Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft
File:                     o8s5jsc5UXR2LZMDPnBgnWD03bI.mft (raw, json)
Hash identifier:          F9hqNSy7+NwSPKRCl+mEelWmZmZm6x4d5OIHJOoRrgI=
Subject key identifier:   69:98:4B:DF:0E:A6:58:D7:B0:B9:30:5B:4D:A0:0B:77:90:0C:25:E2
Authority key identifier: A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2
Certificate issuer:       /CN=A911606A/serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2
Certificate serial:       01DC
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft
Manifest number:          01D5
Signing time:             Fri 17 Jul 2026 04:39:35 +0000
Manifest this update:     Fri 17 Jul 2026 04:39:35 +0000
Manifest next update:     Fri 24 Jul 2026 04:39:35 +0000
Files and hashes:         1: o8s5jsc5UXR2LZMDPnBgnWD03bI.crl (hash: TQ3bzucgs77O6XtNJQUfYxYsC0iosCGgdrN59x2R+Lg=)
                          2: EEEC4B6ABD9D11EE9839661CC4F9AE02.roa (hash: vF01duODiwTYz9/MMIZAj5OF+2YRcDoyyVIZ0SFGCBU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl
                          rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:39:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 476 (0x1dc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911606A, serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2
        Validity
            Not Before: Jul 17 04:39:35 2026 GMT
            Not After : Jul 24 04:39:35 2026 GMT
        Subject: CN=6a59b207-c3fe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:bc:fa:6f:43:ba:11:35:08:d8:51:2d:a8:65:
                    b3:99:6f:f0:42:eb:5e:f2:a9:dd:e7:58:df:0a:34:
                    8e:1d:a4:4e:32:65:98:b4:b1:48:92:1b:33:9c:35:
                    b8:59:4b:18:78:8d:45:5a:88:f3:2a:b5:53:53:28:
                    1a:00:7a:c6:5c:13:cc:dc:d2:79:7f:25:f9:1a:0b:
                    41:3b:40:57:c2:19:b2:87:d3:5b:83:df:df:7f:b9:
                    41:fd:a6:da:76:3c:de:9c:97:75:af:ad:34:4c:6a:
                    83:64:9c:31:4e:2a:30:db:3d:32:37:bb:68:68:c1:
                    52:ea:7c:34:60:b6:2e:56:82:a2:fb:36:88:65:26:
                    d1:1d:8b:71:41:b7:b7:78:dd:3f:22:e9:3e:db:f4:
                    3c:98:1a:49:dd:42:d9:e4:d2:3b:79:7f:22:c8:d0:
                    af:c2:99:ae:e4:8c:12:8d:76:ea:df:01:5d:d5:1e:
                    4f:63:ab:1e:18:99:eb:27:b2:d3:fb:c5:20:10:bc:
                    2b:ab:57:79:75:97:a5:a9:00:94:df:0f:d4:e9:4d:
                    0c:c7:0c:c4:f7:b7:d0:7d:01:e5:66:c2:1e:69:1d:
                    83:eb:d6:07:85:f3:84:c2:84:fd:88:ca:65:25:58:
                    7d:cf:37:7b:b0:10:95:f1:75:7b:fe:ff:c0:43:ff:
                    9a:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:98:4B:DF:0E:A6:58:D7:B0:B9:30:5B:4D:A0:0B:77:90:0C:25:E2
            X509v3 Authority Key Identifier:
                keyid:A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d5:9d:8b:da:f5:fe:d4:1c:12:2f:50:6a:ca:ab:00:91:7b:4b:
         fd:16:2d:9b:5e:d2:a1:e0:01:eb:0d:f9:33:3f:60:cc:8b:f2:
         08:aa:fd:90:20:43:5f:40:82:17:fe:e1:d8:14:26:01:80:8e:
         13:f2:92:da:11:71:24:05:27:d4:ac:a5:26:ea:96:ac:db:bf:
         06:73:d6:d8:bd:71:3e:73:df:d1:da:fb:e9:96:b1:2c:a9:30:
         a0:6f:66:76:73:77:c2:d6:99:2e:4f:d2:af:44:e9:fa:2f:c8:
         f1:c7:54:e0:28:85:c3:55:f8:f6:f3:6a:09:da:b3:5c:a6:7e:
         65:a7:a5:a6:5c:1f:12:36:88:05:90:be:ed:ec:b6:08:3c:e3:
         90:ef:d9:dc:c1:c2:f9:cf:1e:a9:09:f8:34:a3:53:7b:db:d2:
         f3:a3:a1:0a:72:7b:2b:40:7b:e6:0b:14:c3:d7:61:44:11:d6:
         95:3c:6e:24:d4:f6:5c:2a:4a:c2:cf:0f:9b:f8:79:7a:29:62:
         bd:d3:2b:5e:30:c2:f4:83:9a:86:00:79:23:3b:9d:84:d8:2d:
         bd:97:9e:9f:6a:14:28:ba:64:38:fd:7c:4a:72:25:ef:7c:82:
         8a:de:6b:71:31:49:50:f5:c4:09:0b:e8:ae:71:4b:e7:b9:c9:
         c8:b0:64:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:12 2026 by rpki-client