Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft
File:                     at4O10LYxa-hMzuQNYwGs_6HaIM.mft (raw, json)
Hash identifier:          ROXy2TZikoxcpcQuadAxSvbU9iGc9vnzDlZ606sO7HU=
Subject key identifier:   E8:C1:10:CD:1B:CD:CA:5C:52:79:82:89:81:B8:7C:CB:33:1B:83:42
Authority key identifier: 6A:DE:0E:D7:42:D8:C5:AF:A1:33:3B:90:35:8C:06:B3:FE:87:68:83
Certificate issuer:       /CN=A911C356/serialNumber=6ADE0ED742D8C5AFA1333B90358C06B3FE876883
Certificate serial:       07F0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft
Manifest number:          07DD
Signing time:             Wed 08 Jul 2026 22:12:10 +0000
Manifest this update:     Wed 08 Jul 2026 22:12:09 +0000
Manifest next update:     Wed 15 Jul 2026 22:12:09 +0000
Files and hashes:         1: at4O10LYxa-hMzuQNYwGs_6HaIM.crl (hash: 22guJRwWiGxMX4poIsGmRCVKkLt7p78AcTeeVPO0ARw=)
                          2: 68894B22402811EB91B49250C4F9AE02.roa (hash: liLPy91xdDc1pdMOxAhLDDGEhSWylfhoV6UNE1PovoQ=)
                          3: 86BED34677F011EB9E69B472C4F9AE02.roa (hash: z+ZRB0bBSa8oaRsVRAkD/aqR3zkYjW0hmksq+X5D7QA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.crl
                          rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 15 Jul 2026 22:12:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2032 (0x7f0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911C356, serialNumber=6ADE0ED742D8C5AFA1333B90358C06B3FE876883
        Validity
            Not Before: Jul  8 22:12:09 2026 GMT
            Not After : Jul 15 22:12:09 2026 GMT
        Subject: CN=6a4ecb39-392f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:4e:17:93:92:b3:b3:4b:4a:83:ff:d7:5e:07:
                    a6:37:28:7e:c4:cc:07:91:56:b3:9e:36:f0:4e:1a:
                    a8:8e:3b:e2:63:fa:18:ed:4b:7f:de:07:ba:83:93:
                    06:12:a7:f2:b9:a4:5e:2f:04:45:52:5a:6b:e8:16:
                    13:33:a6:b3:52:7d:3a:63:bc:fe:dd:6a:fd:10:12:
                    86:e4:37:52:98:79:c3:27:79:6f:e8:99:d0:cc:7a:
                    6f:94:5f:24:05:df:f7:39:86:5e:ed:96:15:ef:aa:
                    11:8e:7f:19:79:46:41:70:b6:ec:ae:85:96:5b:9c:
                    eb:85:55:38:81:89:30:46:80:50:13:c7:33:bc:04:
                    d6:e0:07:3e:01:2d:4c:7c:d5:07:8d:ea:79:ae:9f:
                    55:ce:d1:5f:13:12:64:99:75:88:a9:ff:83:42:f0:
                    5e:47:01:a4:d4:97:da:8e:f6:e9:5f:f2:9b:e2:66:
                    16:a1:29:58:94:3c:3e:98:2a:17:ca:49:58:89:d8:
                    1f:ca:29:77:a0:e2:2f:f6:8d:0b:27:03:40:a1:4f:
                    95:a4:0e:8d:61:92:cc:9b:4e:d3:da:16:7d:f4:d7:
                    5a:e1:3a:af:3f:35:e8:91:e3:42:a8:43:b0:5b:76:
                    a9:78:a2:cb:50:93:c3:1c:4b:c5:a3:84:8a:af:2c:
                    e7:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:C1:10:CD:1B:CD:CA:5C:52:79:82:89:81:B8:7C:CB:33:1B:83:42
            X509v3 Authority Key Identifier:
                keyid:6A:DE:0E:D7:42:D8:C5:AF:A1:33:3B:90:35:8C:06:B3:FE:87:68:83

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:98:db:20:40:ab:0b:b7:df:e5:bf:c6:20:60:3d:43:ff:97:
         36:b7:09:c4:8c:2f:80:d8:7a:4c:02:27:62:04:e2:fd:61:26:
         d8:fa:97:0e:b0:1b:c7:dd:30:8c:c9:2f:d4:d8:9e:43:62:e6:
         c2:12:9a:86:02:d7:2f:ac:6e:9a:df:f9:41:bf:7c:a7:3d:12:
         f3:e4:fa:84:d8:6f:b5:59:e3:c6:37:0f:30:5d:d7:51:d1:ea:
         2a:16:4e:c4:b7:bf:59:df:1a:12:57:f0:70:e9:d0:b5:0d:b3:
         a1:5c:ea:97:36:c3:d6:c1:f8:eb:48:c1:4a:4b:ac:26:64:b6:
         da:08:71:50:3a:57:9e:41:d8:d2:a4:47:4f:f8:f5:c4:34:9d:
         50:90:c1:e7:9a:ed:94:67:1d:47:73:df:7b:05:71:80:ec:b6:
         5d:a8:c4:f4:b2:7d:8f:a7:0f:83:06:28:f3:42:32:32:c5:77:
         4a:ce:c9:40:f9:0b:bc:40:dc:9f:f7:a2:56:07:4c:0a:e1:97:
         f1:e7:fa:92:28:11:9a:4f:d7:57:a1:d9:26:0f:e9:80:b4:7a:
         7d:0a:0d:f5:9c:9f:4b:3e:ed:c1:8d:d0:cf:23:83:ec:dd:9a:
         7d:90:4c:ee:19:28:d2:44:10:a6:63:ca:73:77:44:fb:9b:87:
         ea:4d:58:21
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUMzNTYxMTAvBgNVBAUTKDZBREUwRUQ3NDJEOEM1QUZBMTMzM0I5MDM1OEMwNkIz
RkU4NzY4ODMwHhcNMjYwNzA4MjIxMjA5WhcNMjYwNzE1MjIxMjA5WjAYMRYwFAYD
VQQDEw02YTRlY2IzOS0zOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0E4Xk5Kzs0tKg//XXgemNyh+xMwHkVaznjbwThqojjviY/oY7Ut/3ge6g5MG
EqfyuaReLwRFUlpr6BYTM6azUn06Y7z+3Wr9EBKG5DdSmHnDJ3lv6JnQzHpvlF8k
Bd/3OYZe7ZYV76oRjn8ZeUZBcLbsroWWW5zrhVU4gYkwRoBQE8czvATW4Ac+AS1M
fNUHjep5rp9VztFfExJkmXWIqf+DQvBeRwGk1JfajvbpX/Kb4mYWoSlYlDw+mCoX
yklYidgfyil3oOIv9o0LJwNAoU+VpA6NYZLMm07T2hZ99Nda4TqvPzXokeNCqEOw
W3apeKLLUJPDHEvFo4SKryznAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOjBEM0b
zcpcUnmCiYG4fMszG4NCMB8GA1UdIwQYMBaAFGreDtdC2MWvoTM7kDWMBrP+h2iD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzM1Ni82NzFCN0RBNjQw
MUQxMUVCOEUwQ0NCNUVDNEY5QUUwMi9hdDRPMTBMWXhhLWhNenVRTll3R3NfNkhh
SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2F0NE8xMExZeGEtaE16dVFOWXdHc182SGFJTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
QzM1Ni82NzFCN0RBNjQwMUQxMUVCOEUwQ0NCNUVDNEY5QUUwMi9hdDRPMTBMWXhh
LWhNenVRTll3R3NfNkhhSU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAKJjbIECrC7ff5b/GIGA9Q/+XNrcJxIwvgNh6TAInYgTi/WEm2PqXDrAbx90w
jMkv1NieQ2LmwhKahgLXL6xumt/5Qb98pz0S8+T6hNhvtVnjxjcPMF3XUdHqKhZO
xLe/Wd8aElfwcOnQtQ2zoVzqlzbD1sH460jBSkusJmS22ghxUDpXnkHY0qRHT/j1
xDSdUJDB55rtlGcdR3PfewVxgOy2XajE9LJ9j6cPgwYo80IyMsV3Ss7JQPkLvEDc
n/eiVgdMCuGX8ef6kigRmk/XV6HZJg/pgLR6fQoN9ZyfSz7twY3QzyOD7N2afZBM
7hko0kQQpmPKc3dE+5uH6k1YIQ==
-----END CERTIFICATE-----
Generated at Thu Jul 9 18:17:25 2026 by rpki-client