Sun 05 Jul 2026 02:10:33 +0000
Manifest next update:     Sun 12 Jul 2026 02:10:33 +0000
Files and hashes:         1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: jihELdvc+G42lOsRjotq4Mg+Jb9nORbde4pgEIbIfBU=)
                          2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl
                          rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 02:10:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 682 (0x2aa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
        Validity
            Not Before: Jul  5 02:10:33 2026 GMT
            Not After : Jul 12 02:10:33 2026 GMT
        Subject: CN=6a49bd19-4a9b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:75:c2:45:0f:89:93:28:ae:67:1d:fd:37:7d:
                    a9:a1:e3:67:c9:68:52:12:c7:74:e5:f6:c8:49:ed:
                    59:af:20:d2:55:62:6e:1e:d1:13:0a:78:4f:62:cb:
                    40:9a:f6:d4:67:5e:cc:d1:d7:e1:ea:f9:fe:b2:1b:
                    c0:2f:ba:26:bc:d1:71:66:f9:4c:9a:b3:86:f5:7a:
                    93:41:84:82:06:77:ef:3d:75:e6:4c:bc:8f:3c:78:
                    f0:da:cc:c4:b8:66:71:e2:21:c1:17:b3:9b:de:4e:
                    9e:e0:56:47:88:ca:25:22:5d:29:6e:e6:07:30:dd:
                    84:10:86:e4:5f:e9:a3:19:fa:a1:e8:0b:4a:91:6c:
                    ff:fc:53:5d:f8:8c:b7:bc:7e:6e:a0:24:b2:65:b0:
                    65:b9:20:a4:06:c0:d1:66:57:9f:fe:ca:0c:f5:4a:
                    e9:35:e5:20:93:20:43:18:c8:b3:fd:4d:af:2a:e0:
                    7a:00:e4:e6:2e:07:98:ff:4c:eb:be:d4:56:a3:d3:
                    1c:f5:c7:b8:a1:e6:4b:c1:c7:84:93:b5:6f:57:a3:
                    53:43:31:38:1e:0d:34:86:f0:9d:3c:eb:6a:75:44:
                    58:00:57:8c:71:9e:f6:99:73:d0:a6:d1:82:a7:87:
                    31:61:ac:b4:c3:96:ac:ad:8f:39:41:1f:ab:3a:11:
                    f1:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:BE:DE:F0:AC:35:8C:C4:EA:A9:F9:89:3C:BC:81:E4:CA:0A:BD:6A
            X509v3 Authority Key Identifier:
                keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:d6:51:34:7b:6b:84:b0:93:b6:78:b9:8f:f9:33:d1:51:fd:
         8d:fc:5b:f0:bd:c3:91:91:a7:2c:7c:33:cf:98:cd:b1:57:91:
         37:42:d6:e9:1a:a5:f9:7b:bf:79:f0:fb:5a:88:33:48:11:ba:
         10:0f:85:3e:69:41:08:e8:89:3a:c4:26:02:f1:c0:37:41:1e:
         69:2c:6b:b1:9c:55:85:1b:b9:58:9e:20:9c:d7:56:61:80:ea:
         8c:1f:01:74:9a:2b:47:d9:d9:1d:99:3d:76:dc:53:62:fd:3b:
         f1:af:c6:63:71:18:ee:a7:9d:e5:53:7b:14:3f:e0:a9:15:97:
         62:16:10:bd:17:d8:d6:0e:97:f0:9f:ee:70:e5:6a:6b:aa:ca:
         da:60:12:01:66:e7:60:98:ef:f2:c7:76:a1:a0:03:f2:99:43:
         b3:41:83:81:23:89:05:36:e3:2a:ac:76:61:c3:ab:4c:6f:72:
         74:9f:bf:18:46:a3:22:e8:a8:4d:29:1f:d6:27:fc:51:7b:fb:
         20:ca:f7:3c:89:b1:8f:8d:fc:0a:14:86:4a:c0:fa:b4:6f:8d:
         85:11:e5:d0:7e:ac:3a:51:c9:24:47:00:ad:28:f5:85:0c:cf:
         7d:e0:81:bc:1e:dd:54:73:b5:a0:75:31:11:3a:5e:05:cc:d7:
         20:56:0a:a8
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG
M0E3MDRDNDAwHhcNMjYwNzA1MDIxMDMzWhcNMjYwNzEyMDIxMDMzWjAYMRYwFAYD
VQQDEw02YTQ5YmQxOS00YTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAonXCRQ+JkyiuZx39N32poeNnyWhSEsd05fbISe1ZryDSVWJuHtETCnhPYstA
mvbUZ17M0dfh6vn+shvAL7omvNFxZvlMmrOG9XqTQYSCBnfvPXXmTLyPPHjw2szE
uGZx4iHBF7Ob3k6e4FZHiMolIl0pbuYHMN2EEIbkX+mjGfqh6AtKkWz//FNd+Iy3
vH5uoCSyZbBluSCkBsDRZlef/soM9UrpNeUgkyBDGMiz/U2vKuB6AOTmLgeY/0zr
vtRWo9Mc9ce4oeZLwceEk7VvV6NTQzE4Hg00hvCdPOtqdURYAFeMcZ72mXPQptGC
p4cxYay0w5asrY85QR+rOhHxYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEe+3vCs
NYzE6qn5iTy8geTKCr1qMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD
NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU
RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND
cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAZdZRNHtrhLCTtni5j/kz0VH9jfxb8L3DkZGnLHwzz5jNsVeRN0LW6Rql+Xu/
efD7WogzSBG6EA+FPmlBCOiJOsQmAvHAN0EeaSxrsZxVhRu5WJ4gnNdWYYDqjB8B
dJorR9nZHZk9dtxTYv078a/GY3EY7qed5VN7FD/gqRWXYhYQvRfY1g6X8J/ucOVq
a6rK2mASAWbnYJjv8sd2oaAD8plDs0GDgSOJBTbjKqx2YcOrTG9ydJ+/GEajIuio
TSkf1if8UXv7IMr3PImxj438ChSGSsD6tG+NhRHl0H6sOlHJJEcArSj1hQzPfeCB
vB7dVHO1oHUxETpeBczXIFYKqA==
-----END CERTIFICATE-----
Generated at Sun Jul 5 23:52:51 2026 by rpki-client