Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft
File:                     dmH1l-po7_TJKXNjm7Z11_A5CXE.mft (raw, json)
Hash identifier:          pXTRZBOyFP2A5fGnX0UOb2+DsWEkNnuBLWQ0KJML010=
Subject key identifier:   E3:BD:C8:5C:BD:6D:E9:A3:8B:52:79:50:1B:D7:72:D8:CB:F2:74:DF
Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71
Certificate issuer:       /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971
Certificate serial:       06E2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft
Manifest number:          06CD
Signing time:             Thu 16 Jul 2026 22:47:44 +0000
Manifest this update:     Thu 16 Jul 2026 22:47:44 +0000
Manifest next update:     Thu 23 Jul 2026 22:47:44 +0000
Files and hashes:         1: dmH1l-po7_TJKXNjm7Z11_A5CXE.crl (hash: 6W5eQh+FynRhGzPd7DIAGtfGtndX4wOhm5ouoZbacMU=)
                          2: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (hash: qSB4ftjX3kA4tLaGQ98+0+IxSSCm+dtpWVZIBrMu7h8=)
                          3: 10123D12E34E11ECB9CB283EC4F9AE02.roa (hash: 8aY/L8nAVzgyjTW/6jXj10GkNKuhhpPDhGncvfwb/Bc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl
                          rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 22:47:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1762 (0x6e2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EA176, serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971
        Validity
            Not Before: Jul 16 22:47:44 2026 GMT
            Not After : Jul 23 22:47:44 2026 GMT
        Subject: CN=6a595f90-58f0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:d5:f8:7b:b7:57:fe:b5:95:e4:a1:ef:0e:50:
                    25:f8:b0:83:c3:68:87:b2:39:ef:6f:6a:c5:f5:1a:
                    8c:73:ea:87:52:d3:a7:43:14:d6:37:68:ed:21:18:
                    f0:e8:a8:06:60:9d:96:c5:4f:34:48:05:d1:67:26:
                    9a:3d:f5:e3:94:f1:54:eb:81:2f:29:0d:ee:bb:1d:
                    48:72:69:6b:03:08:bf:c0:ee:e7:79:30:7e:e7:d8:
                    ab:4d:50:0e:29:0e:9d:7e:bc:67:d7:d1:fc:a5:a7:
                    47:36:23:e9:8e:d0:74:80:7b:8d:6f:33:dd:e1:e1:
                    78:6c:2b:dd:ed:ef:d2:2a:89:be:e4:77:23:45:2b:
                    ff:8d:83:b2:1c:cd:c1:93:ad:4d:14:2f:e0:98:8b:
                    b9:0f:70:fd:ce:21:a6:fe:d1:1b:d1:fd:38:1f:75:
                    31:e3:f5:15:4e:a1:75:9d:68:c0:af:99:17:c0:96:
                    3b:fe:97:15:df:b4:e1:fc:6e:80:9e:50:80:e4:8a:
                    8c:de:c6:f8:ee:0a:13:39:b5:7c:b1:44:c3:7c:b2:
                    48:c3:11:44:2e:57:ee:8c:c5:23:3d:ce:06:cc:4b:
                    1f:0e:45:a7:e2:ff:6d:a7:ec:cd:21:bc:b4:18:85:
                    c7:f1:23:6e:b0:2a:ef:66:9d:cb:f8:62:5c:33:00:
                    98:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:BD:C8:5C:BD:6D:E9:A3:8B:52:79:50:1B:D7:72:D8:CB:F2:74:DF
            X509v3 Authority Key Identifier:
                keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:cd:71:75:6f:e8:e9:e2:b9:71:7c:33:9e:69:64:24:d9:3d:
         0f:85:58:81:49:b6:50:85:64:0b:de:bc:4f:b2:9d:1b:36:7f:
         ec:c0:6c:f4:b2:5b:68:95:97:c7:c6:0c:52:5d:a4:4d:e3:f0:
         fe:2e:fb:8a:79:17:a5:2f:ea:ac:e8:85:9a:05:93:68:10:ce:
         85:ef:6b:63:80:7f:52:14:74:e8:85:54:86:30:b2:ea:e6:23:
         e1:41:ad:cd:e7:f1:61:3d:5a:c4:37:f7:cd:df:f1:f3:32:7b:
         76:67:c9:f2:6f:3b:24:17:9c:bf:e7:15:b7:a2:76:1c:76:65:
         a7:16:27:5f:6c:6e:d3:2c:91:35:04:5f:ad:ac:7b:1e:ed:5e:
         87:74:55:da:50:f2:44:a2:39:e1:fe:41:44:50:23:ce:19:0a:
         bc:8e:d7:3b:7c:f1:58:7e:fb:05:8b:fa:e5:af:c9:77:af:2c:
         cc:8d:7a:ac:3c:44:ee:71:81:d2:c0:bf:08:2a:32:89:76:ad:
         4d:03:f2:bf:7a:47:54:1c:1b:80:7f:00:6d:01:15:e9:af:81:
         ac:8b:ea:99:33:fb:f8:f8:2f:15:37:f4:c7:20:0d:30:1f:1d:
         d5:2c:4d:dc:2d:2c:66:d4:9c:4d:fc:2b:a1:2e:af:86:a7:b1:
         a4:52:67:b2
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3
RjAzOTA5NzEwHhcNMjYwNzE2MjI0NzQ0WhcNMjYwNzIzMjI0NzQ0WjAYMRYwFAYD
VQQDEw02YTU5NWY5MC01OGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0NX4e7dX/rWV5KHvDlAl+LCDw2iHsjnvb2rF9RqMc+qHUtOnQxTWN2jtIRjw
6KgGYJ2WxU80SAXRZyaaPfXjlPFU64EvKQ3uux1IcmlrAwi/wO7neTB+59irTVAO
KQ6dfrxn19H8padHNiPpjtB0gHuNbzPd4eF4bCvd7e/SKom+5HcjRSv/jYOyHM3B
k61NFC/gmIu5D3D9ziGm/tEb0f04H3Ux4/UVTqF1nWjAr5kXwJY7/pcV37Th/G6A
nlCA5IqM3sb47goTObV8sUTDfLJIwxFELlfujMUjPc4GzEsfDkWn4v9tp+zNIby0
GIXH8SNusCrvZp3L+GJcMwCYkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOO9yFy9
bemji1J5UBvXctjL8nTfMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy
OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD
WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QTE3Ni9BREQzQUVDRUIyOEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdf
VEpLWE5qbTdaMTFfQTVDWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAeM1xdW/o6eK5cXwznmlkJNk9D4VYgUm2UIVkC968T7KdGzZ/7MBs9LJbaJWX
x8YMUl2kTePw/i77inkXpS/qrOiFmgWTaBDOhe9rY4B/UhR06IVUhjCy6uYj4UGt
zefxYT1axDf3zd/x8zJ7dmfJ8m87JBecv+cVt6J2HHZlpxYnX2xu0yyRNQRfrax7
Hu1eh3RV2lDyRKI54f5BRFAjzhkKvI7XO3zxWH77BYv65a/Jd68szI16rDxE7nGB
0sC/CCoyiXatTQPyv3pHVBwbgH8AbQEV6a+BrIvqmTP7+PgvFTf0xyANMB8d1SxN
3C0sZtScTfwroS6vhqexpFJnsg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 04:05:53 2026 by rpki-client