Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft
File:                     jPbyYoPglD4X1BKxnKKvLNYNRYc.mft (raw, json)
Hash identifier:          EeNrj85V5vbAOK8LCFFPBIiScOBl0cgaVQbLNCDDTWA=
Subject key identifier:   49:D3:CC:62:91:CF:64:F4:9F:9C:04:03:D4:C0:DB:2A:28:4F:12:B6
Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87
Certificate issuer:       /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587
Certificate serial:       0AFE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft
Manifest number:          0AEE
Signing time:             Sat 04 Jul 2026 19:31:31 +0000
Manifest this update:     Sat 04 Jul 2026 19:31:30 +0000
Manifest next update:     Sat 11 Jul 2026 19:31:30 +0000
Files and hashes:         1: jPbyYoPglD4X1BKxnKKvLNYNRYc.crl (hash: cnZLnQr8m9hUjAwnhcx3F/R8HXN/sRTgpz4c7BsTX0U=)
                          2: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (hash: I2/+LVg2CfxpzHUvv4hVWxYLiDdlaCgmazTOqmpPue8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl
                          rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 19:31:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2814 (0xafe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911B7EB, serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587
        Validity
            Not Before: Jul  4 19:31:30 2026 GMT
            Not After : Jul 11 19:31:30 2026 GMT
        Subject: CN=6a495f92-a576
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:07:5f:9d:6f:3f:4c:4a:9c:3f:c2:6c:8c:52:
                    dc:8a:84:e1:2e:ef:b9:3e:76:13:5b:b8:2c:8c:bc:
                    b9:45:87:f9:71:1b:04:1c:e5:d3:9e:df:50:a9:b0:
                    7b:92:01:83:a7:ec:f7:ff:5e:23:6f:40:d4:52:b9:
                    3f:96:af:15:e8:92:03:a8:75:f3:ac:24:70:08:24:
                    69:1f:27:72:6f:10:c1:09:f4:96:ae:b0:31:3f:c7:
                    d7:0e:ea:46:e8:4a:af:a3:51:60:c5:cf:1e:b9:3b:
                    c8:2a:50:be:94:aa:71:4b:54:9f:94:eb:c6:6a:b7:
                    74:c4:1c:be:b3:1d:b9:02:d9:70:16:a7:27:90:8a:
                    b9:9f:cd:d9:2f:33:ff:05:cd:6b:63:93:ef:0f:83:
                    d8:50:89:30:63:54:a8:46:b5:b2:5b:16:46:2c:78:
                    47:73:71:d1:10:20:a2:19:bc:e3:15:9b:3c:53:9a:
                    cd:9f:c6:a5:f4:bf:12:f0:fd:20:c3:f3:b6:ad:17:
                    82:3c:8b:34:96:7a:85:59:f1:12:ee:a5:28:7f:d6:
                    d0:e4:50:6b:ee:a8:bb:19:ec:e7:1d:da:4e:ec:34:
                    7a:d9:a2:71:51:e2:d8:15:83:12:82:31:2a:9e:1c:
                    41:eb:cf:80:e3:9c:4e:2b:8c:f0:a9:31:84:5e:6e:
                    83:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:D3:CC:62:91:CF:64:F4:9F:9C:04:03:D4:C0:DB:2A:28:4F:12:B6
            X509v3 Authority Key Identifier:
                keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:25:53:75:5a:e4:74:64:7f:14:58:67:67:d9:e0:f0:48:be:
         5a:61:a4:02:de:7d:ed:67:c9:e3:6c:bb:38:09:64:d0:59:e7:
         d3:78:01:78:4e:41:ed:99:95:24:fa:c0:7e:7a:e2:01:62:45:
         5e:ea:f4:db:12:db:a9:57:bd:e0:f4:cc:32:25:c5:97:67:80:
         c8:81:39:e5:d9:c4:85:6e:bd:64:ba:ed:a1:89:49:98:93:7c:
         b9:dd:dc:f9:69:c1:49:df:9a:23:e2:b1:2e:6c:9f:44:58:4c:
         f2:6c:52:67:2d:f7:f1:02:33:84:be:f3:98:c7:4a:72:3d:00:
         9c:cc:79:82:e3:8c:bc:1d:82:07:7e:cc:20:e7:d3:4c:41:6a:
         20:aa:59:2c:10:3a:9d:dd:a0:64:d2:a3:b2:98:eb:2d:9f:b3:
         72:92:80:3a:1d:58:8d:0d:a2:8c:46:07:0f:b6:7f:c8:6d:89:
         16:44:6d:0f:35:f4:fc:c6:07:15:fc:53:b1:77:ca:f2:ca:56:
         60:aa:a0:e7:1a:7e:16:c1:4a:43:9e:af:9c:69:ba:10:2a:79:
         6a:8a:bd:c4:61:56:4c:e5:f0:86:de:ee:09:c2:5c:a9:1b:c2:
         90:62:14:0f:a2:0d:00:0f:12:89:3b:17:f9:e2:d8:24:d5:49:
         9d:a8:d2:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:53:51 2026 by rpki-client