Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft
File:                     gOknW25uvGrXWF12r7akALUULD8.mft (raw, json)
Hash identifier:          qCXgTqipWkycUizFDwwT+mVBdgM7XnKjHKzg3hKjaA8=
Subject key identifier:   52:16:0A:0A:40:E3:D4:0B:EE:E9:14:D6:E2:87:23:12:C0:7E:F3:D3
Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F
Certificate issuer:       /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F
Certificate serial:       017C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft
Manifest number:          0177
Signing time:             Fri 17 Jul 2026 05:47:10 +0000
Manifest this update:     Fri 17 Jul 2026 05:47:10 +0000
Manifest next update:     Fri 24 Jul 2026 05:47:10 +0000
Files and hashes:         1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: tWNKYdfI9NatzCW1d59GVJGJfhIxRNlOH87x6cwOvmM=)
                          2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: K4s4bQ+AZEMbINRSOhh8kAqaJQUKtCHKATxaJcI+fSc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl
                          rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:47:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 380 (0x17c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F
        Validity
            Not Before: Jul 17 05:47:10 2026 GMT
            Not After : Jul 24 05:47:10 2026 GMT
        Subject: CN=6a59c1de-d1eb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:67:ac:76:86:bd:79:0b:94:a7:ce:3e:0c:61:
                    29:50:c4:f6:cd:7c:d7:12:22:1a:2a:82:57:a7:4d:
                    45:f1:81:5e:96:50:83:92:dc:96:c6:70:01:a8:90:
                    67:49:29:db:14:c6:cb:3c:15:51:ad:b8:b9:82:d4:
                    94:10:e5:0a:8a:43:77:3e:d9:0b:4e:75:9e:09:93:
                    a4:e6:ca:b6:9f:fc:8f:67:70:81:86:f1:93:4a:e9:
                    2b:fd:38:5f:2a:94:da:40:11:93:a6:9a:2f:98:a7:
                    a7:e5:ef:6c:c5:1a:98:23:9b:55:6a:42:b6:2e:22:
                    a6:c9:e7:b6:f6:d4:79:ea:e7:dc:28:66:55:d6:8c:
                    54:35:1c:3f:c5:f8:ea:50:f1:19:9b:25:a0:88:2c:
                    d3:96:25:11:29:8f:a0:91:1b:20:88:ed:60:34:fb:
                    31:8a:fe:aa:4a:8d:e7:b9:af:91:23:5a:23:9f:e1:
                    6c:a7:f2:7d:5b:8f:16:d1:80:d8:f9:76:b3:2c:a7:
                    51:93:4d:22:f7:31:f5:ff:6a:36:b7:1e:80:59:7f:
                    bb:68:82:51:7a:25:82:84:19:b3:58:9c:80:4c:0d:
                    f3:3a:da:55:4e:e5:b5:45:c7:b9:b4:6f:bd:bd:00:
                    df:2e:6b:fa:37:3b:4c:2b:6c:a9:5e:ab:38:b3:4a:
                    80:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:16:0A:0A:40:E3:D4:0B:EE:E9:14:D6:E2:87:23:12:C0:7E:F3:D3
            X509v3 Authority Key Identifier:
                keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:83:61:32:04:94:9e:39:38:b9:1a:0d:16:b6:33:7e:bb:3e:
         0f:95:20:28:12:2d:6d:1f:b0:c9:eb:08:10:c2:19:b1:5f:8e:
         db:ae:78:2d:b9:45:bb:9c:f7:25:7d:e7:f3:94:95:33:a9:ed:
         fc:2d:ea:f7:eb:3e:af:4e:ac:17:6d:91:85:ca:6f:ee:93:d1:
         43:2e:7c:fe:01:19:b7:82:f9:bc:b6:6d:97:91:55:83:14:d6:
         62:ec:8a:b3:77:07:f7:cd:6f:76:9f:7e:82:33:2a:c5:37:b4:
         86:b0:87:87:89:56:5f:c3:1e:a0:6d:67:f5:3f:3f:fc:d8:f3:
         4b:39:c7:e6:a7:67:da:03:d8:2e:48:52:ff:38:b3:5c:15:c4:
         0d:1a:15:28:29:06:d2:46:52:a6:00:4f:5e:12:93:45:a4:b6:
         f7:6c:82:fa:90:c3:11:a4:eb:91:4b:a1:31:c1:75:0e:5f:86:
         f7:b5:56:58:6f:5c:7c:06:88:91:4a:c7:ae:59:1b:6b:26:c1:
         a4:f4:1e:30:23:d8:a6:74:c3:3e:ad:19:06:8a:40:e4:66:3b:
         13:b1:21:cc:31:2f:e0:5d:5e:04:a5:25:b5:ef:b6:67:98:f2:
         bb:38:f4:6f:20:1f:3b:f4:95:f0:f2:20:f6:1d:c1:e9:e6:f7:
         9e:f6:1f:62
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw
QjUxNDJDM0YwHhcNMjYwNzE3MDU0NzEwWhcNMjYwNzI0MDU0NzEwWjAYMRYwFAYD
VQQDEw02YTU5YzFkZS1kMWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnGesdoa9eQuUp84+DGEpUMT2zXzXEiIaKoJXp01F8YFellCDktyWxnABqJBn
SSnbFMbLPBVRrbi5gtSUEOUKikN3PtkLTnWeCZOk5sq2n/yPZ3CBhvGTSukr/Thf
KpTaQBGTppovmKen5e9sxRqYI5tVakK2LiKmyee29tR56ufcKGZV1oxUNRw/xfjq
UPEZmyWgiCzTliURKY+gkRsgiO1gNPsxiv6qSo3nua+RI1ojn+Fsp/J9W48W0YDY
+XazLKdRk00i9zH1/2o2tx6AWX+7aIJReiWChBmzWJyATA3zOtpVTuW1Rce5tG+9
vQDfLmv6NztMK2ypXqs4s0qAZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFIWCgpA
49QL7ukU1uKHIxLAfvPTMB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3
REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM
RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH
clhXRjEycjdha0FMVVVMRDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAOINhMgSUnjk4uRoNFrYzfrs+D5UgKBItbR+wyesIEMIZsV+O2654LblFu5z3
JX3n85SVM6nt/C3q9+s+r06sF22Rhcpv7pPRQy58/gEZt4L5vLZtl5FVgxTWYuyK
s3cH981vdp9+gjMqxTe0hrCHh4lWX8MeoG1n9T8//NjzSznH5qdn2gPYLkhS/ziz
XBXEDRoVKCkG0kZSpgBPXhKTRaS292yC+pDDEaTrkUuhMcF1Dl+G97VWWG9cfAaI
kUrHrlkbaybBpPQeMCPYpnTDPq0ZBopA5GY7E7EhzDEv4F1eBKUlte+2Z5jyuzj0
byAfO/SV8PIg9h3B6eb3nvYfYg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:16 2026 by rpki-client