Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft
File:                     1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft (raw, json)
Hash identifier:          qANaZuaYKc7v41lOOa1A3qoLrywR5dQNCMmKC4wUCO4=
Subject key identifier:   67:6B:C3:08:C5:B8:34:D7:88:73:26:BC:3B:12:A5:CB:4E:25:25:D7
Authority key identifier: D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9
Certificate issuer:       /CN=A9116B0C/serialNumber=D5B16768914A80C93124629610CC40502AAED0E9
Certificate serial:       63
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft
Manifest number:          5D
Signing time:             Fri 03 Jul 2026 09:02:58 +0000
Manifest this update:     Fri 03 Jul 2026 09:02:58 +0000
Manifest next update:     Fri 10 Jul 2026 09:02:58 +0000
Files and hashes:         1: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl (hash: 0YtFWCL+CfdsxVgEDPnTXrR7RegjforFRD9A7CUZJhM=)
                          2: F5568448F11C11F0AC52AD484D6F56BC.roa (hash: FSRnxAS3d/oxWCt/mXgTvn1rm5+e0wMamnNqPiiIkGI=)
                          3: 2235EF78F12011F0BFBF3F154E6F56BC.roa (hash: PdAz+4W9gV7DG5blKrt0fnM9lwbclCTxlZE4svm7VgA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl
                          rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 09:02:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 99 (0x63)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9116B0C, serialNumber=D5B16768914A80C93124629610CC40502AAED0E9
        Validity
            Not Before: Jul  3 09:02:58 2026 GMT
            Not After : Jul 10 09:02:58 2026 GMT
        Subject: CN=6a477ac2-420e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:6a:7e:54:ae:d9:55:31:ea:56:07:da:d8:6c:
                    14:4d:a2:86:f4:97:b8:95:a5:b8:1d:d3:bd:00:57:
                    0e:b2:5c:ca:5b:72:42:4f:db:20:b6:aa:34:ff:d9:
                    3b:ed:3f:91:78:64:7a:cc:30:c4:36:6c:bd:1d:b7:
                    e9:70:da:7a:3f:07:50:ec:71:35:59:2e:82:d4:ff:
                    5e:0e:34:3e:d1:36:18:fc:42:27:c9:a6:34:5e:63:
                    1a:78:f4:ad:68:02:ce:21:30:30:8b:9f:cb:a5:96:
                    ec:f0:4d:a2:48:f5:d4:96:e7:4d:e6:f3:41:88:50:
                    8c:e6:bb:2b:0a:ae:76:54:3a:48:1e:5a:28:7f:0f:
                    3d:32:f1:44:63:22:c7:91:38:f3:fe:d3:97:87:d4:
                    e4:3c:ec:c4:dd:2a:c8:d0:46:00:1e:60:e8:8f:71:
                    a0:35:56:b8:02:5e:6c:90:96:69:dd:2c:84:38:ce:
                    fa:93:55:42:ed:4b:9a:09:f3:87:52:2b:10:36:01:
                    9e:c7:25:b4:af:a0:74:ee:b6:4a:64:25:14:36:22:
                    d0:7e:f3:28:7b:4f:92:2f:43:43:14:26:a7:07:57:
                    32:c1:d9:14:f9:83:5c:7f:d4:1d:78:49:8f:9a:1b:
                    53:8b:9c:52:58:d6:cc:a4:ae:78:b2:a3:5e:b6:77:
                    32:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:6B:C3:08:C5:B8:34:D7:88:73:26:BC:3B:12:A5:CB:4E:25:25:D7
            X509v3 Authority Key Identifier:
                keyid:D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:e1:d7:14:0f:9e:24:0a:23:00:01:65:6b:57:03:85:8a:43:
         89:47:77:b1:53:4e:b7:18:82:f8:5f:90:b2:44:9e:c6:6e:ee:
         20:ef:ff:a9:d5:50:25:6d:c6:9d:31:85:f8:8b:48:60:75:9a:
         0f:34:50:54:e4:68:fe:1b:e3:74:54:21:69:eb:e2:4c:7f:b9:
         da:1a:ed:de:34:56:aa:74:c7:7a:f5:19:74:4b:70:f8:e6:6a:
         59:2c:a4:84:69:30:f0:67:a1:cb:1f:98:00:bd:44:18:37:c0:
         07:0b:f5:6f:6d:3d:61:1e:5e:e0:6b:72:7b:0c:55:7e:31:79:
         f2:a7:de:4c:c6:32:a1:3e:26:0d:42:a9:cb:b2:13:ea:1a:ce:
         ff:98:ba:7a:3a:04:dd:43:35:2c:e8:8a:2a:02:7b:54:8b:55:
         0b:c6:3c:e5:07:cc:b5:f5:71:0e:4b:6c:9d:91:23:ed:f9:f6:
         02:2b:af:71:be:ca:e1:3d:b8:d8:06:72:e0:a7:cc:c5:5b:02:
         fb:64:e3:8f:79:01:b4:da:73:bd:05:27:93:de:4c:82:33:9f:
         3d:ec:32:be:76:b9:07:21:ae:c5:38:e9:4b:20:b0:9f:b8:e0:
         2c:62:e8:b3:f8:f0:bc:0c:bb:de:4d:fc:97:bd:68:b0:47:0b:
         95:95:7d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:48:41 2026 by rpki-client