Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft
File:                     lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json)
Hash identifier:          7wH8a7pNk7YmCAJWMFBiYCTBoBz4a4TNnp+LmBAjm70=
Subject key identifier:   81:89:7E:EE:30:CA:C0:83:3F:6D:6F:D1:82:3A:32:1A:AA:E7:9E:C2
Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD
Certificate issuer:       /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD
Certificate serial:       0171
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft
Manifest number:          0169
Signing time:             Fri 17 Jul 2026 06:04:03 +0000
Manifest this update:     Fri 17 Jul 2026 06:04:03 +0000
Manifest next update:     Fri 24 Jul 2026 06:04:03 +0000
Files and hashes:         1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: lZwBc+3lyhew6uJTI5aEg53D2rTfnjg3WY3zVgaQOQQ=)
                          2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: /fpFKtFcwh7KjBndTGfGIO4WW4Bx9KlPmCwqANIq6FA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl
                          rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:04:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 369 (0x171)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD
        Validity
            Not Before: Jul 17 06:04:03 2026 GMT
            Not After : Jul 24 06:04:03 2026 GMT
        Subject: CN=6a59c5d3-cd20
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:e0:92:ef:b1:db:5f:e1:d7:de:17:0f:52:b3:
                    1e:11:dd:23:38:b5:b4:ba:b1:88:08:38:d3:89:4d:
                    6a:5a:3e:2e:83:53:bd:c1:37:83:74:cb:02:c7:9b:
                    52:dd:73:7b:2c:95:de:56:9f:a3:91:f0:fb:1c:3e:
                    9f:93:25:45:1e:5b:86:51:59:61:4d:c3:9e:13:72:
                    4c:f5:f6:6f:7a:ee:22:29:33:27:54:ff:39:eb:5d:
                    54:ac:82:de:d1:47:aa:7c:64:a9:ef:44:14:54:da:
                    04:9c:55:a9:70:6b:ee:0b:10:9c:07:18:c5:6a:63:
                    45:05:b2:0a:77:e4:00:64:da:0e:a9:57:83:20:09:
                    4b:0a:b2:29:da:af:02:32:25:e2:86:2f:5e:00:f4:
                    db:3f:3c:c7:4e:fe:b0:70:c9:17:08:05:cc:16:c2:
                    cb:87:56:e4:b8:37:50:75:55:1e:90:98:f7:45:6f:
                    59:19:b2:c9:ee:40:0e:4f:b1:5b:fe:58:16:ea:b5:
                    40:5b:de:2d:b8:e1:5f:6e:46:64:97:70:fd:19:de:
                    8e:37:44:61:f7:1d:59:33:c1:27:62:27:ed:9c:06:
                    10:6d:a6:60:ff:9b:2d:3f:83:48:22:f3:69:59:48:
                    cc:8c:e9:29:73:07:62:ae:5c:63:21:6e:e4:99:8d:
                    15:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:89:7E:EE:30:CA:C0:83:3F:6D:6F:D1:82:3A:32:1A:AA:E7:9E:C2
            X509v3 Authority Key Identifier:
                keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:74:52:29:53:f8:59:ca:b4:a9:cb:ca:e1:d0:a6:d9:24:dd:
         05:d3:b3:45:a2:5c:3f:f5:fe:f1:d4:6c:ee:fc:71:b8:74:8a:
         e0:5e:af:f8:13:85:9a:4d:1b:78:3d:5f:43:7f:98:c8:9c:46:
         43:60:bc:aa:47:3c:64:18:b5:ea:ca:0f:e7:c1:5a:f5:c9:4e:
         c2:4a:91:a1:1c:67:24:ba:eb:30:ba:38:48:bf:b9:90:5a:32:
         e2:82:f2:e3:39:96:aa:ba:09:b9:44:c7:4b:8b:f6:1c:97:ae:
         d3:ae:cb:fe:88:fe:a2:4a:68:b5:8c:cd:0e:db:1f:c4:17:76:
         3d:a2:69:4a:8f:59:df:94:f2:9a:45:95:b7:47:42:24:64:77:
         8c:c2:2e:7c:a7:61:f6:f0:97:9a:ef:5b:37:ba:02:e3:9f:f5:
         59:09:07:7a:2b:b5:a8:2e:58:3b:f3:0a:19:16:3b:93:6b:51:
         a7:a3:eb:98:2d:2e:10:22:c6:6a:d6:eb:f1:c7:f6:f6:ee:c7:
         7d:d2:c0:76:c5:b4:6f:0e:03:8a:71:06:07:8d:93:45:b9:c5:
         aa:56:9a:3d:4f:d8:55:17:a5:f1:3e:5a:fd:16:b9:af:60:d0:
         f4:48:8d:b5:4c:ff:ee:4a:45:a5:2e:2f:25:89:38:13:1d:37:
         e9:db:cc:05
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy
Rjc3RDJDRkQwHhcNMjYwNzE3MDYwNDAzWhcNMjYwNzI0MDYwNDAzWjAYMRYwFAYD
VQQDEw02YTU5YzVkMy1jZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsOCS77HbX+HX3hcPUrMeEd0jOLW0urGICDjTiU1qWj4ug1O9wTeDdMsCx5tS
3XN7LJXeVp+jkfD7HD6fkyVFHluGUVlhTcOeE3JM9fZveu4iKTMnVP85611UrILe
0UeqfGSp70QUVNoEnFWpcGvuCxCcBxjFamNFBbIKd+QAZNoOqVeDIAlLCrIp2q8C
MiXihi9eAPTbPzzHTv6wcMkXCAXMFsLLh1bkuDdQdVUekJj3RW9ZGbLJ7kAOT7Fb
/lgW6rVAW94tuOFfbkZkl3D9Gd6ON0Rh9x1ZM8EnYiftnAYQbaZg/5stP4NIIvNp
WUjMjOkpcwdirlxjIW7kmY0VNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIGJfu4w
ysCDP21v0YI6Mhqq557CMB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5
MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM
UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX
OUxUV20xeVRiSkV2ZDlMUDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAJ3RSKVP4Wcq0qcvK4dCm2STdBdOzRaJcP/X+8dRs7vxxuHSK4F6v+BOFmk0b
eD1fQ3+YyJxGQ2C8qkc8ZBi16soP58Fa9clOwkqRoRxnJLrrMLo4SL+5kFoy4oLy
4zmWqroJuUTHS4v2HJeu067L/oj+okpotYzNDtsfxBd2PaJpSo9Z35TymkWVt0dC
JGR3jMIufKdh9vCXmu9bN7oC45/1WQkHeiu1qC5YO/MKGRY7k2tRp6PrmC0uECLG
atbr8cf29u7HfdLAdsW0bw4DinEGB42TRbnFqlaaPU/YVRel8T5a/Ra5r2DQ9EiN
tUz/7kpFpS4vJYk4Ex036dvMBQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:21 2026 by rpki-client