Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft
File:                     0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json)
Hash identifier:          nZgSiipcK5GFvvMqy1EipJKlwjpClblT+CJwX+7f5Z4=
Subject key identifier:   73:74:D9:61:FB:75:66:58:EF:1B:B0:A4:16:B9:6E:41:38:BA:27:09
Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64
Certificate issuer:       /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064
Certificate serial:       0701
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft
Manifest number:          06E4
Signing time:             Thu 16 Jul 2026 22:54:21 +0000
Manifest this update:     Thu 16 Jul 2026 22:54:20 +0000
Manifest next update:     Thu 23 Jul 2026 22:54:20 +0000
Files and hashes:         1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: 18xYL1wbuLsV0dKhDsL807UD2sqwKCUp7h3tpPJTxAk=)
                          2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: ODIX3oDpfnNWOwtgKPini7l1bVtlb/9n+o+dXisnTbg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl
                          rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 22:54:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1793 (0x701)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064
        Validity
            Not Before: Jul 16 22:54:20 2026 GMT
            Not After : Jul 23 22:54:20 2026 GMT
        Subject: CN=6a59611d-477c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:cb:55:73:76:70:62:f2:f7:90:8a:2b:0f:a0:
                    b0:b4:00:f0:b5:f3:dd:42:89:33:d3:92:9d:ef:09:
                    c7:9f:ea:3e:0a:4d:63:77:e6:3d:1a:96:08:ff:31:
                    59:7c:21:2c:d0:7b:62:05:35:c8:69:73:5e:f5:21:
                    94:2f:47:b8:32:99:df:5b:63:80:35:61:f9:1c:04:
                    f5:b9:46:b5:84:61:b5:94:49:2a:29:c2:ae:7f:ba:
                    ff:a7:4a:3c:6c:aa:a4:f2:c5:d4:34:af:68:ce:7e:
                    da:ff:7d:e8:e4:fc:d1:33:bb:4d:68:cb:40:9f:18:
                    80:e4:af:97:a9:51:b3:39:9e:e2:bf:7c:e2:86:cb:
                    e0:31:05:d9:e7:c7:d1:d4:44:40:17:f9:52:35:49:
                    22:9d:51:11:0b:f5:ec:26:e1:1a:85:2b:a6:58:97:
                    b1:f8:d3:af:2c:e3:96:0a:2e:8c:bf:00:36:cb:75:
                    8c:5d:5e:c2:a9:82:7c:59:19:51:44:1a:c6:81:8e:
                    89:35:46:54:f7:c3:61:3d:d4:fd:d8:a1:a9:de:70:
                    3a:6d:23:65:89:44:69:f7:6b:bc:34:db:5f:8b:0f:
                    48:ca:5e:85:53:25:2e:36:62:69:d6:35:5d:9f:2e:
                    76:ee:3a:5c:6d:3e:fc:88:b5:a3:2b:e4:00:40:39:
                    a7:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:74:D9:61:FB:75:66:58:EF:1B:B0:A4:16:B9:6E:41:38:BA:27:09
            X509v3 Authority Key Identifier:
                keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:20:26:7b:99:89:0c:fc:e2:06:ba:62:28:f4:00:81:77:8c:
         5f:d5:f8:7c:eb:f4:9e:8a:dd:bc:c6:ac:3f:fa:a0:9b:82:5d:
         06:01:0a:5c:a3:53:29:ef:6e:35:ed:57:da:ab:35:ab:46:c8:
         d5:33:9d:3e:ba:94:80:6b:eb:a9:83:78:6a:2f:12:db:e2:1e:
         3b:f3:66:e5:8b:a2:c4:ef:3a:e0:e0:10:e3:6b:ff:78:6c:98:
         46:85:fe:d4:98:ad:eb:da:cb:2a:0e:a1:55:ba:e6:bc:6f:a0:
         3d:dd:4b:ed:e7:e9:ae:21:3c:fe:0a:0b:f9:6b:24:87:6c:d8:
         c5:88:5c:fc:ac:92:d6:a9:20:93:03:6a:d2:9e:53:1e:3d:e8:
         dd:96:a4:11:2f:23:c8:d6:6e:28:7b:de:83:a3:24:00:1e:c8:
         46:00:33:3d:66:ae:a3:3c:db:19:79:f4:7f:34:b5:75:14:68:
         eb:52:95:22:ca:a1:70:29:7e:99:d2:f5:c8:7f:8a:49:47:c1:
         99:cf:7e:a3:cb:49:d4:b5:78:c6:5c:03:e6:9f:bc:a9:f7:fd:
         ee:63:0e:57:9b:66:04:f9:fb:d4:c9:9b:ce:0b:f8:04:e5:1f:
         ee:0e:67:18:29:71:e9:9d:66:1f:4d:37:86:29:0b:01:f8:3e:
         aa:07:2d:a9
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD
REIxODMwNjQwHhcNMjYwNzE2MjI1NDIwWhcNMjYwNzIzMjI1NDIwWjAYMRYwFAYD
VQQDEw02YTU5NjExZC00NzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnctVc3ZwYvL3kIorD6CwtADwtfPdQokz05Kd7wnHn+o+Ck1jd+Y9GpYI/zFZ
fCEs0HtiBTXIaXNe9SGUL0e4MpnfW2OANWH5HAT1uUa1hGG1lEkqKcKuf7r/p0o8
bKqk8sXUNK9ozn7a/33o5PzRM7tNaMtAnxiA5K+XqVGzOZ7iv3zihsvgMQXZ58fR
1ERAF/lSNUkinVERC/XsJuEahSumWJex+NOvLOOWCi6MvwA2y3WMXV7CqYJ8WRlR
RBrGgY6JNUZU98NhPdT92KGp3nA6bSNliURp92u8NNtfiw9Iyl6FUyUuNmJp1jVd
ny527jpcbT78iLWjK+QAQDmn9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHN02WH7
dWZY7xuwpBa5bkE4uicJMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF
NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN
R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz
RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAZyAme5mJDPziBrpiKPQAgXeMX9X4fOv0nordvMasP/qgm4JdBgEKXKNTKe9u
Ne1X2qs1q0bI1TOdPrqUgGvrqYN4ai8S2+IeO/Nm5YuixO864OAQ42v/eGyYRoX+
1Jit69rLKg6hVbrmvG+gPd1L7efpriE8/goL+Wskh2zYxYhc/KyS1qkgkwNq0p5T
Hj3o3ZakES8jyNZuKHveg6MkAB7IRgAzPWauozzbGXn0fzS1dRRo61KVIsqhcCl+
mdL1yH+KSUfBmc9+o8tJ1LV4xlwD5p+8qff97mMOV5tmBPn71Mmbzgv4BOUf7g5n
GClx6Z1mH003hikLAfg+qgctqQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:18:25 2026 by rpki-client