Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
File:                     ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json)
Hash identifier:          Fyp/s25gn4Y8f2QeU3iSJujzPTKc1Y+m9rC2DBMvqTI=
Subject key identifier:   10:46:BC:3D:5C:48:D2:96:3B:3F:BD:F1:8D:E9:A5:3A:C9:BA:1C:97
Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A
Certificate issuer:       /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A
Certificate serial:       09E2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
Manifest number:          09D6
Signing time:             Sat 04 Jul 2026 20:01:51 +0000
Manifest this update:     Sat 04 Jul 2026 20:01:51 +0000
Manifest next update:     Sat 11 Jul 2026 20:01:51 +0000
Files and hashes:         1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: WQfgEQ+4pzOaZkiPR4/x2X1iw/PmpzeaavjHti/bhL8=)
                          2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: MxcRCOMDVxWYLuz/1DuRHNURRxOV2Q55QL6ZvvYDCSE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl
                          rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 20:01:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2530 (0x9e2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A
        Validity
            Not Before: Jul  4 20:01:51 2026 GMT
            Not After : Jul 11 20:01:51 2026 GMT
        Subject: CN=6a4966af-1c22
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:c8:93:70:79:d1:08:4a:72:3a:2e:49:d6:0c:
                    bb:4a:bf:52:53:8b:c0:04:bc:03:1e:25:ed:4b:30:
                    55:67:c4:6e:87:c5:17:98:55:41:4f:1d:36:7b:a8:
                    52:0e:66:5e:57:ba:54:b3:e1:8c:7f:c4:c1:1f:c1:
                    af:de:51:14:b2:ba:96:62:b6:92:58:ce:e2:1c:54:
                    0a:e1:eb:13:66:2d:21:cd:e1:91:a4:cd:e3:6f:ac:
                    9e:5b:5b:14:bb:e6:1b:f6:63:9a:e1:49:13:99:a8:
                    30:58:09:15:34:56:8b:2a:3c:f7:95:48:6b:a5:e0:
                    07:89:73:17:9b:bf:d5:4a:c4:d2:2c:27:3f:93:d6:
                    83:c1:57:91:b3:63:4b:92:f0:41:3b:7c:2f:31:65:
                    38:b5:0f:5e:d7:42:e3:0f:80:48:1d:4d:e5:11:ee:
                    38:7d:dd:d2:32:e0:a5:ca:ff:3b:94:b9:8a:c8:89:
                    ef:bf:f3:d0:52:d9:2f:63:f7:39:97:f2:78:14:6f:
                    da:79:60:21:d2:da:d6:fa:e2:64:1f:81:24:da:53:
                    8f:aa:6f:0c:bf:af:0a:79:47:82:bc:37:94:f1:a8:
                    6a:47:19:79:c3:e7:69:e9:7d:5b:19:51:0f:ba:73:
                    6e:52:14:cb:6d:d3:76:31:19:cc:94:18:80:39:ff:
                    22:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:46:BC:3D:5C:48:D2:96:3B:3F:BD:F1:8D:E9:A5:3A:C9:BA:1C:97
            X509v3 Authority Key Identifier:
                keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:00:f4:cf:f1:bb:e5:4b:93:3f:61:df:23:1a:37:bc:df:e2:
         09:eb:88:cd:0d:dc:8c:6c:42:a0:5c:6e:01:b8:95:ed:db:25:
         ff:26:d4:d0:19:b1:b2:9a:0a:1d:b0:25:55:4d:bf:6c:09:98:
         0e:97:ac:cc:d4:bf:5c:20:1f:63:f4:2e:f7:e4:0b:fc:7f:af:
         dc:8d:c5:60:23:04:54:c7:be:13:b7:38:88:c8:6c:47:a5:ea:
         03:2e:bb:e1:48:fc:f2:f2:c1:8a:57:ed:f4:aa:04:c5:86:62:
         bd:70:47:48:8e:75:55:4b:ac:a4:a6:dc:70:e9:76:29:da:af:
         f0:13:ad:61:8d:51:f6:a6:40:b2:de:19:3d:b1:05:39:c8:35:
         3d:4a:b0:3d:37:5f:0a:3c:56:65:2f:c7:19:ad:89:80:75:f6:
         1e:de:a4:64:9e:a2:f4:fe:f3:29:ba:d3:ed:d2:d0:f6:41:4e:
         18:38:2b:9f:07:9d:52:9b:22:81:b0:cd:9c:4d:f2:6d:b7:f9:
         b1:89:0b:bf:76:a6:aa:fe:e2:90:20:7f:95:f0:cd:90:ef:24:
         b7:96:4f:f7:bc:01:81:86:ff:54:fd:e5:bb:17:16:c6:a7:90:
         00:03:20:2b:8a:2f:a6:ab:6a:26:53:dd:b0:00:ed:49:52:15:
         01:29:ac:ba
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz
RTM2QjU5N0EwHhcNMjYwNzA0MjAwMTUxWhcNMjYwNzExMjAwMTUxWjAYMRYwFAYD
VQQDEw02YTQ5NjZhZi0xYzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0ciTcHnRCEpyOi5J1gy7Sr9SU4vABLwDHiXtSzBVZ8Ruh8UXmFVBTx02e6hS
DmZeV7pUs+GMf8TBH8Gv3lEUsrqWYraSWM7iHFQK4esTZi0hzeGRpM3jb6yeW1sU
u+Yb9mOa4UkTmagwWAkVNFaLKjz3lUhrpeAHiXMXm7/VSsTSLCc/k9aDwVeRs2NL
kvBBO3wvMWU4tQ9e10LjD4BIHU3lEe44fd3SMuClyv87lLmKyInvv/PQUtkvY/c5
l/J4FG/aeWAh0trW+uJkH4Ek2lOPqm8Mv68KeUeCvDeU8ahqRxl5w+dp6X1bGVEP
unNuUhTLbdN2MRnMlBiAOf8iHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBBGvD1c
SNKWOz+98Y3ppTrJuhyXMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB
NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX
WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP
VkNmM05mTjhBMGMtTnJXWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAHQD0z/G75UuTP2HfIxo3vN/iCeuIzQ3cjGxCoFxuAbiV7dsl/ybU0BmxspoK
HbAlVU2/bAmYDpeszNS/XCAfY/Qu9+QL/H+v3I3FYCMEVMe+E7c4iMhsR6XqAy67
4Uj88vLBilft9KoExYZivXBHSI51VUuspKbccOl2Kdqv8BOtYY1R9qZAst4ZPbEF
Ocg1PUqwPTdfCjxWZS/HGa2JgHX2Ht6kZJ6i9P7zKbrT7dLQ9kFOGDgrnwedUpsi
gbDNnE3ybbf5sYkLv3amqv7ikCB/lfDNkO8kt5ZP97wBgYb/VP3luxcWxqeQAAMg
K4ovpqtqJlPdsADtSVIVASmsug==
-----END CERTIFICATE-----
Generated at Mon Jul 6 09:07:28 2026 by rpki-client