Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft
File:                     AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json)
Hash identifier:          loyFRPlIYQBV3PCsvVc2B8XPLCN42+gqzEtluf+FNkw=
Subject key identifier:   27:46:57:5D:46:85:6E:FD:86:CE:B4:E3:3A:5D:03:01:B4:23:E2:5D
Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF
Certificate issuer:       /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF
Certificate serial:       0142
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft
Manifest number:          0163
Signing time:             Sun 05 Jul 2026 06:13:49 +0000
Manifest this update:     Sun 05 Jul 2026 06:13:49 +0000
Manifest next update:     Sun 12 Jul 2026 06:13:49 +0000
Files and hashes:         1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: 43WKMGz4OnZAFMafllETKnrCBq8dpOx9ttq7oCfOAqg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl
                          rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:54:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 322 (0x142)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D09BC, serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF
        Validity
            Not Before: Jul  5 06:13:49 2026 GMT
            Not After : Jul 12 06:13:49 2026 GMT
        Subject: CN=6a49f61d-a9d9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:98:f9:79:c7:b0:d1:aa:e5:5b:15:87:c6:41:
                    d4:1a:f9:86:34:b4:07:6f:d9:45:f4:0e:84:5a:55:
                    a7:db:53:87:c7:41:ee:0d:cb:36:d5:ba:c7:08:c2:
                    45:27:09:21:87:36:30:0a:23:5d:e2:9e:df:ea:b5:
                    17:b6:5a:51:70:88:de:20:68:90:55:40:8c:74:5f:
                    61:31:0a:14:a0:8c:e9:d7:89:3f:b4:b4:68:63:89:
                    e3:5e:9e:c9:a3:30:57:79:a4:5c:96:d7:56:cd:1a:
                    80:79:7c:0f:b8:76:c1:ab:eb:1c:92:34:2b:f0:b4:
                    f4:96:ed:93:6a:f8:7e:b4:e1:1f:b1:94:47:81:83:
                    4d:53:b2:cb:1d:50:24:c1:86:5f:ab:f4:ac:b6:8e:
                    32:95:b2:ba:cd:f9:79:54:19:ec:0f:f1:6b:5f:21:
                    5c:2a:41:f9:1e:96:56:6d:a5:38:34:10:ab:84:84:
                    80:14:4e:0c:bd:b2:70:53:ff:19:2e:b6:37:ce:96:
                    49:2c:72:3e:e1:69:a5:4c:ea:bc:a6:a8:3d:21:3d:
                    fd:b2:e9:64:77:33:39:09:1e:03:1b:91:30:a4:e6:
                    02:cf:f6:27:af:94:79:29:e6:fa:c1:a5:5f:2f:b0:
                    9b:6a:a7:d6:ad:5c:14:6c:9b:f4:8d:8e:ce:0c:59:
                    5d:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:46:57:5D:46:85:6E:FD:86:CE:B4:E3:3A:5D:03:01:B4:23:E2:5D
            X509v3 Authority Key Identifier:
                keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:a2:c4:54:0d:4b:73:1a:ab:68:34:8a:0b:c3:cc:03:3c:f2:
         f9:6f:a3:97:eb:91:46:e1:2c:c5:30:a4:db:71:75:99:cb:7a:
         48:8e:fb:39:00:e3:d7:96:2a:df:af:25:ec:07:ea:39:2a:e5:
         08:16:72:3d:71:cb:8c:0f:50:db:ed:1e:61:79:ad:56:73:3b:
         52:64:8d:36:60:1f:60:e3:0f:b0:44:7e:41:ef:09:69:8d:5c:
         56:2b:9e:3e:41:81:ab:27:b6:1e:dd:71:7b:68:f4:6b:79:18:
         3a:26:60:2e:dd:9c:f5:c5:5f:2c:37:f4:f6:27:78:98:8a:c7:
         70:c0:29:13:5d:08:52:56:65:3c:ff:74:f3:21:55:f9:80:a3:
         2d:c9:54:38:52:8a:62:bb:b2:85:50:4d:ca:9f:a1:cf:52:dc:
         be:d0:f3:86:a8:3c:5e:29:66:42:2c:7c:bc:e4:33:e0:15:58:
         74:94:fc:07:3d:f0:59:b8:9e:3b:78:ef:b4:2a:c5:14:05:99:
         ac:6a:ed:d8:97:0b:4c:c4:0b:7e:96:6d:b1:7a:df:03:58:9b:
         95:2b:3b:94:6e:1f:20:e3:ba:94:5a:9a:e6:29:fa:81:e6:a1:
         43:be:cf:15:60:98:7c:24:18:39:20:79:bd:f4:3f:6f:ba:63:
         49:9a:c0:f7
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDA5QkMxMTAvBgNVBAUTKDAxRjA1QzdFQTVGMkEyRURGQzE4Mzg5N0Y1ODM1OTgy
QjJDRjAzQkYwHhcNMjYwNzA1MDYxMzQ5WhcNMjYwNzEyMDYxMzQ5WjAYMRYwFAYD
VQQDEw02YTQ5ZjYxZC1hOWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzZj5ecew0arlWxWHxkHUGvmGNLQHb9lF9A6EWlWn21OHx0HuDcs21brHCMJF
JwkhhzYwCiNd4p7f6rUXtlpRcIjeIGiQVUCMdF9hMQoUoIzp14k/tLRoY4njXp7J
ozBXeaRcltdWzRqAeXwPuHbBq+sckjQr8LT0lu2Tavh+tOEfsZRHgYNNU7LLHVAk
wYZfq/Ssto4ylbK6zfl5VBnsD/FrXyFcKkH5HpZWbaU4NBCrhISAFE4MvbJwU/8Z
LrY3zpZJLHI+4WmlTOq8pqg9IT39sulkdzM5CR4DG5EwpOYCz/Ynr5R5Keb6waVf
L7CbaqfWrVwUbJv0jY7ODFldUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCdGV11G
hW79hs604zpdAwG0I+JdMB8GA1UdIwQYMBaAFAHwXH6l8qLt/Bg4l/WDWYKyzwO/
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCQy9EMzVCMDgyRUE3
MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91MzhHRGlYOVlOWmdyTFBB
NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3OC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MDlCQy9EMzVCMDgyRUE3MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91
MzhHRGlYOVlOWmdyTFBBNzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAcqLEVA1LcxqraDSKC8PMAzzy+W+jl+uRRuEsxTCk23F1mct6SI77OQDj15Yq
368l7AfqOSrlCBZyPXHLjA9Q2+0eYXmtVnM7UmSNNmAfYOMPsER+Qe8JaY1cViue
PkGBqye2Ht1xe2j0a3kYOiZgLt2c9cVfLDf09id4mIrHcMApE10IUlZlPP908yFV
+YCjLclUOFKKYruyhVBNyp+hz1LcvtDzhqg8XilmQix8vOQz4BVYdJT8Bz3wWbie
O3jvtCrFFAWZrGrt2JcLTMQLfpZtsXrfA1iblSs7lG4fIOO6lFqa5in6geahQ77P
FWCYfCQYOSB5vfQ/b7pjSZrA9w==
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:44 2026 by rpki-client