Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft
File:                     ajK9E9_Nd-8bXAUr427YmtIScNs.mft (raw, json)
Hash identifier:          5Ba3cniSUMS0NRBtcG7ZHeBoSHZH0jI+Z7sucRqxBc4=
Subject key identifier:   26:BC:22:3A:BB:A3:0B:C2:F7:56:98:8C:21:A2:0E:C9:C1:FB:CE:C4
Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB
Certificate issuer:       /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB
Certificate serial:       08CF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft
Manifest number:          08C6
Signing time:             Thu 16 Jul 2026 20:45:45 +0000
Manifest this update:     Thu 16 Jul 2026 20:45:45 +0000
Manifest next update:     Thu 23 Jul 2026 20:45:45 +0000
Files and hashes:         1: ajK9E9_Nd-8bXAUr427YmtIScNs.crl (hash: lTcgWSiuKxlTIRH7jajFN9SS7xenWgXmZ91KLaYqbwU=)
                          2: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (hash: llyuXvewMNe0VqKDq5oyIJpvEqxm6fBiNkxTAaxfIO4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl
                          rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 20:45:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2255 (0x8cf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911C812, serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB
        Validity
            Not Before: Jul 16 20:45:45 2026 GMT
            Not After : Jul 23 20:45:45 2026 GMT
        Subject: CN=6a5942f9-279f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:31:eb:cc:a7:47:46:45:0e:c3:74:ec:cc:d3:
                    f6:b8:66:ad:54:2a:f6:09:23:2a:b2:e0:f5:1a:f3:
                    9f:26:48:d3:4e:43:e5:cf:f6:a3:cc:19:ab:ca:85:
                    de:1b:55:7a:19:1d:5c:e7:02:8f:05:48:00:79:7d:
                    62:86:5a:ca:dd:a2:7d:82:ea:3a:74:b9:60:55:7a:
                    ba:1f:3e:4a:e3:e5:90:76:e3:83:77:7b:e5:7c:ed:
                    b7:ed:da:66:ec:aa:bc:81:28:60:51:1e:14:bd:d8:
                    83:b4:d3:d4:1c:4b:67:94:9f:cb:5d:3f:66:a0:87:
                    19:2c:84:5e:8a:bd:85:78:41:f7:38:f8:cd:92:6c:
                    c4:c2:c0:62:05:c5:6d:1e:f1:61:4d:27:2a:4b:2e:
                    ff:f4:db:21:70:c0:d0:04:39:b2:e6:dc:5a:74:1f:
                    54:88:17:b4:37:98:31:24:3f:59:40:2e:a1:9c:f9:
                    e7:10:05:62:66:72:6a:c6:88:fc:7d:68:d6:96:f8:
                    e8:4b:22:e1:e1:01:37:4d:e1:94:a4:cc:fd:bd:ff:
                    74:cb:05:54:38:55:45:aa:bc:69:02:d6:82:ff:35:
                    b8:34:99:b5:69:ae:8c:ee:05:cb:e1:0a:d7:7f:22:
                    2e:cd:7e:c0:d5:4d:43:d3:ae:9d:34:82:ba:ce:24:
                    98:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:BC:22:3A:BB:A3:0B:C2:F7:56:98:8C:21:A2:0E:C9:C1:FB:CE:C4
            X509v3 Authority Key Identifier:
                keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:f1:1f:7e:6f:9d:e2:b1:04:22:40:b5:ad:0f:c7:1f:9c:97:
         3b:44:5e:54:cc:2f:d0:db:83:49:98:c5:69:42:de:e2:a9:fb:
         f6:6f:02:db:e6:a4:78:49:fb:88:91:82:2f:6c:1d:7f:1a:1b:
         20:9f:7b:3f:36:f6:fe:04:98:fb:c6:5a:a1:f0:2f:fb:70:34:
         cc:74:54:01:5a:b0:8f:61:a7:60:b0:c0:ce:af:32:c7:f4:6b:
         17:52:ab:1b:cd:f4:4f:f3:61:02:f9:71:88:9b:46:8d:88:b1:
         b6:f5:3b:68:02:ed:0c:16:bc:de:f9:00:53:5c:fa:98:3c:4b:
         85:20:f4:70:55:a3:fd:96:a5:67:03:1a:fa:f1:05:2e:0b:78:
         75:06:7a:36:ae:23:90:b9:36:29:1b:77:83:ef:58:d8:52:60:
         51:7b:2b:cb:66:94:b9:ed:52:37:de:30:23:af:e6:6a:0b:1b:
         3e:a6:a2:31:04:0a:e3:a8:1c:24:ea:bc:7f:6c:98:5e:74:dd:
         67:72:2f:fb:7a:b1:ac:34:6f:96:51:f5:f8:4c:5b:67:0e:7a:
         74:e9:e9:46:85:5f:a9:25:6f:f3:2b:b0:31:a1:d2:25:8f:ab:
         24:b0:2e:49:66:46:eb:67:b8:e7:0c:fc:8a:cb:26:28:a6:15:
         49:09:a0:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:45 2026 by rpki-client