Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft
File:                     mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft (raw, json)
Hash identifier:          Qt0dP7A0j9KV0naOigIm5mRO8XuWF9cXGOMtaz0sBrU=
Subject key identifier:   41:20:B0:B4:B0:5E:39:38:13:7A:E4:AE:2B:6F:4B:55:73:19:63:BB
Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67
Certificate issuer:       /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867
Certificate serial:       0B7A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft
Manifest number:          0B30
Signing time:             Tue 30 Jun 2026 19:50:43 +0000
Manifest this update:     Tue 30 Jun 2026 19:50:43 +0000
Manifest next update:     Tue 07 Jul 2026 19:50:43 +0000
Files and hashes:         1: mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl (hash: +XoG+hUqEGct9tNWtlWX6JkfjPMB45HFyUjrWgs0qT8=)
                          2: 8B083190C9DC11EE8B24C55EC4F9AE02.roa (hash: FFPC/GmMsZAGnYI1MxUTiojQXUXpV7bsbNkgwvbEEh0=)
                          3: BACC498C9EFC11EC856FCB09C4F9AE02.roa (hash: 9sxR8CYFCyJQExW8lI4y1fZzjOTHx0uRGcx0+QALp7E=)
                          4: 011CBE6CDF8911ED942E2A67C4F9AE02.roa (hash: /K+KO/JAxBT13HOP0sbdD7WCDuaiCfipJ799+0uNLAE=)
                          5: 0FD2DB3A109C11F08D6B6B19C4F9AE02.roa (hash: 3jHJ+QCDVuVqH920nc4APigYKIgE0XcUu8gojB0ssNY=)
                          6: 8A916FDC83D711EAAA5AEC56C4F9AE02.roa (hash: QhYpDZxY4lrsisBo9KeT1dhpxH5qfKkNuCdxLZwNY9M=)
                          7: 8D864528E26911EFB89A9142C4F9AE02.roa (hash: NpQW8k4zu/MCDQehzvD8ow5oFPR6pQ3aQJLeOrQZX6w=)
                          8: DB701E584E6311EEBED9743CC4F9AE02.roa (hash: aVcFD+7Cf2Q5NsiqVZPSqT6t7DqlHkbGwDM3SujhnaU=)
                          9: 8C0868D0C9DC11EE8B24C55EC4F9AE02.roa (hash: O4XanTDe0ztngiWNae9hBO/GQEgCdTJ5b4fu8JScoU8=)
                          10: 01D6C542776C11EF9A0CEA56C4F9AE02.roa (hash: vqy0H4ya82Ekfsog+7GBN45eVwK+VW8rWrLWS8sX2Fk=)
                          11: DC4A492A4E6311EEBED9743CC4F9AE02.roa (hash: XDyPY9O4h8LcXQtO6A3H7KbS57jl8fFcVjI3g/PUwDc=)
                          12: 66E400CACB4C11EE8E404546C4F9AE02.roa (hash: zdqWLocdgkEwEzpGEFgWlpmeuU0MlCsdCgg2P2h00eg=)
                          13: 07CD68A213AD11EFADED003DC4F9AE02.roa (hash: vpflnylg4u69h4p+T+Zu8l+UhKj8oqOycxNU/87Vm54=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl
                          rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 07 Jul 2026 19:50:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2938 (0xb7a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867
        Validity
            Not Before: Jun 30 19:50:43 2026 GMT
            Not After : Jul  7 19:50:43 2026 GMT
        Subject: CN=6a441e13-9e1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:c4:64:c7:2d:e8:e1:a6:b7:7d:09:03:2f:9c:
                    ef:f7:6b:bb:7b:1a:cf:54:ae:a5:9e:3f:8c:67:4f:
                    16:c1:f4:1d:8b:21:85:34:3c:ac:a7:ad:58:f5:63:
                    68:a3:51:de:4d:91:e7:6c:b6:7c:74:49:77:b0:71:
                    7b:c2:f2:49:d3:9e:40:0f:a0:ce:9f:5d:ca:db:c4:
                    93:6b:60:7f:8e:ae:ab:22:be:57:ef:5b:4c:26:14:
                    01:23:9b:81:91:c5:9b:92:d7:14:1e:81:36:02:aa:
                    11:4d:b3:35:3c:7b:27:bc:80:5e:21:3f:1f:ab:1f:
                    e9:77:5e:51:a3:5e:bc:65:f6:97:cc:1e:ff:9b:f1:
                    fa:d2:af:8f:d8:7e:49:ab:cb:67:d4:1a:9c:26:ee:
                    ba:f6:1e:db:2e:0f:eb:c7:eb:ba:53:5b:2f:db:e4:
                    a6:37:7c:9d:f5:6d:c4:e4:c7:cb:89:d0:8a:fc:21:
                    df:be:49:dd:3e:12:e3:62:41:28:bf:21:9c:40:e5:
                    67:d4:80:e8:f6:d1:af:43:7e:22:48:31:00:48:0b:
                    a2:5a:60:2a:4a:e1:c2:0d:b4:87:4e:2b:19:7e:9a:
                    64:c9:77:60:ce:c0:79:e1:b8:7d:d4:66:55:cd:03:
                    a0:65:ab:da:69:cd:38:06:ea:1b:93:7b:bc:ab:6f:
                    3d:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:20:B0:B4:B0:5E:39:38:13:7A:E4:AE:2B:6F:4B:55:73:19:63:BB
            X509v3 Authority Key Identifier:
                keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:c3:eb:1a:19:2f:7a:78:12:8e:b2:ed:24:ee:30:8b:e1:00:
         1c:a2:01:0c:0b:56:5c:f9:5a:59:f2:7d:ac:95:8b:be:6a:27:
         b5:3f:3a:97:a3:d3:53:e9:bc:45:05:66:6c:81:77:38:db:46:
         5e:50:56:e4:98:c7:d2:01:1d:10:cd:e6:d2:5f:eb:8a:9b:6e:
         8d:9b:32:a8:7a:4d:61:b4:e5:7f:be:63:61:71:65:b6:2a:66:
         9c:d6:7a:b6:9e:f3:5a:e1:ed:68:97:12:c3:47:fc:d0:cd:d5:
         11:8d:d9:16:dc:49:03:cc:7e:af:cc:cb:e6:03:54:03:0d:16:
         f0:d6:19:06:6c:35:ba:47:90:aa:10:e1:f2:19:ce:4e:72:e9:
         fb:5e:fe:36:ce:bc:54:34:8a:71:c1:ec:10:67:5d:f4:d0:b4:
         1d:70:d8:ea:93:34:a2:a1:cd:cc:51:9e:5e:bb:f1:4e:30:25:
         b7:b9:bc:93:49:5b:2e:cf:3f:32:88:f3:55:c6:0b:cd:4a:14:
         e5:71:a8:b3:c2:db:2d:6b:86:43:52:de:7a:e5:0a:35:dd:cb:
         3d:54:08:e3:79:4d:d7:94:c5:24:fc:1f:0f:4f:0d:39:8f:22:
         0e:97:44:c3:fb:9b:c7:44:22:8f:05:a5:e0:bf:8f:2b:34:97:
         72:4f:68:04
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICC3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4
M0NCRTE4NjcwHhcNMjYwNjMwMTk1MDQzWhcNMjYwNzA3MTk1MDQzWjAYMRYwFAYD
VQQDEw02YTQ0MWUxMy05ZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAmcRkxy3o4aa3fQkDL5zv92u7exrPVK6lnj+MZ08WwfQdiyGFNDysp61Y9WNo
o1HeTZHnbLZ8dEl3sHF7wvJJ055AD6DOn13K28STa2B/jq6rIr5X71tMJhQBI5uB
kcWbktcUHoE2AqoRTbM1PHsnvIBeIT8fqx/pd15Ro168ZfaXzB7/m/H60q+P2H5J
q8tn1BqcJu669h7bLg/rx+u6U1sv2+SmN3yd9W3E5MfLidCK/CHfvkndPhLjYkEo
vyGcQOVn1IDo9tGvQ34iSDEASAuiWmAqSuHCDbSHTisZfppkyXdgzsB54bh91GZV
zQOgZavaac04Buobk3u8q289XwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEEgsLSw
Xjk4E3rkritvS1VzGWO7MB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4
RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H
R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
QjQ5My81RkNBQjY3MjY4RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENX
MC0zWWdHRHRUWkdEeS1HR2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAicPrGhkvengSjrLtJO4wi+EAHKIBDAtWXPlaWfJ9rJWLvmontT86l6PTU+m8
RQVmbIF3ONtGXlBW5JjH0gEdEM3m0l/riptujZsyqHpNYbTlf75jYXFltipmnNZ6
tp7zWuHtaJcSw0f80M3VEY3ZFtxJA8x+r8zL5gNUAw0W8NYZBmw1ukeQqhDh8hnO
TnLp+17+Ns68VDSKccHsEGdd9NC0HXDY6pM0oqHNzFGeXrvxTjAlt7m8k0lbLs8/
MojzVcYLzUoU5XGos8LbLWuGQ1LeeuUKNd3LPVQI43lN15TFJPwfD08NOY8iDpdE
w/ubx0QijwWl4L+PKzSXck9oBA==
-----END CERTIFICATE-----
Generated at Thu Jul 2 04:22:31 2026 by rpki-client