Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft
File:                     A9h0_y9dMgjn62Jadzf81EzuKsI.mft (raw, json)
Hash identifier:          1GD06861O+zt70W3ClPSu0xoQSCFebnpVh0BhjzpVAY=
Subject key identifier:   36:7E:0F:8A:47:F3:2F:7E:E9:83:D4:C7:65:37:8C:70:7A:11:50:7C
Authority key identifier: 03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2
Certificate issuer:       /CN=A91D901E/serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2
Certificate serial:       B0
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft
Manifest number:          AE
Signing time:             Fri 17 Jul 2026 08:21:12 +0000
Manifest this update:     Fri 17 Jul 2026 08:21:11 +0000
Manifest next update:     Fri 24 Jul 2026 08:21:11 +0000
Files and hashes:         1: A9h0_y9dMgjn62Jadzf81EzuKsI.crl (hash: 5wrrv2UHGzXUWva0LJ6pekup4KoEA7BXL4RyYHE9raI=)
                          2: 58893B2878DC11F084C71D2BC4F9AE02.roa (hash: cA1zRf5hGPx366nz55tbLEUSAsNqCtNhxK7+ift/7Yw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl
                          rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:21:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 176 (0xb0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D901E, serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2
        Validity
            Not Before: Jul 17 08:21:11 2026 GMT
            Not After : Jul 24 08:21:11 2026 GMT
        Subject: CN=6a59e5f8-3e57
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:4e:0d:3c:bb:05:e2:d1:12:6d:65:7b:f3:2e:
                    05:2a:a9:36:da:eb:1c:83:27:97:a8:2f:1b:0b:1e:
                    48:af:36:b8:e2:36:ae:1d:18:9b:45:da:22:ad:0a:
                    30:1b:7b:d6:ce:9e:fc:93:9a:a7:d5:cc:de:bf:be:
                    ca:e1:57:3a:5a:4b:2c:2a:4e:6a:fd:c5:9c:72:45:
                    72:10:b4:f9:0e:1f:a0:c6:a6:1f:16:2b:4a:a8:c4:
                    e0:d6:f1:83:61:e8:31:63:23:c1:18:cb:60:f1:ba:
                    8a:c9:92:f1:a4:a5:a6:63:d6:2e:9f:52:59:d8:a7:
                    c1:2d:c8:53:d6:b3:cc:0a:b6:98:60:6b:33:47:fa:
                    f3:0e:79:ac:ff:1a:03:f1:3f:d8:6c:c8:aa:3f:28:
                    61:04:b4:0e:8a:6a:6d:26:e7:bd:40:bc:7a:ef:b7:
                    c1:7e:a9:aa:ab:d1:c8:3d:0a:f9:b1:62:67:2d:59:
                    c6:47:19:d6:f4:c4:75:50:51:f5:a7:e4:07:67:78:
                    4a:91:04:be:a5:80:ad:6b:dc:bc:71:aa:28:d0:5a:
                    dd:46:e4:b7:7d:17:47:22:7f:c7:d7:89:89:25:b8:
                    80:28:20:4b:00:87:40:88:99:02:e9:6d:1a:9c:b4:
                    1f:74:71:7e:76:e0:5e:69:f5:42:07:01:a1:50:1f:
                    59:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:7E:0F:8A:47:F3:2F:7E:E9:83:D4:C7:65:37:8C:70:7A:11:50:7C
            X509v3 Authority Key Identifier:
                keyid:03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:14:44:a1:38:ff:ce:e2:9f:e9:ac:2a:00:83:d9:aa:02:38:
         73:14:1f:a1:8a:95:54:35:fb:e8:d2:f5:9d:3f:a5:b7:a1:c8:
         a9:fd:f8:2b:54:a0:03:14:46:05:21:85:a5:bf:60:f1:4e:25:
         0c:57:01:77:95:4f:85:e6:ce:c5:6b:1c:0c:36:1e:32:07:61:
         0d:a5:a9:c0:62:28:9f:c8:fc:df:67:f5:09:27:fc:f6:8a:ef:
         79:61:a0:1a:82:23:a0:da:77:d4:18:fc:ee:57:d5:6b:a7:ac:
         89:79:76:89:8b:17:90:80:ae:0f:5e:41:1d:e3:c6:23:52:00:
         31:21:6a:83:4d:20:17:01:fb:e0:36:29:c0:78:79:f3:3c:8a:
         a7:7b:47:2e:ec:d2:da:9c:4e:7f:85:dc:9f:e8:d1:10:39:a4:
         bf:74:82:f0:04:9a:09:4c:f4:79:11:6f:7d:84:77:5f:03:dd:
         ca:df:44:e0:46:72:d4:28:3d:08:73:e4:41:2e:30:4c:cc:17:
         b2:96:1a:f2:d7:a1:cd:a7:ec:39:57:aa:49:33:e1:3b:9e:57:
         c9:8d:d7:84:e2:1f:38:ae:d4:04:a7:c4:6e:90:32:1a:d6:65:
         e0:b2:e9:8f:fd:19:4e:a9:05:d5:67:97:c7:d5:00:71:fc:c1:
         4e:c6:1a:bf
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDkwMUUxMTAvBgNVBAUTKDAzRDg3NEZGMkY1RDMyMDhFN0VCNjI1QTc3MzdGQ0Q0
NENFRTJBQzIwHhcNMjYwNzE3MDgyMTExWhcNMjYwNzI0MDgyMTExWjAYMRYwFAYD
VQQDEw02YTU5ZTVmOC0zZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4E4NPLsF4tESbWV78y4FKqk22uscgyeXqC8bCx5Irza44jauHRibRdoirQow
G3vWzp78k5qn1czev77K4Vc6WkssKk5q/cWcckVyELT5Dh+gxqYfFitKqMTg1vGD
YegxYyPBGMtg8bqKyZLxpKWmY9Yun1JZ2KfBLchT1rPMCraYYGszR/rzDnms/xoD
8T/YbMiqPyhhBLQOimptJue9QLx677fBfqmqq9HIPQr5sWJnLVnGRxnW9MR1UFH1
p+QHZ3hKkQS+pYCta9y8caoo0FrdRuS3fRdHIn/H14mJJbiAKCBLAIdAiJkC6W0a
nLQfdHF+duBeafVCBwGhUB9ZGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDZ+D4pH
8y9+6YPUx2U3jHB6EVB8MB8GA1UdIwQYMBaAFAPYdP8vXTII5+tiWnc3/NRM7irC
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTAxRS9ERTJENjRFQTc4
REExMUYwQjBGQkUyMTZDNEY5QUUwMi9BOWgwX3k5ZE1nam42MkphZHpmODFFenVL
c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0E5aDBfeTlkTWdqbjYySmFkemY4MUV6dUtzSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
OTAxRS9ERTJENjRFQTc4REExMUYwQjBGQkUyMTZDNEY5QUUwMi9BOWgwX3k5ZE1n
am42MkphZHpmODFFenVLc0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAgRREoTj/zuKf6awqAIPZqgI4cxQfoYqVVDX76NL1nT+lt6HIqf34K1SgAxRG
BSGFpb9g8U4lDFcBd5VPhebOxWscDDYeMgdhDaWpwGIon8j832f1CSf89orveWGg
GoIjoNp31Bj87lfVa6esiXl2iYsXkICuD15BHePGI1IAMSFqg00gFwH74DYpwHh5
8zyKp3tHLuzS2pxOf4Xcn+jREDmkv3SC8ASaCUz0eRFvfYR3XwPdyt9E4EZy1Cg9
CHPkQS4wTMwXspYa8tehzafsOVeqSTPhO55XyY3XhOIfOK7UBKfEbpAyGtZl4LLp
j/0ZTqkF1WeXx9UAcfzBTsYavw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:59 2026 by rpki-client