Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft
File:                     XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json)
Hash identifier:          C+0YFvxXAot8oRggICjm18c54JBod+ykRRwJdlGXEFk=
Subject key identifier:   C1:D4:FD:8A:60:0A:EB:8A:F5:53:52:05:3F:5B:73:BD:30:30:BA:46
Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD
Certificate issuer:       /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD
Certificate serial:       13BB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft
Manifest number:          4952
Signing time:             Tue 14 Jul 2026 14:21:13 +0000
Manifest this update:     Tue 14 Jul 2026 14:21:12 +0000
Manifest next update:     Tue 21 Jul 2026 14:21:12 +0000
Files and hashes:         1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: j1I6XfI3l/J8+ErOPDjuLe7wSAFjfpWaa8fsIfLFG4U=)
                          2: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: r6K9sT4xz4xltrfN6WopOwvbBDeZ2oXDfmgdeeL8nwY=)
                          3: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: 8j8UggU/cOGDsFTMUgNVbsmPDrBcfc9iBtV2U1i4LIQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl
                          rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 21 Jul 2026 14:21:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5051 (0x13bb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E5D61, serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD
        Validity
            Not Before: Jul 14 14:21:12 2026 GMT
            Not After : Jul 21 14:21:12 2026 GMT
        Subject: CN=6a5645d8-cd8c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:76:a4:87:28:12:bb:8a:c5:c2:3c:94:5a:bd:
                    ab:ca:f2:f3:b9:34:b8:67:19:8f:4a:af:4d:70:2f:
                    cf:51:e9:d8:60:ef:64:94:9a:7d:1e:01:b6:82:83:
                    7e:ea:6d:ad:0f:86:71:7e:fd:05:c6:0b:dd:ff:5d:
                    dd:dc:aa:c7:13:d6:b0:fb:a8:40:d1:3b:3f:f9:ee:
                    3c:8b:a2:96:d3:87:fa:fe:bc:b6:fa:49:5d:96:49:
                    2c:1f:14:2e:48:43:61:69:1b:79:88:27:84:cb:67:
                    78:e0:4b:c4:96:6f:52:af:18:51:83:4f:1a:0b:70:
                    c6:86:2a:9e:60:de:2b:ed:dd:98:bc:e6:eb:8b:62:
                    70:be:51:61:41:91:23:c8:33:69:25:9f:d8:85:fe:
                    47:df:3d:8e:a7:c5:ba:a8:d0:f5:c2:cd:ca:5d:16:
                    52:98:f1:f2:14:91:97:84:bf:c1:dd:78:a8:61:5a:
                    37:76:9f:4f:00:bf:e8:5d:12:77:19:60:39:45:1f:
                    34:b1:f6:58:ef:87:ac:16:5e:2d:e3:94:02:4f:f5:
                    37:53:2b:fc:98:ef:46:17:9d:7a:4d:0d:0d:b4:64:
                    a8:5d:8e:10:f9:65:ab:80:84:18:f5:60:91:b3:17:
                    d9:9e:f7:53:d2:aa:eb:39:e3:34:8b:4b:53:9a:c5:
                    d6:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:D4:FD:8A:60:0A:EB:8A:F5:53:52:05:3F:5B:73:BD:30:30:BA:46
            X509v3 Authority Key Identifier:
                keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:d3:37:27:df:10:04:85:8c:9f:f7:eb:e3:30:28:d2:72:7b:
         27:50:4c:0f:6d:fd:c6:32:43:c5:82:60:b5:e2:62:2a:0a:64:
         10:5a:95:99:9e:41:08:fb:1d:d1:df:70:75:84:56:9e:04:bc:
         f1:7d:ad:39:67:18:92:05:62:83:0a:8c:78:6d:16:82:5d:4b:
         85:2b:97:18:f7:17:d4:2e:a2:a3:84:f0:2a:fe:5c:61:32:89:
         a6:18:a0:75:17:d2:4b:99:32:1b:9b:bb:26:7e:f1:90:88:a2:
         01:2f:82:5c:45:17:17:89:db:e1:a1:1f:84:88:af:3e:05:a1:
         17:2f:cc:bb:00:53:6d:6f:63:5a:16:1e:9d:1c:83:d5:ea:70:
         e4:11:42:be:c4:64:f2:9c:e5:a9:d7:b8:84:60:d8:55:fd:c7:
         fb:a2:e0:ac:3e:72:d9:a7:9c:c8:28:de:1d:e8:6e:eb:9b:c1:
         37:af:bf:07:12:c2:3a:39:2a:95:13:80:01:a1:af:f9:6b:e0:
         3a:3d:0f:aa:3b:e6:f3:7e:99:eb:94:61:bd:5b:d7:a1:01:f6:
         75:4d:45:7b:83:dd:48:c2:21:55:a7:c0:ee:eb:3b:38:1c:e2:
         b0:b7:37:51:96:d6:1d:dd:ae:6e:e9:fc:e1:8a:19:86:99:4a:
         3d:38:95:03
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICE7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0
NjI0QjlGQ0QwHhcNMjYwNzE0MTQyMTEyWhcNMjYwNzIxMTQyMTEyWjAYMRYwFAYD
VQQDEw02YTU2NDVkOC1jZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnHakhygSu4rFwjyUWr2ryvLzuTS4ZxmPSq9NcC/PUenYYO9klJp9HgG2goN+
6m2tD4Zxfv0Fxgvd/13d3KrHE9aw+6hA0Ts/+e48i6KW04f6/ry2+kldlkksHxQu
SENhaRt5iCeEy2d44EvElm9SrxhRg08aC3DGhiqeYN4r7d2YvObri2JwvlFhQZEj
yDNpJZ/Yhf5H3z2Op8W6qND1ws3KXRZSmPHyFJGXhL/B3XioYVo3dp9PAL/oXRJ3
GWA5RR80sfZY74esFl4t45QCT/U3Uyv8mO9GF516TQ0NtGSoXY4Q+WWrgIQY9WCR
sxfZnvdT0qrrOeM0i0tTmsXW2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMHU/Ypg
CuuK9VNSBT9bc70wMLpGMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE
NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu
ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB
eTc0T1ExbW5lQnBHSkxuODAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAPtM3J98QBIWMn/fr4zAo0nJ7J1BMD239xjJDxYJgteJiKgpkEFqVmZ5BCPsd
0d9wdYRWngS88X2tOWcYkgVigwqMeG0Wgl1LhSuXGPcX1C6io4TwKv5cYTKJphig
dRfSS5kyG5u7Jn7xkIiiAS+CXEUXF4nb4aEfhIivPgWhFy/MuwBTbW9jWhYenRyD
1epw5BFCvsRk8pzlqde4hGDYVf3H+6LgrD5y2aecyCjeHehu65vBN6+/BxLCOjkq
lROAAaGv+WvgOj0Pqjvm836Z65RhvVvXoQH2dU1Fe4PdSMIhVafA7us7OBzisLc3
UZbWHd2ubun84YoZhplKPTiVAw==
-----END CERTIFICATE-----
Generated at Wed Jul 15 14:45:14 2026 by rpki-client