Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft
File:                     ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json)
Hash identifier:          CPmOCQjxGDsB7YLxXaaVxCku/WJ/zNWma5fqhAueUJs=
Subject key identifier:   01:2B:66:B2:06:29:9D:74:A6:64:88:33:92:23:B9:A5:7A:D2:A2:73
Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B
Certificate issuer:       /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B
Certificate serial:       E7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft
Manifest number:          DF
Signing time:             Fri 17 Jul 2026 07:52:01 +0000
Manifest this update:     Fri 17 Jul 2026 07:52:00 +0000
Manifest next update:     Fri 24 Jul 2026 07:52:00 +0000
Files and hashes:         1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: 1qc35lmR8R0wabl4QfqBOaMIwbEuzfJc06Ei/3lz490=)
                          2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: YQ9P3hZSVyByvwWvHjcvm6ovGJgl+C3bbNJ0X0PJR6g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl
                          rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:51:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 231 (0xe7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B
        Validity
            Not Before: Jul 17 07:52:00 2026 GMT
            Not After : Jul 24 07:52:00 2026 GMT
        Subject: CN=6a59df21-a938
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:fb:ce:20:ac:87:0f:b8:3d:c3:e6:4a:23:5a:
                    c2:bb:94:54:cd:d0:48:ff:e8:46:b9:04:92:2c:d4:
                    3a:40:7d:8d:04:fd:49:86:fc:ad:f5:51:ba:e5:19:
                    a5:43:81:67:b1:5c:54:15:83:05:27:b7:f7:11:ce:
                    02:f1:7e:6e:98:22:a1:bd:eb:46:7f:20:03:6e:0b:
                    70:83:5f:8f:9e:bf:51:7f:76:8e:f0:07:fa:87:20:
                    98:8d:7c:86:1a:cc:49:41:67:3e:76:78:a3:ba:e2:
                    1a:cc:97:33:94:51:e5:8e:d9:1d:6d:11:be:28:4d:
                    25:7f:8a:0f:94:21:29:df:5d:b4:43:00:c7:ae:ac:
                    9d:df:ac:a4:31:c3:03:7d:ec:fe:55:ab:85:51:e2:
                    72:db:cc:17:b4:36:39:4c:03:aa:63:9d:81:e5:0a:
                    03:5a:d8:80:5a:e7:ed:30:e2:f5:73:7f:9e:77:a2:
                    e4:c4:76:b4:33:e9:01:8d:e7:a9:06:c8:ac:ec:07:
                    61:7d:f0:d5:49:42:a6:16:59:fc:7b:bc:e4:74:46:
                    a5:e5:39:56:a6:bb:cc:cd:07:bc:5b:6a:15:d5:51:
                    b5:72:2c:e6:15:6c:39:2f:a5:9c:37:63:da:dc:18:
                    ff:8f:f6:59:88:df:d0:26:9f:02:1d:68:1d:5b:2c:
                    3b:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:2B:66:B2:06:29:9D:74:A6:64:88:33:92:23:B9:A5:7A:D2:A2:73
            X509v3 Authority Key Identifier:
                keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:f7:78:08:ea:c2:4d:59:91:03:17:7f:ef:97:aa:fb:70:85:
         15:7f:0c:80:a8:76:cf:e2:28:79:99:0f:df:47:1f:8e:dc:3b:
         d9:ee:d9:0a:d9:4b:a4:0f:28:db:b5:98:50:61:54:6b:2e:44:
         ec:f6:75:27:15:7e:c4:d1:3b:7d:73:89:36:62:e1:7f:95:85:
         1a:74:41:8a:57:71:18:da:61:63:a1:98:22:ce:3b:e1:05:79:
         d1:89:82:9a:e9:90:26:c8:25:8f:ac:41:4d:ab:50:c8:98:aa:
         35:e9:92:dd:64:db:37:41:be:3f:95:68:a9:2b:bf:5d:78:d5:
         95:8f:71:a4:cb:b0:1c:f3:38:87:09:dc:77:48:41:85:76:9c:
         5a:77:11:85:a3:72:44:85:43:58:6a:c5:d1:9b:77:56:1f:a3:
         ba:44:a9:0e:4e:de:13:51:a3:e7:19:9e:88:58:d7:49:05:88:
         d8:8f:3e:4a:c2:a0:99:01:b8:4b:61:c2:05:14:ba:e8:84:74:
         34:74:93:33:34:da:9e:b1:79:f2:e0:73:58:95:9c:3e:57:a1:
         e5:59:0c:34:ba:8a:bd:51:4d:09:16:22:7b:26:e6:20:b1:e7:
         a0:3d:67:dc:5d:84:b7:10:0a:84:db:fb:0e:0e:f3:4f:60:df:
         72:06:96:73
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzlDMDMxMTAvBgNVBAUTKEEyNEQ5NjM4MzM1OUNCNDk2NkExNUI5QTkwNjkxM0VC
NTQ1NjY1N0IwHhcNMjYwNzE3MDc1MjAwWhcNMjYwNzI0MDc1MjAwWjAYMRYwFAYD
VQQDEw02YTU5ZGYyMS1hOTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApPvOIKyHD7g9w+ZKI1rCu5RUzdBI/+hGuQSSLNQ6QH2NBP1Jhvyt9VG65Rml
Q4FnsVxUFYMFJ7f3Ec4C8X5umCKhvetGfyADbgtwg1+Pnr9Rf3aO8Af6hyCYjXyG
GsxJQWc+dnijuuIazJczlFHljtkdbRG+KE0lf4oPlCEp3120QwDHrqyd36ykMcMD
fez+VauFUeJy28wXtDY5TAOqY52B5QoDWtiAWuftMOL1c3+ed6LkxHa0M+kBjeep
Bsis7AdhffDVSUKmFln8e7zkdEal5TlWprvMzQe8W2oV1VG1cizmFWw5L6WcN2Pa
3Bj/j/ZZiN/QJp8CHWgdWyw7EQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAErZrIG
KZ10pmSIM5IjuaV60qJzMB8GA1UdIwQYMBaAFKJNljgzWctJZqFbmpBpE+tUVmV7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwMy8zN0QxOEExNjM5
QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkwbG1vVnVha0drVDYxUlda
WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pYcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
OUMwMy8zN0QxOEExNjM5QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkw
bG1vVnVha0drVDYxUldaWHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEACvd4COrCTVmRAxd/75eq+3CFFX8MgKh2z+IoeZkP30cfjtw72e7ZCtlLpA8o
27WYUGFUay5E7PZ1JxV+xNE7fXOJNmLhf5WFGnRBildxGNphY6GYIs474QV50YmC
mumQJsglj6xBTatQyJiqNemS3WTbN0G+P5VoqSu/XXjVlY9xpMuwHPM4hwncd0hB
hXacWncRhaNyRIVDWGrF0Zt3Vh+jukSpDk7eE1Gj5xmeiFjXSQWI2I8+SsKgmQG4
S2HCBRS66IR0NHSTMzTanrF58uBzWJWcPleh5VkMNLqKvVFNCRYieybmILHnoD1n
3F2EtxAKhNv7Dg7zT2DfcgaWcw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:15:55 2026 by rpki-client