Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft
File:                     IsfsPNntTFDolKEbzXDQMQzV-Fk.mft (raw, json)
Hash identifier:          8rhlG1hXj8Rz+xA0HsKV/QKOTQSoBjleJ2XhqXe7FLs=
Subject key identifier:   B4:77:6A:D2:E3:27:8C:31:EC:54:6B:07:BD:02:30:5D:01:DA:8F:78
Authority key identifier: 22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59
Certificate issuer:       /CN=A91EC225/serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859
Certificate serial:       0130
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft
Manifest number:          012C
Signing time:             Thu 16 Jul 2026 17:36:00 +0000
Manifest this update:     Thu 16 Jul 2026 17:36:00 +0000
Manifest next update:     Thu 23 Jul 2026 17:36:00 +0000
Files and hashes:         1: IsfsPNntTFDolKEbzXDQMQzV-Fk.crl (hash: +OgQ5PSP0IQZmnixkYRC4HGpwTL9Sa9ESLsRe4N2Vt8=)
                          2: 25D2B94CDECD11EFA79E4065C4F9AE02.roa (hash: akLA24IwRVeRV87VrcCP9mJOdJA7ntWRSTCaXT2ZWc8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl
                          rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 17:35:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 304 (0x130)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EC225, serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859
        Validity
            Not Before: Jul 16 17:36:00 2026 GMT
            Not After : Jul 23 17:36:00 2026 GMT
        Subject: CN=6a591680-f5e0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:8f:55:8e:f0:8c:b9:8c:31:ea:6d:88:18:e6:
                    44:d4:b7:57:52:5f:3a:7b:bc:76:99:b4:b8:5a:87:
                    b5:02:c9:8d:55:5f:a9:bb:c9:31:ea:b9:b4:82:f1:
                    71:71:d3:1c:3c:1e:49:7a:5c:6a:e2:17:c4:a2:39:
                    c5:b2:15:f5:bf:44:31:ea:cf:f4:98:00:ac:33:70:
                    07:7e:62:d7:10:21:70:da:04:69:dd:37:7b:6b:8f:
                    c1:be:a5:25:41:1b:fc:26:82:c4:f5:7e:29:a0:aa:
                    a4:e6:c8:d0:6f:90:07:a1:ed:6d:fb:54:b5:38:e8:
                    40:e6:5c:88:48:b6:7b:d1:72:91:a0:32:f9:17:71:
                    f4:3f:f4:f8:2f:53:85:a1:ed:ba:aa:ae:bf:b8:70:
                    ea:60:83:73:7c:5f:ef:6d:2c:9b:62:fa:61:f0:09:
                    26:34:0b:7d:d9:22:77:12:dc:89:8f:be:86:44:72:
                    f4:91:2d:31:81:31:dc:7a:22:a0:de:d7:58:65:83:
                    0b:8b:68:8b:63:db:2f:b8:4a:29:7a:05:cc:8d:3d:
                    e6:e5:00:92:84:0c:8a:5e:0b:d3:ad:ab:3c:8a:0e:
                    55:fe:2a:82:fb:f2:23:aa:36:77:05:94:70:3f:cd:
                    4f:2d:4b:6f:cf:38:12:0c:ed:21:d6:1d:f1:6c:b4:
                    a9:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:77:6A:D2:E3:27:8C:31:EC:54:6B:07:BD:02:30:5D:01:DA:8F:78
            X509v3 Authority Key Identifier:
                keyid:22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:09:0a:ba:e5:44:38:06:52:a8:a6:67:80:34:0c:d3:2e:36:
         5a:90:9c:d9:09:74:2f:83:a8:70:ac:da:aa:8f:83:94:05:cd:
         85:70:87:13:ad:98:a3:ae:80:1d:b6:cd:8a:7d:e1:97:1f:46:
         00:7b:2c:fd:4f:0a:61:74:13:d1:36:f5:70:ba:e8:a2:23:78:
         9a:8e:1a:b0:79:6e:89:44:37:de:c3:c6:6f:78:e9:5d:65:e5:
         c7:f9:c3:c4:a5:a8:67:26:5a:c1:63:19:ab:b8:ff:e5:6f:68:
         fd:20:1f:f2:2e:3b:2f:5f:c0:c0:26:78:c4:ff:6c:63:fb:bf:
         b4:b5:fe:8b:78:8f:8c:05:5f:20:06:be:40:33:89:69:22:2c:
         6d:43:d8:52:7c:89:81:3e:03:8e:d8:9f:98:f0:20:a4:50:7e:
         37:e7:fd:e1:ce:67:38:d5:ae:51:70:cc:69:6e:01:bb:bc:97:
         63:f1:17:63:1b:48:49:b2:fb:7e:c4:19:38:1e:e3:cc:86:49:
         0a:d6:f3:a9:8c:3e:93:57:a1:ee:e0:c9:74:e6:0d:b3:bc:16:
         23:a2:6e:fa:1e:6e:cb:d4:f3:c2:a3:c9:11:b6:bf:d8:73:4a:
         22:6c:b0:4d:52:80:41:04:06:3b:92:61:2d:0d:a9:56:83:7a:
         08:e7:3a:4e
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUMyMjUxMTAvBgNVBAUTKDIyQzdFQzNDRDlFRDRDNTBFODk0QTExQkNENzBEMDMx
MENENUY4NTkwHhcNMjYwNzE2MTczNjAwWhcNMjYwNzIzMTczNjAwWjAYMRYwFAYD
VQQDEw02YTU5MTY4MC1mNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAto9VjvCMuYwx6m2IGOZE1LdXUl86e7x2mbS4Woe1AsmNVV+pu8kx6rm0gvFx
cdMcPB5Jelxq4hfEojnFshX1v0Qx6s/0mACsM3AHfmLXECFw2gRp3Td7a4/BvqUl
QRv8JoLE9X4poKqk5sjQb5AHoe1t+1S1OOhA5lyISLZ70XKRoDL5F3H0P/T4L1OF
oe26qq6/uHDqYINzfF/vbSybYvph8AkmNAt92SJ3EtyJj76GRHL0kS0xgTHceiKg
3tdYZYMLi2iLY9svuEopegXMjT3m5QCShAyKXgvTras8ig5V/iqC+/IjqjZ3BZRw
P81PLUtvzzgSDO0h1h3xbLSpSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLR3atLj
J4wx7FRrB70CMF0B2o94MB8GA1UdIwQYMBaAFCLH7DzZ7UxQ6JShG81w0DEM1fhZ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS9DOTQ0N0ZGMEJF
RjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRGRG9sS0VielhEUU1RelYt
RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0lzZnNQTm50VEZEb2xLRWJ6WERRTVF6Vi1Gay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QzIyNS9DOTQ0N0ZGMEJFRjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRG
RG9sS0VielhEUU1RelYtRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAbgkKuuVEOAZSqKZngDQM0y42WpCc2Ql0L4OocKzaqo+DlAXNhXCHE62Yo66A
HbbNin3hlx9GAHss/U8KYXQT0Tb1cLrooiN4mo4asHluiUQ33sPGb3jpXWXlx/nD
xKWoZyZawWMZq7j/5W9o/SAf8i47L1/AwCZ4xP9sY/u/tLX+i3iPjAVfIAa+QDOJ
aSIsbUPYUnyJgT4DjtifmPAgpFB+N+f94c5nONWuUXDMaW4Bu7yXY/EXYxtISbL7
fsQZOB7jzIZJCtbzqYw+k1eh7uDJdOYNs7wWI6Ju+h5uy9TzwqPJEba/2HNKImyw
TVKAQQQGO5JhLQ2pVoN6COc6Tg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:37 2026 by rpki-client