Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft
File:                     iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json)
Hash identifier:          6R7iyuvPQ8I2nbXnyDXL1xuYGLSKpDuBAtFzgRCs9Hk=
Subject key identifier:   E4:A1:E7:BA:DD:BF:2A:84:CA:C0:C1:E0:11:9F:25:9E:3C:CB:AF:B7
Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08
Certificate issuer:       /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608
Certificate serial:       7F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft
Manifest number:          7C
Signing time:             Fri 17 Jul 2026 09:00:07 +0000
Manifest this update:     Fri 17 Jul 2026 09:00:06 +0000
Manifest next update:     Fri 24 Jul 2026 09:00:06 +0000
Files and hashes:         1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: bEqDAHjGaN2JaM/a/2JwgneRNuRpxW3x5BGawmbaPBM=)
                          2: 74C3FC2413B911F1B7CEB625083D8C67.roa (hash: P4H5FeCoBASYrayJLn/hEkJQo4s7Z0+nN2dTkoyBEgM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl
                          rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 09:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 127 (0x7f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608
        Validity
            Not Before: Jul 17 09:00:06 2026 GMT
            Not After : Jul 24 09:00:06 2026 GMT
        Subject: CN=6a59ef17-218c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:05:87:64:88:8b:07:1b:e7:d7:93:7d:d7:f6:
                    98:d3:35:9d:b5:3f:9a:33:e7:a3:d1:80:0f:8d:be:
                    7a:74:5c:e5:3e:2e:e0:55:d3:3e:be:f4:52:8a:3a:
                    82:27:a8:f8:0e:c9:dd:38:b8:51:a5:63:1c:f0:50:
                    a9:2d:68:88:69:bd:bd:b7:3c:69:76:69:ef:93:ce:
                    41:06:0c:cd:c6:a3:0f:22:a2:21:1a:4a:6a:3d:28:
                    d7:a9:89:cb:46:79:3c:4d:b9:5b:02:50:61:b7:6a:
                    95:84:93:cf:da:3f:86:ac:55:ec:dc:9e:f7:ab:db:
                    9c:a8:f1:46:bd:c3:8c:77:06:b2:a8:1d:2b:da:0d:
                    02:cb:54:81:97:3a:7e:35:41:48:5b:cb:91:fd:ad:
                    52:44:f5:9f:38:bf:47:fa:af:d2:a7:ad:76:b1:1a:
                    86:91:de:d0:2f:50:b7:ed:c4:e4:a4:f6:b2:20:56:
                    71:2f:d9:7a:21:c4:2c:e8:d9:70:bd:81:ee:ef:78:
                    fb:de:d7:e2:43:56:1f:21:36:3d:35:cb:53:b1:79:
                    0e:93:42:21:f7:39:81:73:65:94:e9:a6:4c:9c:46:
                    3a:61:72:b4:3f:d7:91:11:5c:1a:bf:d7:1a:b3:1c:
                    04:dd:b0:91:c5:77:55:6b:45:71:de:a3:64:ab:d3:
                    65:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:A1:E7:BA:DD:BF:2A:84:CA:C0:C1:E0:11:9F:25:9E:3C:CB:AF:B7
            X509v3 Authority Key Identifier:
                keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:26:68:fd:e5:1c:06:94:01:ff:c7:5b:e0:6a:0a:61:35:74:
         cd:4d:41:83:e9:17:38:35:d6:e8:44:7a:a0:60:86:9c:15:6c:
         b5:15:c3:26:f7:e6:13:f3:84:ff:ed:ed:1d:34:1a:e4:c8:68:
         76:2b:48:c9:71:fd:a5:88:a7:64:f5:ff:c5:7c:c9:27:2d:09:
         36:10:61:a3:85:1d:4e:79:7b:60:72:6f:ed:a1:d0:71:24:43:
         76:3b:3f:9c:10:3e:73:10:fe:89:e2:ba:20:a9:79:0e:a8:07:
         1e:5a:cb:20:b6:00:9f:00:b2:a4:f4:d6:d9:8a:47:19:1a:a3:
         b7:0a:c4:7d:88:16:30:6a:96:b4:dc:84:3f:bd:5c:f8:d2:3b:
         9e:08:a6:41:15:a6:0f:17:68:7c:f7:cc:77:a6:da:a8:1b:ee:
         92:1e:27:cf:12:b9:a7:bc:80:d1:fb:c4:01:9e:e0:68:d9:df:
         af:87:37:55:76:c1:c9:f7:4a:e0:87:59:6d:ca:a2:de:d4:89:
         07:83:d8:4e:92:d0:06:6b:d9:36:59:ca:e3:74:0f:53:2d:c6:
         bf:eb:7c:32:99:7a:82:24:d5:10:dd:2d:f2:de:70:0d:ae:ad:
         dd:44:26:01:01:2a:82:5a:65:87:fd:69:41:4b:2f:80:05:8b:
         27:77:36:51
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC
NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC
M0E3QTYwODAeFw0yNjA3MTcwOTAwMDZaFw0yNjA3MjQwOTAwMDZaMBgxFjAUBgNV
BAMTDTZhNTllZjE3LTIxOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDFBYdkiIsHG+fXk33X9pjTNZ21P5oz56PRgA+Nvnp0XOU+LuBV0z6+9FKKOoIn
qPgOyd04uFGlYxzwUKktaIhpvb23PGl2ae+TzkEGDM3Gow8ioiEaSmo9KNepictG
eTxNuVsCUGG3apWEk8/aP4asVezcnver25yo8Ua9w4x3BrKoHSvaDQLLVIGXOn41
QUhby5H9rVJE9Z84v0f6r9KnrXaxGoaR3tAvULftxOSk9rIgVnEv2XohxCzo2XC9
ge7vePve1+JDVh8hNj01y1OxeQ6TQiH3OYFzZZTppkycRjphcrQ/15ERXBq/1xqz
HATdsJHFd1VrRXHeo2Sr02VzAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU5KHnut2/
KoTKwMHgEZ8lnjzLr7cwHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB
RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn
Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2
QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm
Q21zdDMxTmFJaExPbnBnZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQBhJmj95RwGlAH/x1vgagphNXTNTUGD6Rc4NdboRHqgYIacFWy1FcMm9+YT84T/
7e0dNBrkyGh2K0jJcf2liKdk9f/FfMknLQk2EGGjhR1OeXtgcm/todBxJEN2Oz+c
ED5zEP6J4rogqXkOqAceWssgtgCfALKk9NbZikcZGqO3CsR9iBYwapa03IQ/vVz4
0jueCKZBFaYPF2h898x3ptqoG+6SHifPErmnvIDR+8QBnuBo2d+vhzdVdsHJ90rg
h1ltyqLe1IkHg9hOktAGa9k2WcrjdA9TLca/63wymXqCJNUQ3S3y3nANrq3dRCYB
ASqCWmWH/WlBSy+ABYsndzZR
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:23:27 2026 by rpki-client