Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft
File:                     jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json)
Hash identifier:          HJRPJkr/SLD0eqXFcYJi7RH3+GsZjyHxXafuoWob3JE=
Subject key identifier:   19:F1:44:BF:89:18:A2:7B:7C:82:27:42:64:38:11:0B:52:12:B5:FC
Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B
Certificate issuer:       /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B
Certificate serial:       0166
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft
Manifest number:          015E
Signing time:             Fri 17 Jul 2026 06:05:06 +0000
Manifest this update:     Fri 17 Jul 2026 06:05:06 +0000
Manifest next update:     Fri 24 Jul 2026 06:05:06 +0000
Files and hashes:         1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: 2lfyijmJuNxOZDHWmH6sZIrv1FUkhKdXcS8dPHCHE6s=)
                          2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: qoNSrp1S5UFLz+pkwMGVW1W6xXhNXfIp8HVNYC4sZ1A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl
                          rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:05:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 358 (0x166)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B
        Validity
            Not Before: Jul 17 06:05:06 2026 GMT
            Not After : Jul 24 06:05:06 2026 GMT
        Subject: CN=6a59c612-2c28
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:54:94:93:82:93:78:a9:f7:6d:22:6d:1b:ec:
                    e0:99:2e:bf:ce:c1:b3:63:38:ab:bc:48:aa:2f:e6:
                    69:d9:b1:35:90:c2:ab:3f:07:b9:7f:f9:4d:10:33:
                    30:24:ee:f0:0d:31:8b:cb:0d:5a:da:63:03:92:36:
                    8a:0c:30:67:57:47:ae:38:6e:4f:75:93:86:fa:39:
                    7e:98:f1:92:15:71:db:4a:29:e1:c7:27:e9:c5:eb:
                    dc:46:0f:17:a2:fd:5c:3f:f0:fb:f1:36:65:3c:2c:
                    ff:53:78:74:29:58:d7:c0:29:f7:4a:f2:64:77:a2:
                    7f:eb:6b:ac:43:86:1c:5b:e7:b8:f7:08:3c:ee:ba:
                    3c:3a:ca:3b:4e:5d:e2:7c:b8:bd:75:1c:36:41:6c:
                    6c:40:fc:fd:ac:10:4d:64:1a:fe:55:cd:fb:cb:5a:
                    13:3f:9d:8b:3a:09:ce:b1:7f:fe:5e:a6:ca:0d:f7:
                    7e:fd:eb:e0:c4:ec:31:73:5d:09:ac:6d:dc:44:8c:
                    d2:6e:1e:2b:c1:2b:b1:d9:67:e6:dd:28:7e:73:0d:
                    a6:00:64:4d:08:2d:57:ed:82:ba:87:d9:ca:82:13:
                    e7:e8:1f:65:be:8d:ad:6e:6b:c4:af:ab:0b:12:45:
                    ab:bd:31:e5:a9:01:46:91:95:06:27:96:12:0b:9b:
                    95:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:F1:44:BF:89:18:A2:7B:7C:82:27:42:64:38:11:0B:52:12:B5:FC
            X509v3 Authority Key Identifier:
                keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:c8:52:c4:92:1f:d5:95:b3:42:e1:f8:71:64:7f:74:83:0f:
         c1:25:35:da:93:a0:94:a1:03:4e:7f:85:6e:ae:a1:27:c2:44:
         f1:1d:0f:2d:98:2d:ad:ed:7f:8f:04:0d:8e:a6:26:d4:6f:b3:
         27:d3:32:2e:01:07:21:8e:0f:ae:a8:e7:94:df:98:df:7d:3a:
         d8:1e:5c:7a:ed:fa:36:16:97:7a:48:7f:20:5b:dd:c1:40:a0:
         da:5a:bd:ad:89:c2:69:08:2e:11:f3:a8:41:47:06:8b:d1:7e:
         31:0b:7c:d6:94:a8:9a:6a:f0:8e:67:2a:30:ef:c8:c1:38:00:
         69:76:56:2a:17:f1:a1:3b:37:5e:1d:88:de:9b:e5:38:41:65:
         91:78:c9:1b:c1:73:fe:ba:ef:80:07:0f:57:5c:c0:ca:e6:a1:
         28:fb:d0:9a:b8:a3:a9:15:67:14:e7:11:92:cb:9d:dc:7f:13:
         93:57:96:44:80:a1:9b:2e:a3:db:e6:d3:31:7f:b7:d0:a7:6e:
         ab:2a:2d:39:23:5d:ca:5d:d2:42:c0:84:bc:7f:2e:be:d6:3b:
         af:b6:ec:f7:86:7d:8b:8f:66:21:65:bf:dc:cc:ad:83:3d:60:
         7a:58:28:2b:6f:d7:8a:89:89:b6:e5:4f:da:d9:1b:f6:25:1d:
         14:27:67:d3
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjBERTAxMTAvBgNVBAUTKDhFQTVCOTU2MzIyN0MyRTU4RDQzOEJDMTdCQTgyMjUw
NzU0MjQ0M0IwHhcNMjYwNzE3MDYwNTA2WhcNMjYwNzI0MDYwNTA2WjAYMRYwFAYD
VQQDEw02YTU5YzYxMi0yYzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvlSUk4KTeKn3bSJtG+zgmS6/zsGzYzirvEiqL+Zp2bE1kMKrPwe5f/lNEDMw
JO7wDTGLyw1a2mMDkjaKDDBnV0euOG5PdZOG+jl+mPGSFXHbSinhxyfpxevcRg8X
ov1cP/D78TZlPCz/U3h0KVjXwCn3SvJkd6J/62usQ4YcW+e49wg87ro8Oso7Tl3i
fLi9dRw2QWxsQPz9rBBNZBr+Vc37y1oTP52LOgnOsX/+XqbKDfd+/evgxOwxc10J
rG3cRIzSbh4rwSux2Wfm3Sh+cw2mAGRNCC1X7YK6h9nKghPn6B9lvo2tbmvEr6sL
EkWrvTHlqQFGkZUGJ5YSC5uVvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBnxRL+J
GKJ7fIInQmQ4EQtSErX8MB8GA1UdIwQYMBaAFI6luVYyJ8LljUOLwXuoIlB1QkQ7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMERFMC83MDQwQThFODZB
ODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1V05RNHZCZTZnaVVIVkNS
RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JEcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
MERFMC83MDQwQThFODZBODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1
V05RNHZCZTZnaVVIVkNSRHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEANchSxJIf1ZWzQuH4cWR/dIMPwSU12pOglKEDTn+Fbq6hJ8JE8R0PLZgtre1/
jwQNjqYm1G+zJ9MyLgEHIY4PrqjnlN+Y33062B5ceu36NhaXekh/IFvdwUCg2lq9
rYnCaQguEfOoQUcGi9F+MQt81pSommrwjmcqMO/IwTgAaXZWKhfxoTs3Xh2I3pvl
OEFlkXjJG8Fz/rrvgAcPV1zAyuahKPvQmrijqRVnFOcRksud3H8Tk1eWRIChmy6j
2+bTMX+30KduqyotOSNdyl3SQsCEvH8uvtY7r7bs94Z9i49mIWW/3Mytgz1gelgo
K2/XiomJtuVP2tkb9iUdFCdn0w==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:36 2026 by rpki-client