Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft
File:                     u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json)
Hash identifier:          b0eP21bRGQsKCZU/XYdqOErqGhG5uUMAzlTzDAx2s98=
Subject key identifier:   C7:25:AE:C2:D2:D8:FC:E6:12:78:0C:EB:02:B6:C5:26:B8:61:E5:40
Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0
Certificate issuer:       /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0
Certificate serial:       018F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft
Manifest number:          017E
Signing time:             Fri 17 Jul 2026 05:45:01 +0000
Manifest this update:     Fri 17 Jul 2026 05:45:01 +0000
Manifest next update:     Fri 24 Jul 2026 05:45:01 +0000
Files and hashes:         1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: KX2UureTSXnwUGDXb6Hm9SM9XqGvJY3VqMmyoM/ZGH8=)
                          2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: m3Jo8FCeaELT1I3nJBgJYkzF+itVMTxAlpjgG+4EtAw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl
                          rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:45:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 399 (0x18f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0
        Validity
            Not Before: Jul 17 05:45:01 2026 GMT
            Not After : Jul 24 05:45:01 2026 GMT
        Subject: CN=6a59c15d-9a12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:e3:d0:7b:7d:37:dd:6f:cc:9b:73:27:a5:07:
                    de:dd:46:eb:dc:42:8f:83:b3:d8:c9:e3:ea:34:f9:
                    75:db:68:4e:21:d9:1b:f6:6b:75:76:8a:dc:e3:8f:
                    ae:bc:a1:76:0a:3a:cf:b8:0b:a9:48:83:d4:73:bd:
                    7c:e8:52:bf:b3:cf:cf:69:27:c7:fe:28:bb:71:7a:
                    26:c5:f7:12:4a:b1:ab:8b:09:90:0f:c7:d6:37:b5:
                    33:25:f5:ab:d8:23:1b:31:06:20:2e:5f:c1:fa:93:
                    3b:84:05:31:78:04:c3:1e:47:d6:23:f2:5f:86:f9:
                    12:83:0c:c5:9f:d8:20:a5:26:53:2f:98:82:9f:20:
                    ed:bc:65:b2:51:e5:49:11:99:bc:13:3f:9c:29:f8:
                    7a:fb:d1:f0:0d:74:cb:43:ec:da:36:58:ad:13:41:
                    f5:63:8e:90:e9:d2:af:89:2b:0c:27:5d:5e:6c:fc:
                    17:f9:ba:e7:ea:cf:da:0b:9a:db:f5:0e:17:a6:a4:
                    26:21:7c:e4:c1:3c:53:27:47:d7:77:a0:f0:ab:67:
                    f6:e4:11:85:93:90:dd:fc:18:f4:ae:6d:60:06:cf:
                    46:86:56:2e:8b:8f:df:57:d8:08:e5:a3:cb:8f:97:
                    48:50:33:3d:15:75:e7:ce:a2:33:94:83:e5:b4:91:
                    a3:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:25:AE:C2:D2:D8:FC:E6:12:78:0C:EB:02:B6:C5:26:B8:61:E5:40
            X509v3 Authority Key Identifier:
                keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:fa:67:cf:71:7d:fb:8d:ad:60:60:7f:c5:ec:a9:c7:ba:5a:
         8c:0d:02:41:a0:9d:fe:db:91:b6:31:ec:d2:0f:54:a5:56:71:
         99:78:52:9e:ff:75:cf:c5:59:bb:4f:6d:61:94:f5:06:93:dd:
         5e:15:ff:33:8c:6a:48:1a:df:b9:6f:af:b5:5f:66:32:2d:6c:
         ed:2a:c3:f9:b1:e9:22:32:a6:73:bc:ab:b2:d4:f0:14:fc:e0:
         f5:19:64:5d:70:47:09:ab:7c:3e:27:a7:71:18:86:52:ee:2b:
         33:ad:29:4e:50:0d:ca:58:3e:9b:df:e9:08:a9:df:bb:42:5e:
         e8:85:14:0c:be:44:86:40:9f:da:c8:f1:d1:cb:59:b0:9e:40:
         32:39:3a:b0:1d:f5:86:28:00:cb:d3:5a:17:76:a6:6b:89:85:
         d4:34:b1:89:58:71:9e:c6:6d:41:5e:0b:32:2f:9e:c3:9e:5c:
         2b:da:74:3a:96:24:60:1d:13:2f:0d:0c:45:de:bd:ff:dc:df:
         48:66:2d:7b:a6:b4:ad:1f:95:ee:ef:16:f6:7e:21:ec:72:e0:
         6f:82:c1:af:66:49:d8:19:e3:03:69:b4:f3:6b:59:4a:c3:57:
         8e:60:de:d9:70:18:f5:dd:60:2e:e2:2b:7e:17:21:97:06:ec:
         8a:1b:22:f8
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB
RTI3MTExRjAwHhcNMjYwNzE3MDU0NTAxWhcNMjYwNzI0MDU0NTAxWjAYMRYwFAYD
VQQDEw02YTU5YzE1ZC05YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwePQe3033W/Mm3MnpQfe3Ubr3EKPg7PYyePqNPl122hOIdkb9mt1dorc44+u
vKF2CjrPuAupSIPUc7186FK/s8/PaSfH/ii7cXomxfcSSrGriwmQD8fWN7UzJfWr
2CMbMQYgLl/B+pM7hAUxeATDHkfWI/JfhvkSgwzFn9ggpSZTL5iCnyDtvGWyUeVJ
EZm8Ez+cKfh6+9HwDXTLQ+zaNlitE0H1Y46Q6dKviSsMJ11ebPwX+brn6s/aC5rb
9Q4XpqQmIXzkwTxTJ0fXd6Dwq2f25BGFk5Dd/Bj0rm1gBs9GhlYui4/fV9gI5aPL
j5dIUDM9FXXnzqIzlIPltJGjIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMclrsLS
2PzmEngM6wK2xSa4YeVAMB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1
QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF
ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF
ZlRJRVZGSVllM1N1SnhFZkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEASvpnz3F9+42tYGB/xeypx7pajA0CQaCd/tuRtjHs0g9UpVZxmXhSnv91z8VZ
u09tYZT1BpPdXhX/M4xqSBrfuW+vtV9mMi1s7SrD+bHpIjKmc7yrstTwFPzg9Rlk
XXBHCat8PiencRiGUu4rM60pTlANylg+m9/pCKnfu0Je6IUUDL5EhkCf2sjx0ctZ
sJ5AMjk6sB31higAy9NaF3ama4mF1DSxiVhxnsZtQV4LMi+ew55cK9p0OpYkYB0T
Lw0MRd69/9zfSGYte6a0rR+V7u8W9n4h7HLgb4LBr2ZJ2BnjA2m082tZSsNXjmDe
2XAY9d1gLuIrfhchlwbsihsi+A==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:16:06 2026 by rpki-client