Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft
File:                     44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json)
Hash identifier:          fGZKXTQmC29wNSk4k/h5k16Xc5Lu/JRUmRPdzO57Uww=
Subject key identifier:   A0:BC:9D:D0:B2:25:DD:FC:89:D2:92:71:6F:F7:64:81:52:AC:A6:DA
Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90
Certificate issuer:       /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490
Certificate serial:       0123
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft
Manifest number:          011F
Signing time:             Fri 17 Jul 2026 06:57:12 +0000
Manifest this update:     Fri 17 Jul 2026 06:57:11 +0000
Manifest next update:     Fri 24 Jul 2026 06:57:11 +0000
Files and hashes:         1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: pheTwu4Odnjo3mw1MTt1fiMcGczOtO9UIz13ufVGQJs=)
                          2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: 7luqkxdAYhFDQ1cLdVYDxi4/1gyDCpg9yV33Rku64hI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl
                          rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:57:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 291 (0x123)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490
        Validity
            Not Before: Jul 17 06:57:11 2026 GMT
            Not After : Jul 24 06:57:11 2026 GMT
        Subject: CN=6a59d248-d04b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:e8:b5:51:6a:f6:09:23:0b:f4:fa:9b:e0:eb:
                    da:df:01:7e:3b:14:16:f3:9d:a4:ab:6b:38:ce:86:
                    17:3f:03:5b:b9:dd:9e:b7:d7:64:28:92:80:db:b3:
                    e5:50:9c:db:ee:e5:6f:dd:30:d2:a6:51:cc:07:4f:
                    09:51:13:63:2d:0a:24:ac:61:5f:31:fd:53:2b:f0:
                    15:a1:ed:c6:10:64:28:28:49:eb:33:79:7d:76:19:
                    c3:0c:eb:df:97:c2:21:20:1b:be:14:f5:52:d2:02:
                    1f:ed:d1:fc:33:e4:83:ff:75:9b:1b:05:27:a1:73:
                    f5:8a:43:37:5d:ee:91:2c:61:2e:01:a1:a8:dc:89:
                    f8:ed:1d:0e:34:de:62:01:0d:c6:1f:e9:33:cd:14:
                    88:6d:de:13:c3:8b:d9:8e:29:54:2c:c0:ac:a2:a4:
                    e3:c9:cb:31:30:64:20:75:83:ae:9d:4f:53:49:05:
                    0b:ac:94:97:c2:5e:e0:5f:ca:43:a5:b9:e5:da:2a:
                    23:bd:e5:16:95:0d:a2:65:a0:62:b7:84:e5:1f:f4:
                    05:ca:bf:13:b8:27:d3:6e:3b:35:b8:6a:d8:82:e6:
                    33:ca:1d:b8:01:db:05:1e:6e:ff:4c:56:09:13:4a:
                    a0:72:e5:31:94:da:03:cc:f6:b2:e1:b1:47:aa:93:
                    a1:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:BC:9D:D0:B2:25:DD:FC:89:D2:92:71:6F:F7:64:81:52:AC:A6:DA
            X509v3 Authority Key Identifier:
                keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:55:45:58:87:a5:b7:5b:e2:8a:ae:2d:82:cf:62:70:3c:e8:
         6e:18:a4:41:64:98:cd:a8:09:f8:6a:59:0f:20:ef:62:1d:3d:
         d0:a5:2f:40:59:08:0f:d4:09:4e:5b:34:a1:53:46:ac:c3:d3:
         a9:94:85:0a:92:07:8e:e8:64:ed:cf:15:ac:3a:27:d7:68:3b:
         1d:5f:15:94:ba:0e:8d:20:b1:f6:dd:0f:07:25:69:ca:53:e2:
         e4:39:3b:0c:9e:f6:a2:29:4b:96:66:8b:e3:50:c2:64:b5:70:
         17:93:17:2c:41:87:da:09:2e:c1:13:4d:a2:bb:70:f1:3c:9e:
         f3:d7:bb:7e:28:a3:e2:c9:25:00:f9:94:4f:e9:c9:5d:93:06:
         29:f3:58:d1:2b:74:ff:41:00:1c:19:1b:82:b0:bb:df:6c:52:
         19:2e:b1:aa:c6:b7:ca:4d:24:a7:ef:f7:47:17:ba:b0:5a:77:
         2a:ca:87:17:fe:09:88:5e:c2:51:11:ef:ff:c3:81:b6:c0:57:
         7d:d2:ad:45:39:22:c4:46:61:41:be:08:ce:0d:9f:b8:c4:a2:
         52:7e:42:ac:15:6b:a1:82:45:a1:50:c6:aa:9c:f6:62:cb:95:
         d0:9b:76:26:33:c3:7e:c2:85:f7:dc:27:10:db:9c:f3:38:28:
         34:a9:37:68
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUFDNEIxMTAvBgNVBAUTKEUzOEE1RURFMTk2OEM5Mzc1RTUxNTUxRkFFOTg4ODhB
MEJCNTQ0OTAwHhcNMjYwNzE3MDY1NzExWhcNMjYwNzI0MDY1NzExWjAYMRYwFAYD
VQQDEw02YTU5ZDI0OC1kMDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4ui1UWr2CSML9Pqb4Ova3wF+OxQW852kq2s4zoYXPwNbud2et9dkKJKA27Pl
UJzb7uVv3TDSplHMB08JURNjLQokrGFfMf1TK/AVoe3GEGQoKEnrM3l9dhnDDOvf
l8IhIBu+FPVS0gIf7dH8M+SD/3WbGwUnoXP1ikM3Xe6RLGEuAaGo3In47R0ONN5i
AQ3GH+kzzRSIbd4Tw4vZjilULMCsoqTjycsxMGQgdYOunU9TSQULrJSXwl7gX8pD
pbnl2iojveUWlQ2iZaBit4TlH/QFyr8TuCfTbjs1uGrYguYzyh24AdsFHm7/TFYJ
E0qgcuUxlNoDzPay4bFHqpOhlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKC8ndCy
Jd38idKScW/3ZIFSrKbaMB8GA1UdIwQYMBaAFOOKXt4ZaMk3XlFVH66YiIoLtUSQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUM0Qi9ERTNGODg5QUNE
N0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lUZGVVVlVmcnBpSWlndTFS
SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJKQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
QUM0Qi9ERTNGODg5QUNEN0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lU
ZGVVVlVmcnBpSWlndTFSSkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEABVVFWIelt1viiq4tgs9icDzobhikQWSYzagJ+GpZDyDvYh090KUvQFkID9QJ
Tls0oVNGrMPTqZSFCpIHjuhk7c8VrDon12g7HV8VlLoOjSCx9t0PByVpylPi5Dk7
DJ72oilLlmaL41DCZLVwF5MXLEGH2gkuwRNNortw8Tye89e7fiij4sklAPmUT+nJ
XZMGKfNY0St0/0EAHBkbgrC732xSGS6xqsa3yk0kp+/3Rxe6sFp3KsqHF/4JiF7C
URHv/8OBtsBXfdKtRTkixEZhQb4Izg2fuMSiUn5CrBVroYJFoVDGqpz2YsuV0Jt2
JjPDfsKF99wnENuc8zgoNKk3aA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:46 2026 by rpki-client