Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft
File:                     LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json)
Hash identifier:          Yz7ddhBFBZGLxNXkpwZDo5OUnxlY+sYNbvMvYyxX2uA=
Subject key identifier:   FF:F0:B3:E3:7D:60:7C:CE:3E:CE:BE:43:70:6D:7F:D2:50:86:5B:35
Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
Certificate issuer:       /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Certificate serial:       0452
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft
Manifest number:          0393
Signing time:             Fri 17 Jul 2026 02:33:03 +0000
Manifest this update:     Fri 17 Jul 2026 02:33:03 +0000
Manifest next update:     Fri 24 Jul 2026 02:33:03 +0000
Files and hashes:         1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: uNxx3Zx7VU0wNwAICLxfhS+i3ZZct5izxE1Fw+9BVh0=)
                          2: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: m+YMSjzVUuc73W6hTfDFbMi0+yUuBUpgBYQofvaW6Ow=)
                          3: 430E4E387CC311F0A55B2081C4F9AE02.roa (hash: b357DS6un3095ihmJG/1qzltik8hgTz2G2EsqlSGWDw=)
                          4: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: P6k6ZFgyd5A01gmUt+7pAxzOrjslbaS8z1K2UjgCjog=)
                          5: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: NNYpj3betzAmhzyg69sOsd+IkKaVWYtVMEooK8d8Jhg=)
                          6: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: 2rNOWeXpsmPPeo00gkw3XFog2FCfRkn+qinn6OJcsSU=)
                          7: 2DA3F18A7AF911F18AE672997DA30FBC.roa (hash: AgwFvLtZoYWdmQU4R/em0WdJptUJUnWElCr04Q2ck8Y=)
                          8: 0B7CEEB07CC911F08411627BC4F9AE02.roa (hash: 6jds39GpIYDWTUvVrxm863ItczOC5PjSQTRWLznhaMU=)
                          9: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: YySN/OEFOesvLCn2GkCFn3w0IA8S3T8IMu+C8KUfxLg=)
                          10: E879EE7C144111EFB247B936C4F9AE02.roa (hash: ZeAGLGAA4h+CcuwE4PZxgCpOScaMQUl6R6qDfBF+VLY=)
                          11: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: neeN01r5VZ4YRUPHtpZwodLJIVHlwzKgdZUXHbEsINA=)
                          12: FFCFFCFC756411F1BE4724178AA30FBC.roa (hash: UKyM2NDw4Dv9pt31Uytgy4jJBdfqpHkrySg9AeufDvE=)
                          13: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: HJTu/QaBBUaGGzi25rXbR60EpAJ8f6RdGFNR0tCCt90=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl
                          rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 02:33:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1106 (0x452)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
        Validity
            Not Before: Jul 17 02:33:03 2026 GMT
            Not After : Jul 24 02:33:03 2026 GMT
        Subject: CN=6a59945f-bd31
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:69:e8:7e:d0:c5:ac:66:1d:82:7a:e4:65:b3:
                    53:1c:a6:92:ac:bc:69:ce:ff:9b:85:b6:c6:af:ff:
                    a7:7b:dc:bc:f2:b5:9b:55:87:61:92:ae:0c:37:08:
                    22:34:e8:97:7c:0d:62:62:24:6a:44:33:3d:76:05:
                    d4:cc:a5:0a:73:2f:b9:7a:78:b2:de:7c:ee:5b:28:
                    fa:70:6f:e6:f5:f1:76:96:c9:86:8e:a8:0e:b7:94:
                    10:b3:d4:1c:d4:70:f5:c9:0b:b5:23:cd:f2:48:12:
                    55:97:ba:a0:a4:98:06:ae:b4:0c:56:06:fe:c6:89:
                    59:15:46:d4:f9:ab:5c:e0:d0:26:a0:05:ed:c2:eb:
                    35:84:09:6b:1c:4b:b0:79:a6:d0:3f:c5:33:b5:71:
                    d8:0b:ac:0b:35:9b:e8:88:43:8d:63:ac:c8:72:9f:
                    c9:49:6d:c3:db:71:fd:7f:a4:9c:42:ec:d9:f2:95:
                    d4:89:26:1d:e6:5b:a6:65:b6:71:90:a0:a0:ff:d6:
                    7f:53:f4:b9:22:9f:5d:35:57:4f:ce:c8:68:23:0f:
                    10:f6:87:f0:be:8b:4e:d0:bb:72:ea:9d:b9:ab:29:
                    ad:ff:8c:2e:f8:43:bb:0f:d2:65:85:4a:50:b8:71:
                    0a:59:83:63:d3:93:b3:26:10:79:d5:df:a7:c9:94:
                    86:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:F0:B3:E3:7D:60:7C:CE:3E:CE:BE:43:70:6D:7F:D2:50:86:5B:35
            X509v3 Authority Key Identifier:
                keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:d1:ec:b5:46:d3:7b:c5:9a:4f:02:e4:c9:db:83:73:71:ca:
         84:41:cb:de:b9:7e:1d:4a:33:0f:21:88:96:1a:f5:51:c2:61:
         11:fe:cd:37:f3:ee:96:66:bd:27:47:66:84:14:75:d1:41:3c:
         c3:93:23:69:80:07:82:d5:78:ef:43:93:76:50:d1:9e:30:41:
         c4:11:36:8f:c7:6c:93:1e:04:2c:da:95:dc:a8:6d:6e:6b:95:
         03:1b:51:2f:5d:ae:5d:9a:f4:43:1b:7f:9e:86:99:a4:71:9b:
         89:c7:f9:2c:0d:e1:49:b8:88:4f:37:42:f8:35:6d:36:75:31:
         96:f7:ab:2c:f9:8c:d3:09:b3:1b:16:f0:69:f6:a2:f6:cb:c0:
         d0:61:34:0e:09:bb:b6:95:8a:57:34:24:72:0c:05:86:f4:6e:
         c8:4a:b2:41:f6:6b:40:16:55:fd:97:80:9e:6c:9e:a1:db:dc:
         a5:6b:18:2d:fb:05:67:fc:4c:6d:8a:38:18:16:d2:b3:1b:40:
         80:87:10:26:40:4c:76:45:6f:29:42:8f:d0:b0:a1:11:5c:9f:
         ab:06:01:f0:81:e1:4b:e9:01:0a:f3:30:2b:a7:da:0e:dc:2e:
         c0:61:86:cf:af:f1:c1:94:45:99:3f:bc:e1:45:24:9d:d0:4d:
         a2:9c:72:45
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5
Njk4RkU2MzgwHhcNMjYwNzE3MDIzMzAzWhcNMjYwNzI0MDIzMzAzWjAYMRYwFAYD
VQQDEw02YTU5OTQ1Zi1iZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwGnoftDFrGYdgnrkZbNTHKaSrLxpzv+bhbbGr/+ne9y88rWbVYdhkq4MNwgi
NOiXfA1iYiRqRDM9dgXUzKUKcy+5eniy3nzuWyj6cG/m9fF2lsmGjqgOt5QQs9Qc
1HD1yQu1I83ySBJVl7qgpJgGrrQMVgb+xolZFUbU+atc4NAmoAXtwus1hAlrHEuw
eabQP8UztXHYC6wLNZvoiEONY6zIcp/JSW3D23H9f6ScQuzZ8pXUiSYd5lumZbZx
kKCg/9Z/U/S5Ip9dNVdPzshoIw8Q9ofwvotO0Lty6p25qymt/4wu+EO7D9JlhUpQ
uHEKWYNj05OzJhB51d+nyZSG+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP/ws+N9
YHzOPs6+Q3Btf9JQhls1MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx
ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1
amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx
blVCSTFENEVzekNXbVA1amcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAB9HstUbTe8WaTwLkyduDc3HKhEHL3rl+HUozDyGIlhr1UcJhEf7NN/Pulma9
J0dmhBR10UE8w5MjaYAHgtV470OTdlDRnjBBxBE2j8dskx4ELNqV3KhtbmuVAxtR
L12uXZr0Qxt/noaZpHGbicf5LA3hSbiITzdC+DVtNnUxlverLPmM0wmzGxbwafai
9svA0GE0Dgm7tpWKVzQkcgwFhvRuyEqyQfZrQBZV/ZeAnmyeodvcpWsYLfsFZ/xM
bYo4GBbSsxtAgIcQJkBMdkVvKUKP0LChEVyfqwYB8IHhS+kBCvMwK6faDtwuwGGG
z6/xwZRFmT+84UUkndBNopxyRQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 02:28:43 2026 by rpki-client