Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft
File:                     hEIqhfpOTNTW7plGMaPQ8OboLTo.mft (raw, json)
Hash identifier:          Yb2+ka3ffGF14FcSQYEhf+K0eNBEm1oF/TavBWG6C4Y=
Subject key identifier:   7D:55:AD:9A:68:6C:86:07:55:EF:9B:D9:83:F8:A6:BF:5E:64:E6:34
Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A
Certificate issuer:       /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A
Certificate serial:       0431
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft
Manifest number:          0429
Signing time:             Sun 05 Jul 2026 00:42:43 +0000
Manifest this update:     Sun 05 Jul 2026 00:42:42 +0000
Manifest next update:     Sun 12 Jul 2026 00:42:42 +0000
Files and hashes:         1: hEIqhfpOTNTW7plGMaPQ8OboLTo.crl (hash: +xb7y89o+3hQ1cLpKh2B9T/Qd9CcYf3TUDbF+MbFHtk=)
                          2: 214E0454B58A11ECAF32FE29C4F9AE02.roa (hash: DeN5+WLuYB95EX5XxNOKqEvwckp++ai7lfprhRYcj3g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl
                          rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 00:42:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1073 (0x431)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A
        Validity
            Not Before: Jul  5 00:42:42 2026 GMT
            Not After : Jul 12 00:42:42 2026 GMT
        Subject: CN=6a49a883-0ac3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:89:b6:2e:39:b4:ea:21:73:de:74:91:15:be:
                    d2:5a:b2:b8:7d:b5:3b:76:59:85:8b:64:4a:5b:66:
                    d2:40:02:55:fa:5e:44:e5:4c:32:fe:21:bd:5c:a9:
                    87:0c:3b:13:d1:45:38:d7:ec:cf:29:9d:16:3c:b0:
                    e3:1e:08:e3:c5:2a:b6:01:2c:0b:c0:3d:2f:78:23:
                    27:b1:dc:47:09:8d:35:c0:9d:15:5d:a9:93:a8:88:
                    6b:d4:f8:8f:af:5f:02:b7:3d:78:a9:c6:30:49:80:
                    50:c4:e5:a3:76:c5:dc:77:96:0c:60:95:39:32:14:
                    78:d7:ad:e3:3c:47:d9:38:cf:81:f8:5a:48:2f:65:
                    90:80:44:b4:e7:b5:6d:c8:23:18:b2:4d:a2:92:6e:
                    52:81:e0:04:b8:0d:4e:2c:78:d9:38:e6:00:e6:50:
                    86:c9:a6:98:21:77:13:3e:b0:5f:a7:55:aa:6d:b0:
                    a1:9d:0f:37:e7:9f:5a:b8:6e:44:e0:42:eb:23:49:
                    0a:25:9e:09:2e:57:de:8e:d0:ae:18:06:ae:d0:d1:
                    0b:00:4b:e0:52:55:6b:68:85:6d:37:c1:f3:b6:6c:
                    c9:56:79:d7:a2:1e:3e:cf:49:24:57:60:0f:0c:be:
                    04:73:ff:25:3c:c0:02:44:85:06:6a:0d:07:83:6a:
                    97:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:55:AD:9A:68:6C:86:07:55:EF:9B:D9:83:F8:A6:BF:5E:64:E6:34
            X509v3 Authority Key Identifier:
                keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:96:61:c1:2b:c7:5b:0f:6c:2e:73:9d:f8:3d:04:7f:5e:62:
         ba:6c:71:bb:6e:c7:35:ba:82:04:ae:54:e0:1d:22:8e:fa:21:
         88:bd:4c:7e:74:ae:de:1b:9a:1c:ae:d2:13:0f:86:c8:fc:4c:
         0e:93:c0:dd:a5:e6:41:e0:cd:6d:ae:e0:ac:7d:e9:1d:ea:b3:
         c0:55:ac:92:3c:f6:de:0b:70:d7:a3:91:08:23:a6:9a:85:eb:
         19:d8:57:8c:2a:4c:5f:ba:c7:f4:33:20:f0:59:08:72:93:6b:
         e3:5c:f4:bb:a7:72:32:61:04:65:e1:b3:a9:bf:07:72:33:b6:
         8c:bb:95:87:16:27:85:2b:37:ae:31:4d:5f:26:57:96:ef:39:
         e6:7e:2d:7c:b6:a4:b6:69:a3:73:e4:9b:d0:82:46:01:42:fc:
         1d:41:3c:af:4c:a2:55:cf:11:dd:c7:64:70:1d:2c:23:2b:32:
         68:fe:f9:1e:ae:3f:de:28:5b:f3:2e:88:c9:c8:2c:19:4f:14:
         31:d1:9b:58:92:c2:04:52:3e:59:d3:12:d2:32:20:5b:dc:33:
         d4:32:fd:33:06:18:86:81:c6:fe:bc:33:35:4a:ce:fd:a4:82:
         81:b5:47:d1:a5:f0:be:2e:34:20:4e:7a:b4:a5:b8:f5:a6:10:
         1a:4e:b2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:43 2026 by rpki-client