Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft
File:                     ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json)
Hash identifier:          gikUnXnhjMjKie5p/wXNDgdkRGdHIIvcheNH+STRklw=
Subject key identifier:   D4:D6:12:6A:32:A2:EE:8E:E9:64:6F:AB:DC:82:9E:80:53:99:E4:C6
Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45
Certificate issuer:       /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145
Certificate serial:       0F71
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft
Manifest number:          0F51
Signing time:             Thu 16 Jul 2026 17:37:47 +0000
Manifest this update:     Thu 16 Jul 2026 17:37:47 +0000
Manifest next update:     Thu 23 Jul 2026 17:37:47 +0000
Files and hashes:         1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: uiCGf+Whkk9cXHf+S4DzjBTWPZr8Ex9Bo8iohRiiEq0=)
                          2: 5C154406988911E991B10838C4F9AE02.roa (hash: tQrQ6Cd+gUF5DxrjyCWytmMItl98qXXXMjLohZ6qa3w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl
                          rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 17:37:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3953 (0xf71)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145
        Validity
            Not Before: Jul 16 17:37:47 2026 GMT
            Not After : Jul 23 17:37:47 2026 GMT
        Subject: CN=6a5916eb-d573
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:01:1c:88:78:49:0e:da:af:7a:ac:57:ff:27:
                    2d:92:39:aa:8c:aa:cf:8f:c6:e5:f3:0a:d0:bb:ba:
                    84:84:7c:6f:b6:0e:d1:47:f2:60:8d:f7:a7:81:7f:
                    fc:f1:e7:05:dd:0e:73:15:28:9e:b7:86:8f:34:80:
                    8e:54:67:7b:bd:4a:cf:79:f5:97:60:e3:e1:29:76:
                    8a:32:99:90:a7:84:aa:b1:e9:36:66:3c:50:8a:3c:
                    f7:8f:da:5e:29:28:97:2f:46:5d:74:87:d4:42:fb:
                    a3:f2:9b:fc:cf:fc:d6:d8:a2:c1:c0:e6:c1:ea:2d:
                    ae:22:f6:22:22:25:34:b4:bc:24:f0:e5:dd:06:09:
                    86:14:d6:05:6c:0f:ee:e4:5a:1a:7f:60:64:82:72:
                    1f:34:cd:83:42:f2:be:85:09:37:20:63:dd:9e:c7:
                    5d:17:70:d9:be:9b:93:e7:f1:13:73:0c:6c:2b:e9:
                    04:f6:8d:77:4e:3b:bc:2f:e2:20:88:9f:51:86:e5:
                    bb:d8:fe:48:fe:c5:71:36:29:9a:03:21:70:8b:2d:
                    17:c5:7b:ec:e7:bf:b5:c5:29:5a:43:ff:ca:35:65:
                    83:c9:ff:c1:f2:37:c6:d6:31:19:e9:40:0c:e6:37:
                    49:97:62:24:b8:68:06:87:5e:24:e0:14:5b:77:94:
                    3f:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:D6:12:6A:32:A2:EE:8E:E9:64:6F:AB:DC:82:9E:80:53:99:E4:C6
            X509v3 Authority Key Identifier:
                keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:a3:ab:2a:61:f4:47:5c:07:7e:41:aa:27:0e:76:87:a5:aa:
         0b:9f:23:e5:95:01:12:0a:2a:20:2a:9f:68:3b:56:dd:da:41:
         d9:43:05:57:8c:1d:8e:f4:be:ec:73:a9:a7:5d:db:07:c5:85:
         94:89:e6:e1:08:e9:97:bf:ae:fb:99:12:b4:5e:0f:8c:0f:ca:
         ec:47:92:d9:a9:b7:46:8c:de:cc:c8:f4:a0:6a:e6:2e:5a:79:
         95:70:8f:04:eb:51:2f:80:44:2f:fc:d6:4a:4a:f4:55:e2:4f:
         17:46:34:87:38:a7:59:96:c7:d9:25:6c:ec:90:d2:8e:a6:f7:
         a7:43:d4:e5:c3:7c:b8:97:25:7e:92:b9:5f:b7:25:0a:37:91:
         0a:c6:2a:26:e9:64:42:bf:94:ae:a8:6e:fa:f2:55:a9:7f:ac:
         e9:03:f1:b8:2c:f3:3b:a6:ee:69:b6:ae:86:c6:ab:2d:e5:8d:
         c1:ee:56:c4:5b:54:18:f6:11:69:5e:e6:fd:28:2a:1f:b9:b5:
         53:f3:ba:12:85:f8:64:94:06:3e:e4:ea:45:a0:e7:e4:2b:86:
         76:a4:9e:0b:93:8a:88:84:50:ad:c7:41:0f:2f:c2:aa:66:bb:
         04:eb:49:5d:60:0d:c4:a0:d1:3c:b1:90:1e:f0:ed:2a:66:27:
         2b:be:d8:ee
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICD3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy
NzJBQUExNDUwHhcNMjYwNzE2MTczNzQ3WhcNMjYwNzIzMTczNzQ3WjAYMRYwFAYD
VQQDEw02YTU5MTZlYi1kNTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2AEciHhJDtqveqxX/yctkjmqjKrPj8bl8wrQu7qEhHxvtg7RR/JgjfengX/8
8ecF3Q5zFSiet4aPNICOVGd7vUrPefWXYOPhKXaKMpmQp4Sqsek2ZjxQijz3j9pe
KSiXL0ZddIfUQvuj8pv8z/zW2KLBwObB6i2uIvYiIiU0tLwk8OXdBgmGFNYFbA/u
5Foaf2BkgnIfNM2DQvK+hQk3IGPdnsddF3DZvpuT5/ETcwxsK+kE9o13Tju8L+Ig
iJ9RhuW72P5I/sVxNimaAyFwiy0XxXvs57+1xSlaQ//KNWWDyf/B8jfG1jEZ6UAM
5jdJl2IkuGgGh14k4BRbd5Q/VwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNTWEmoy
ou6O6WRvq9yCnoBTmeTGMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4
N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv
VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2
YkhzRHhCVUNEdDRuS3FvVVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAY6OrKmH0R1wHfkGqJw52h6WqC58j5ZUBEgoqICqfaDtW3dpB2UMFV4wdjvS+
7HOpp13bB8WFlInm4Qjpl7+u+5kStF4PjA/K7EeS2am3RozezMj0oGrmLlp5lXCP
BOtRL4BEL/zWSkr0VeJPF0Y0hzinWZbH2SVs7JDSjqb3p0PU5cN8uJclfpK5X7cl
CjeRCsYqJulkQr+Urqhu+vJVqX+s6QPxuCzzO6buabauhsarLeWNwe5WxFtUGPYR
aV7m/SgqH7m1U/O6EoX4ZJQGPuTqRaDn5CuGdqSeC5OKiIRQrcdBDy/Cqma7BOtJ
XWANxKDRPLGQHvDtKmYnK77Y7g==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:14 2026 by rpki-client