Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft
File:                     b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json)
Hash identifier:          9SCO1QOpbkzykuWarM0N67v6OwrAE4HFYBNTUF0KL6U=
Subject key identifier:   34:58:0A:4E:C5:B9:84:55:F9:A1:C7:7F:43:AF:1B:27:79:5C:3F:05
Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61
Certificate issuer:       /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661
Certificate serial:       01B5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft
Manifest number:          01AA
Signing time:             Fri 17 Jul 2026 05:14:16 +0000
Manifest this update:     Fri 17 Jul 2026 05:14:15 +0000
Manifest next update:     Fri 24 Jul 2026 05:14:15 +0000
Files and hashes:         1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: kS7mK15EfzFB9Q52K4n8vf4hAUWlgIMz7j5I3tQuXQk=)
                          2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4eeNf5jC2Mk+3sdc5Wmsh3IL+6DgzipfF5IlQKuRXx0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl
                          rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:14:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 437 (0x1b5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661
        Validity
            Not Before: Jul 17 05:14:15 2026 GMT
            Not After : Jul 24 05:14:15 2026 GMT
        Subject: CN=6a59ba28-2b44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:69:38:ae:5e:47:a2:d9:5a:18:94:1e:88:4e:
                    0b:2f:3c:0e:28:b8:e0:7e:8a:e3:5c:ab:12:8a:02:
                    c3:7f:0b:ae:ee:3f:f9:89:af:f5:50:d2:31:11:f0:
                    2a:30:10:d5:26:fa:c1:ee:7f:e2:0b:87:42:fc:ee:
                    80:45:53:75:2d:cc:da:b5:93:13:d0:01:27:38:14:
                    7f:f8:73:c7:12:4f:10:77:26:ab:3f:d3:08:a0:65:
                    7c:35:0e:99:03:a1:8b:92:e8:dc:06:4a:42:f2:55:
                    4b:9b:7d:3b:73:be:af:af:79:c7:27:c0:14:18:09:
                    88:e2:d4:e9:ff:bc:f8:12:03:a2:05:7e:3f:e9:72:
                    56:62:db:3c:ca:c6:04:21:4a:47:54:f8:50:8b:1c:
                    c1:00:7a:ae:07:7f:33:a2:21:7c:8e:e4:a4:8e:fc:
                    0a:21:8c:87:d9:f5:72:6d:51:6f:4d:18:dd:17:d3:
                    22:e3:88:0b:52:da:87:55:14:5c:e8:80:22:07:23:
                    8d:13:cf:9f:4c:d8:91:c0:52:cb:32:a5:3c:c8:99:
                    9b:b4:64:e5:79:67:27:dc:be:a1:fe:5f:cd:47:09:
                    da:b3:4b:96:7a:3e:60:53:f7:c1:61:86:f3:08:59:
                    08:3a:d5:bb:d5:34:0f:55:46:63:64:41:2b:91:bd:
                    b5:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:58:0A:4E:C5:B9:84:55:F9:A1:C7:7F:43:AF:1B:27:79:5C:3F:05
            X509v3 Authority Key Identifier:
                keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:65:2c:0b:58:02:de:57:56:69:b9:26:62:d2:25:25:58:c6:
         5e:39:2a:c4:af:b7:6a:23:df:eb:19:04:18:55:1e:5b:3a:1b:
         9d:d4:70:f8:f0:52:e8:3a:9f:aa:35:2a:89:e1:09:6d:3e:de:
         e5:ee:76:ae:bd:4b:91:3b:4f:0a:85:51:46:e7:6a:c1:25:84:
         13:58:bc:0e:e1:3e:74:6e:d5:b5:50:75:5d:ac:f8:83:65:e4:
         60:46:41:93:ad:ce:11:40:25:c2:41:53:c7:ce:64:25:c5:8e:
         9a:60:83:29:81:29:8d:59:84:6b:a0:c4:c6:0e:8e:c9:cf:e8:
         e5:1f:aa:93:7a:a1:55:11:66:26:0e:35:c3:87:df:50:5e:0d:
         6f:ba:09:f1:7f:56:1f:4b:8d:4d:74:aa:73:f6:f9:56:24:3f:
         00:73:f4:81:11:42:41:34:f9:cb:10:21:48:99:d4:b2:58:d3:
         a4:f2:3e:a5:35:c9:7b:02:ae:2a:2e:fd:c5:b2:79:fb:d6:89:
         67:c6:4b:16:b5:47:36:68:ff:14:d5:6d:12:89:4b:cb:be:32:
         fe:d3:fd:a6:d5:98:fd:9d:94:3a:f1:f2:ea:7d:e9:75:76:3e:
         ab:43:07:85:6a:97:ae:2f:f1:9d:3c:9c:de:d7:d6:79:5b:40:
         50:34:0b:c7
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB
REFDMDU2NjEwHhcNMjYwNzE3MDUxNDE1WhcNMjYwNzI0MDUxNDE1WjAYMRYwFAYD
VQQDEw02YTU5YmEyOC0yYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAimk4rl5HotlaGJQeiE4LLzwOKLjgforjXKsSigLDfwuu7j/5ia/1UNIxEfAq
MBDVJvrB7n/iC4dC/O6ARVN1LczatZMT0AEnOBR/+HPHEk8QdyarP9MIoGV8NQ6Z
A6GLkujcBkpC8lVLm307c76vr3nHJ8AUGAmI4tTp/7z4EgOiBX4/6XJWYts8ysYE
IUpHVPhQixzBAHquB38zoiF8juSkjvwKIYyH2fVybVFvTRjdF9Mi44gLUtqHVRRc
6IAiByONE8+fTNiRwFLLMqU8yJmbtGTleWcn3L6h/l/NRwnas0uWej5gU/fBYYbz
CFkIOtW71TQPVUZjZEErkb21CwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDRYCk7F
uYRV+aHHf0OvGyd5XD8FMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3
M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW
bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh
MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAPmUsC1gC3ldWabkmYtIlJVjGXjkqxK+3aiPf6xkEGFUeWzobndRw+PBS6Dqf
qjUqieEJbT7e5e52rr1LkTtPCoVRRudqwSWEE1i8DuE+dG7VtVB1Xaz4g2XkYEZB
k63OEUAlwkFTx85kJcWOmmCDKYEpjVmEa6DExg6Oyc/o5R+qk3qhVRFmJg41w4ff
UF4Nb7oJ8X9WH0uNTXSqc/b5ViQ/AHP0gRFCQTT5yxAhSJnUsljTpPI+pTXJewKu
Ki79xbJ5+9aJZ8ZLFrVHNmj/FNVtEolLy74y/tP9ptWY/Z2UOvHy6n3pdXY+q0MH
hWqXri/xnTyc3tfWeVtAUDQLxw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 01:49:48 2026 by rpki-client