Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft
File:                     gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json)
Hash identifier:          W3uzXWkt+vEc0yjW0d90q1DjK1KZyBgqhBMh6VxMsIo=
Subject key identifier:   50:05:6D:CB:41:0B:DB:A8:ED:25:59:FD:44:31:ED:33:27:21:B4:09
Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B
Certificate issuer:       /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B
Certificate serial:       0556
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft
Manifest number:          054F
Signing time:             Sat 04 Jul 2026 23:46:39 +0000
Manifest this update:     Sat 04 Jul 2026 23:46:39 +0000
Manifest next update:     Sat 11 Jul 2026 23:46:39 +0000
Files and hashes:         1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: HVLQdd5rxZnbndu7rQImpL9dvXWr6AK7BxC1pDbHH/s=)
                          2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: yrbFlXX+Q20ODJMbiysSXJ6ACMYRj3dlttqVySrHsBg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl
                          rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 23:46:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1366 (0x556)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B
        Validity
            Not Before: Jul  4 23:46:39 2026 GMT
            Not After : Jul 11 23:46:39 2026 GMT
        Subject: CN=6a499b5f-20e9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:0c:58:b6:e6:c3:91:d9:bb:36:bd:96:6b:f8:
                    1b:27:ba:f8:2c:e1:da:a3:5c:39:de:67:29:91:dd:
                    a7:f8:28:d3:93:fd:8f:a7:e9:b0:1c:6d:95:d9:17:
                    e1:7a:89:4e:7a:1d:9c:a5:4e:c1:86:ec:e9:63:7c:
                    ef:b9:7e:68:ea:ed:68:18:e7:90:ff:24:9f:6e:58:
                    23:16:e2:f9:01:04:7b:68:48:9d:b3:8c:bc:42:14:
                    50:36:da:c3:e8:5c:2f:38:e6:6c:09:fd:6c:af:1e:
                    28:68:0b:99:15:7a:6b:f9:dc:42:36:25:44:76:a0:
                    2c:cb:45:12:47:5b:16:2b:d3:5e:0d:95:b1:52:f4:
                    d5:87:d6:d1:52:54:3c:21:e3:27:41:23:79:6e:93:
                    e1:86:07:64:a4:65:54:6f:01:d4:a4:ef:49:76:d9:
                    51:d2:57:44:05:2e:36:ca:a5:c6:7a:4b:69:ac:a2:
                    89:82:86:f3:5f:80:97:e1:d9:de:32:6b:3d:c8:ee:
                    ee:21:46:74:e4:1c:88:95:61:37:e0:3d:ba:96:7d:
                    ec:b9:a2:77:f0:42:39:71:0b:5e:84:ad:a2:75:22:
                    12:6c:4d:50:60:a3:d0:1d:de:34:f5:19:3b:44:f1:
                    a6:58:96:b7:ba:78:a5:a7:7f:8e:b6:24:ea:3c:12:
                    1e:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:05:6D:CB:41:0B:DB:A8:ED:25:59:FD:44:31:ED:33:27:21:B4:09
            X509v3 Authority Key Identifier:
                keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:50:6d:d8:c4:a3:66:31:f8:6c:25:f6:55:47:ed:cf:c4:c8:
         6c:b4:7d:43:e0:ed:eb:6a:39:73:e8:05:57:60:86:d9:2a:ce:
         6e:0d:49:20:c9:49:8b:ea:52:00:fe:fd:60:3d:14:cb:c9:2a:
         4f:9c:a9:44:0c:dc:ee:d0:f0:c4:2c:05:8e:10:da:a1:18:54:
         8c:c3:39:8a:9d:d1:19:f3:15:54:85:1e:13:ab:53:89:ac:51:
         21:50:d3:fb:9d:c6:86:5d:9e:e5:87:cc:65:b0:81:5e:a8:a8:
         1c:a1:d7:56:3d:13:50:b7:b5:03:5f:7e:06:3b:34:a3:59:2c:
         87:25:e9:a0:d8:7d:2a:a5:15:32:fe:08:18:67:c6:f4:8c:95:
         9a:c2:77:9e:bd:54:6e:6c:0a:1e:79:5a:1d:e1:3f:da:7d:ae:
         ac:cd:5f:e3:73:f7:5a:a1:88:64:8f:34:d5:57:78:62:89:c3:
         83:fe:ae:c9:d0:76:5c:b1:a5:31:93:2a:aa:1a:15:c7:a0:5a:
         85:78:10:63:0c:8b:60:39:0c:42:8b:9d:64:19:03:92:bd:a7:
         7d:92:8e:ff:97:f3:db:2a:ac:45:e9:bc:93:db:c6:f0:1f:c7:
         24:0e:48:c0:58:94:5a:22:8d:46:d4:ed:f0:87:37:91:6c:88:
         52:32:65:55
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz
Njk2MUQwOUIwHhcNMjYwNzA0MjM0NjM5WhcNMjYwNzExMjM0NjM5WjAYMRYwFAYD
VQQDEw02YTQ5OWI1Zi0yMGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAlwxYtubDkdm7Nr2Wa/gbJ7r4LOHao1w53mcpkd2n+CjTk/2Pp+mwHG2V2Rfh
eolOeh2cpU7BhuzpY3zvuX5o6u1oGOeQ/ySfblgjFuL5AQR7aEids4y8QhRQNtrD
6FwvOOZsCf1srx4oaAuZFXpr+dxCNiVEdqAsy0USR1sWK9NeDZWxUvTVh9bRUlQ8
IeMnQSN5bpPhhgdkpGVUbwHUpO9JdtlR0ldEBS42yqXGektprKKJgobzX4CX4dne
Mms9yO7uIUZ05ByIlWE34D26ln3suaJ38EI5cQtehK2idSISbE1QYKPQHd409Rk7
RPGmWJa3unilp3+OtiTqPBIeBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFAFbctB
C9uo7SVZ/UQx7TMnIbQJMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx
MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw
SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB
cHJUZFZpWlQ3eEEybGgwSnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAFVBt2MSjZjH4bCX2VUftz8TIbLR9Q+Dt62o5c+gFV2CG2SrObg1JIMlJi+pS
AP79YD0Uy8kqT5ypRAzc7tDwxCwFjhDaoRhUjMM5ip3RGfMVVIUeE6tTiaxRIVDT
+53Ghl2e5YfMZbCBXqioHKHXVj0TULe1A19+Bjs0o1kshyXpoNh9KqUVMv4IGGfG
9IyVmsJ3nr1UbmwKHnlaHeE/2n2urM1f43P3WqGIZI801Vd4YonDg/6uydB2XLGl
MZMqqhoVx6BahXgQYwyLYDkMQoudZBkDkr2nfZKO/5fz2yqsRem8k9vG8B/HJA5I
wFiUWiKNRtTt8Ic3kWyIUjJlVQ==
-----END CERTIFICATE-----
Generated at Sun Jul 5 07:51:14 2026 by rpki-client