Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft
File:                     -rpT9D2gDiGn6veS1I_bdpV6gLw.mft (raw, json)
Hash identifier:          C4zsyAXBtWFGoWmXtf8dGAQ/VQ7pCje9IcTQdce/D8M=
Subject key identifier:   59:33:F2:65:B1:9F:D4:A7:24:F7:17:8A:EF:A1:92:F3:C4:DC:C7:E4
Authority key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC
Certificate issuer:       /CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC
Certificate serial:       0702
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft
Manifest number:          06F9
Signing time:             Thu 16 Jul 2026 22:35:31 +0000
Manifest this update:     Thu 16 Jul 2026 22:35:31 +0000
Manifest next update:     Thu 23 Jul 2026 22:35:31 +0000
Files and hashes:         1: -rpT9D2gDiGn6veS1I_bdpV6gLw.crl (hash: zJ4Nen41WCEtwgoamLcRod2FHvIww7a3qwD6PqGcvcU=)
                          2: EB8DE9B49B6411EBA08FBE84C4F9AE02.roa (hash: nL3vp/CU21MSnng2C+poLgofAZHvrlCtCeZrfBZOSyU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl
                          rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 22:35:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1794 (0x702)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D25E5, serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC
        Validity
            Not Before: Jul 16 22:35:31 2026 GMT
            Not After : Jul 23 22:35:31 2026 GMT
        Subject: CN=6a595cb3-3896
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:e6:2b:df:ef:9c:e9:d9:3b:22:7f:d0:f5:b7:
                    cc:6e:2e:3a:a8:84:3b:1e:25:42:85:75:fd:2f:29:
                    44:5f:b4:7f:ca:49:b3:57:ea:64:ab:07:1c:77:09:
                    19:c7:ae:b8:07:c2:37:4e:6a:22:4a:48:bf:7b:b8:
                    b5:df:32:4a:b6:b2:3b:3b:00:b7:fc:6f:96:e5:6c:
                    18:73:f7:75:8e:82:1e:86:e8:be:4f:8a:99:de:fa:
                    b2:6b:b5:ea:8b:2d:9a:59:0b:98:01:09:ca:fc:02:
                    33:6b:6e:39:62:67:55:d3:06:70:31:3b:d9:f4:73:
                    27:82:cb:0f:bb:8d:7a:47:b2:f0:c0:4f:95:d1:64:
                    ab:58:a6:49:80:75:ab:0e:19:6c:dc:33:59:3b:a6:
                    b0:83:31:90:61:42:bd:fc:38:3a:07:82:4d:6f:4d:
                    ab:6f:e8:60:54:ec:e1:2f:58:02:8a:e6:45:0c:0a:
                    6c:be:e7:5a:b9:6f:2c:a6:fe:3f:bd:04:08:82:6b:
                    2c:7a:b7:e4:54:d8:97:f9:a2:2a:2e:0f:8d:21:a3:
                    16:35:61:e2:88:7c:4b:c6:8a:bf:31:07:f0:d4:55:
                    a5:fd:f7:50:4d:e9:2f:4f:7a:4e:be:8f:dd:f0:de:
                    5c:98:83:f5:68:23:91:2c:6c:cf:3e:fb:fb:54:1e:
                    80:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:33:F2:65:B1:9F:D4:A7:24:F7:17:8A:EF:A1:92:F3:C4:DC:C7:E4
            X509v3 Authority Key Identifier:
                keyid:FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:30:df:f3:4c:a8:d1:e8:52:98:fe:db:ce:b6:53:5c:b4:49:
         a8:c3:89:c9:07:88:e7:01:dd:ec:19:0e:f5:34:9e:d5:8f:e9:
         19:39:dc:24:52:69:61:c1:cc:10:e5:f2:5b:d9:06:9a:a5:eb:
         15:71:b7:4a:46:d9:37:fa:e7:9e:ae:65:05:7a:c3:16:16:4d:
         d6:8b:55:61:28:da:7c:98:e7:a8:43:63:8a:ba:56:f0:46:27:
         80:1c:f3:48:1b:8c:01:61:f5:b9:a8:8d:9a:d8:4c:67:74:99:
         41:62:ab:55:34:94:bd:ee:86:93:4a:cc:71:83:67:04:5f:96:
         8d:43:95:06:46:0b:7e:23:4a:62:92:5b:19:b5:a5:0c:72:a6:
         7f:94:83:77:d1:3a:fe:66:bc:e9:56:57:17:7d:1a:31:bc:c8:
         4d:b5:2e:36:a5:d0:49:69:71:e3:64:19:25:ef:4b:ae:08:3f:
         6f:2e:2d:dd:f5:de:e1:83:57:13:24:81:e4:05:ea:a6:35:38:
         7c:e5:88:72:4c:de:5f:1e:e6:64:05:fc:0b:46:1d:2d:8b:d0:
         b6:a8:02:6d:da:d5:0b:30:cf:e2:78:94:fb:e2:98:5c:c2:d9:
         f5:bc:f3:39:4b:b3:e3:e0:89:8f:e9:c2:78:3f:1a:ef:07:b8:
         24:de:ba:41
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDI1RTUxMTAvBgNVBAUTKEZBQkE1M0Y0M0RBMDBFMjFBN0VBRjc5MkQ0OEZEQjc2
OTU3QTgwQkMwHhcNMjYwNzE2MjIzNTMxWhcNMjYwNzIzMjIzNTMxWjAYMRYwFAYD
VQQDEw02YTU5NWNiMy0zODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7uYr3++c6dk7In/Q9bfMbi46qIQ7HiVChXX9LylEX7R/ykmzV+pkqwccdwkZ
x664B8I3TmoiSki/e7i13zJKtrI7OwC3/G+W5WwYc/d1joIehui+T4qZ3vqya7Xq
iy2aWQuYAQnK/AIza245YmdV0wZwMTvZ9HMngssPu416R7LwwE+V0WSrWKZJgHWr
Dhls3DNZO6awgzGQYUK9/Dg6B4JNb02rb+hgVOzhL1gCiuZFDApsvudauW8spv4/
vQQIgmsserfkVNiX+aIqLg+NIaMWNWHiiHxLxoq/MQfw1FWl/fdQTekvT3pOvo/d
8N5cmIP1aCORLGzPPvv7VB6AzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFkz8mWx
n9SnJPcXiu+hkvPE3MfkMB8GA1UdIwQYMBaAFPq6U/Q9oA4hp+r3ktSP23aVeoC8
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjVFNS9FQ0JGMDBFODlC
NEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0RpR242dmVTMUlfYmRwVjZn
THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLy1ycFQ5RDJnRGlHbjZ2ZVMxSV9iZHBWNmdMdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MjVFNS9FQ0JGMDBFODlCNEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0Rp
R242dmVTMUlfYmRwVjZnTHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEATjDf80yo0ehSmP7bzrZTXLRJqMOJyQeI5wHd7BkO9TSe1Y/pGTncJFJpYcHM
EOXyW9kGmqXrFXG3SkbZN/rnnq5lBXrDFhZN1otVYSjafJjnqENjirpW8EYngBzz
SBuMAWH1uaiNmthMZ3SZQWKrVTSUve6Gk0rMcYNnBF+WjUOVBkYLfiNKYpJbGbWl
DHKmf5SDd9E6/ma86VZXF30aMbzITbUuNqXQSWlx42QZJe9Lrgg/by4t3fXe4YNX
EySB5AXqpjU4fOWIckzeXx7mZAX8C0YdLYvQtqgCbdrVCzDP4niU++KYXMLZ9bzz
OUuz4+CJj+nCeD8a7we4JN66QQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:33:14 2026 by rpki-client