Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft
File:                     OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json)
Hash identifier:          YcO0YU6i0LNNaerMD/N0HKxu2Pik48SyyfUn+xq62A4=
Subject key identifier:   1A:2E:34:A3:57:C3:CB:B6:A0:74:77:D3:42:DB:FB:39:4F:A2:2D:05
Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13
Certificate issuer:       /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613
Certificate serial:       015F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft
Manifest number:          0157
Signing time:             Thu 09 Jul 2026 06:51:47 +0000
Manifest this update:     Thu 09 Jul 2026 06:51:46 +0000
Manifest next update:     Thu 16 Jul 2026 06:51:46 +0000
Files and hashes:         1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: irH7OaxkcDtneOXpKYwpWXtSwSgYGIlsX2Ot/VNzqTg=)
                          2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: 1cWKe61JXoqpcmn6lNJya/Zcn9d/497NYBSEDuJwXJY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl
                          rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 06:51:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 351 (0x15f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613
        Validity
            Not Before: Jul  9 06:51:46 2026 GMT
            Not After : Jul 16 06:51:46 2026 GMT
        Subject: CN=6a4f4503-1696
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:ee:8b:9c:18:f1:7a:88:a0:82:c7:89:de:d7:
                    81:e4:31:81:00:7f:f0:99:a1:76:2d:a0:3a:9e:c8:
                    05:de:4d:9a:fe:4f:d8:64:d9:6a:c8:1e:dc:9d:d3:
                    45:23:81:f6:c9:a1:52:27:ee:aa:c0:d6:73:09:65:
                    b3:d6:27:9d:7b:65:cb:01:e6:a9:32:e7:70:86:0f:
                    eb:f6:47:0f:b0:e7:a2:05:7f:33:f6:31:74:e5:23:
                    69:ed:ec:db:b5:37:b4:1d:08:f1:29:5a:3a:6b:60:
                    77:66:75:bd:da:73:71:61:49:67:67:0a:68:80:7e:
                    d0:06:74:31:3a:08:f8:f2:8c:b6:a3:14:e7:d4:4b:
                    db:ad:e1:c2:8b:b8:24:14:34:5d:90:0c:77:d9:6e:
                    74:b6:50:39:96:ea:d4:5a:3f:a9:79:8c:98:38:62:
                    9b:8d:92:ec:98:7f:76:cf:a5:c0:2e:3e:24:b6:7c:
                    f5:89:d1:cc:88:2d:aa:11:bd:e2:a6:8d:a7:d8:cc:
                    77:85:d5:07:63:00:aa:8c:50:77:da:30:63:ba:6a:
                    09:24:80:d2:c0:cf:5e:74:29:e5:30:09:e5:b9:7d:
                    3b:54:bf:40:95:3e:30:0f:c2:f3:53:5e:dd:b5:11:
                    b7:c9:df:2e:a9:e6:1c:36:ea:70:68:84:91:01:59:
                    8b:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:2E:34:A3:57:C3:CB:B6:A0:74:77:D3:42:DB:FB:39:4F:A2:2D:05
            X509v3 Authority Key Identifier:
                keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:9a:78:44:32:18:c3:d5:11:04:ef:3e:30:f6:ed:14:69:22:
         95:8f:c2:a6:83:14:03:f8:45:59:94:94:3e:78:96:84:46:da:
         bf:48:d1:85:cd:fa:4a:72:15:9f:9f:23:c6:80:40:d1:27:3f:
         b1:92:a7:a5:18:32:5e:59:a2:7e:5a:05:d1:85:07:e5:f0:6d:
         e9:6d:fe:62:89:bd:76:61:7c:1e:d9:2a:ea:97:bc:0f:bd:77:
         57:bf:b4:d4:ad:f6:e4:dd:25:f5:fb:2a:a4:d3:5c:af:d1:7c:
         42:d3:72:53:3b:f4:20:61:d7:81:96:22:9e:13:f8:8c:d5:4a:
         7f:1a:3f:05:68:06:24:ea:a8:a2:43:85:b8:2a:c7:68:23:bf:
         a5:2b:bd:3e:66:72:d2:8f:bf:a8:fc:5f:c5:24:70:15:f5:d8:
         d7:49:3c:eb:ab:c2:8e:1d:a6:20:18:64:5a:77:2b:18:3d:47:
         10:54:c8:db:52:90:a2:78:c9:46:43:31:a6:01:1e:d9:f1:3c:
         a9:9c:eb:a3:cb:41:c8:d2:4f:5b:b3:63:f9:30:9f:f9:cd:7e:
         02:50:62:d7:7b:8c:66:d8:e6:cc:07:ed:31:5f:60:cb:cb:03:
         b4:cd:39:29:73:b0:27:36:bd:03:2f:82:b2:fb:dd:1a:21:42:
         10:45:7a:e0
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz
QkVCNTY2MTMwHhcNMjYwNzA5MDY1MTQ2WhcNMjYwNzE2MDY1MTQ2WjAYMRYwFAYD
VQQDEw02YTRmNDUwMy0xNjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAru6LnBjxeoiggseJ3teB5DGBAH/wmaF2LaA6nsgF3k2a/k/YZNlqyB7cndNF
I4H2yaFSJ+6qwNZzCWWz1iede2XLAeapMudwhg/r9kcPsOeiBX8z9jF05SNp7ezb
tTe0HQjxKVo6a2B3ZnW92nNxYUlnZwpogH7QBnQxOgj48oy2oxTn1EvbreHCi7gk
FDRdkAx32W50tlA5lurUWj+peYyYOGKbjZLsmH92z6XALj4ktnz1idHMiC2qEb3i
po2n2Mx3hdUHYwCqjFB32jBjumoJJIDSwM9edCnlMAnluX07VL9AlT4wD8LzU17d
tRG3yd8uqeYcNupwaISRAVmLOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBouNKNX
w8u2oHR300Lb+zlPoi0FMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF
ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa
aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz
dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEArpp4RDIYw9URBO8+MPbtFGkilY/CpoMUA/hFWZSUPniWhEbav0jRhc36SnIV
n58jxoBA0Sc/sZKnpRgyXlmifloF0YUH5fBt6W3+Yom9dmF8Htkq6pe8D713V7+0
1K325N0l9fsqpNNcr9F8QtNyUzv0IGHXgZYinhP4jNVKfxo/BWgGJOqookOFuCrH
aCO/pSu9PmZy0o+/qPxfxSRwFfXY10k866vCjh2mIBhkWncrGD1HEFTI21KQonjJ
RkMxpgEe2fE8qZzro8tByNJPW7Nj+TCf+c1+AlBi13uMZtjmzAftMV9gy8sDtM05
KXOwJza9Ay+CsvvdGiFCEEV64A==
-----END CERTIFICATE-----
Generated at Fri Jul 10 16:37:19 2026 by rpki-client