Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
File:                     XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json)
Hash identifier:          YT9IW8nylp8mt+Mce9/eySQkO7r+HONRfnQUrRv7p6E=
Subject key identifier:   04:BF:83:3E:6C:27:7D:E6:5E:59:83:15:5A:AD:07:9F:EC:D7:F3:21
Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8
Certificate issuer:       /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8
Certificate serial:       03C4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
Manifest number:          03C3
Signing time:             Sun 05 Jul 2026 00:59:40 +0000
Manifest this update:     Sun 05 Jul 2026 00:59:39 +0000
Manifest next update:     Sun 12 Jul 2026 00:59:39 +0000
Files and hashes:         1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: Wu6yQEujlMjghHrnZxk5OnSrB+XHH6wnVHwGS52SrYQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl
                          rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 00:59:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 964 (0x3c4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8
        Validity
            Not Before: Jul  5 00:59:39 2026 GMT
            Not After : Jul 12 00:59:39 2026 GMT
        Subject: CN=6a49ac7c-cf11
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:da:19:70:ac:0e:22:c4:ce:ab:56:45:95:7e:
                    b3:e0:04:43:d8:92:5c:31:37:e9:4c:22:25:06:26:
                    69:58:8a:7f:0b:20:6a:25:5b:5f:77:8e:14:16:05:
                    ca:2c:f1:24:4f:be:cb:ec:11:07:33:fb:52:bd:97:
                    ae:36:88:98:51:96:3a:74:81:e8:42:4a:89:cf:c2:
                    03:ad:de:28:9e:1d:ea:c4:39:53:4e:74:c7:88:ce:
                    69:ee:54:60:92:83:4b:64:a2:af:e7:ba:8c:40:e5:
                    9b:cc:09:da:6a:67:c0:4e:37:87:40:d2:a6:4a:41:
                    1c:c1:48:79:a2:da:af:13:f8:50:df:8b:34:c7:3a:
                    92:88:2a:96:ba:98:89:52:44:15:48:bd:f8:85:e6:
                    e9:6e:5b:b6:ab:78:40:11:78:8e:d8:e8:5f:63:6b:
                    45:9e:83:03:43:20:db:a9:66:b0:40:72:7d:08:28:
                    a7:c4:ec:e8:b0:76:27:29:fa:c0:77:d5:a0:f9:aa:
                    26:b3:fb:48:13:67:00:4e:bf:16:4e:4c:e7:cb:2b:
                    61:7c:b7:59:89:79:c6:f3:c8:18:a8:08:85:97:64:
                    4a:c5:52:d4:21:64:b8:4c:95:d7:80:49:a1:96:f5:
                    50:0f:87:0f:38:72:3f:15:e4:a4:7a:49:56:c0:42:
                    02:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:BF:83:3E:6C:27:7D:E6:5E:59:83:15:5A:AD:07:9F:EC:D7:F3:21
            X509v3 Authority Key Identifier:
                keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:cc:3e:6a:18:d7:0b:5a:69:bb:e3:d4:e8:0e:52:d4:28:8d:
         e1:e7:91:fc:5b:e2:e1:b8:64:39:5d:ad:ea:9f:0a:bd:8c:2b:
         d0:2c:db:28:c1:4b:75:08:31:74:fa:28:57:d3:75:84:41:8d:
         4c:31:d9:5a:e4:85:b8:47:7c:f1:f1:03:b8:a5:dc:eb:ce:96:
         6d:8f:90:c2:53:c1:e3:6c:67:c7:b1:18:92:f8:c1:f3:bf:03:
         6c:e2:31:91:6c:80:c2:e1:4a:06:66:79:b1:d8:b5:a6:95:f4:
         73:e3:a4:e3:ea:de:83:aa:36:2a:9a:ff:c7:71:f8:bb:60:47:
         49:e3:5d:13:18:6d:0a:8d:88:cb:d4:e0:f3:3f:77:bf:a1:94:
         72:2e:43:31:c2:4a:cf:74:60:3b:72:48:c5:f4:0b:ca:6d:7f:
         b2:62:f9:85:0b:c8:f4:4a:b7:bd:20:bb:05:a8:ab:57:9c:85:
         05:8b:87:c0:70:ee:f6:f1:46:49:d9:c7:63:e6:85:23:2b:68:
         04:7c:9f:fb:a9:b9:91:d3:88:2b:9f:bf:fc:65:08:bb:be:16:
         93:d8:da:89:3a:e2:da:4d:86:de:21:7f:f4:ea:ec:93:64:dd:
         2f:fc:9b:4e:59:b2:23:cd:d8:de:e6:8c:42:c4:77:a4:68:ff:
         de:c4:6a:23
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICA8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC
QTNGOUVCQjgwHhcNMjYwNzA1MDA1OTM5WhcNMjYwNzEyMDA1OTM5WjAYMRYwFAYD
VQQDEw02YTQ5YWM3Yy1jZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAl9oZcKwOIsTOq1ZFlX6z4ARD2JJcMTfpTCIlBiZpWIp/CyBqJVtfd44UFgXK
LPEkT77L7BEHM/tSvZeuNoiYUZY6dIHoQkqJz8IDrd4onh3qxDlTTnTHiM5p7lRg
koNLZKKv57qMQOWbzAnaamfATjeHQNKmSkEcwUh5otqvE/hQ34s0xzqSiCqWupiJ
UkQVSL34hebpblu2q3hAEXiO2OhfY2tFnoMDQyDbqWawQHJ9CCinxOzosHYnKfrA
d9Wg+aoms/tIE2cATr8WTkznyythfLdZiXnG88gYqAiFl2RKxVLUIWS4TJXXgEmh
lvVQD4cPOHI/FeSkeklWwEICkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAS/gz5s
J33mXlmDFVqtB5/s1/MhMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB
NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2
N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB
YTRLRnZRbEpfTm02UDU2N2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAGMw+ahjXC1ppu+PU6A5S1CiN4eeR/Fvi4bhkOV2t6p8KvYwr0CzbKMFLdQgx
dPooV9N1hEGNTDHZWuSFuEd88fEDuKXc686WbY+QwlPB42xnx7EYkvjB878DbOIx
kWyAwuFKBmZ5sdi1ppX0c+Ok4+reg6o2Kpr/x3H4u2BHSeNdExhtCo2Iy9Tg8z93
v6GUci5DMcJKz3RgO3JIxfQLym1/smL5hQvI9Eq3vSC7BairV5yFBYuHwHDu9vFG
SdnHY+aFIytoBHyf+6m5kdOIK5+//GUIu74Wk9jaiTri2k2G3iF/9Orsk2TdL/yb
TlmyI83Y3uaMQsR3pGj/3sRqIw==
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:39 2026 by rpki-client