Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft
File:                     aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json)
Hash identifier:          AbAJupjQdwXTcguTG65NIh2xtC0Ns59VkQMbk6yERzU=
Subject key identifier:   42:98:2F:1A:A7:A1:92:9C:2A:4C:C8:FB:05:66:04:0C:BC:56:68:CD
Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F
Certificate issuer:       /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F
Certificate serial:       012C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft
Manifest number:          0127
Signing time:             Thu 16 Jul 2026 22:54:23 +0000
Manifest this update:     Thu 16 Jul 2026 22:54:23 +0000
Manifest next update:     Thu 23 Jul 2026 22:54:23 +0000
Files and hashes:         1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: qjCPbxi6Tu3nHJAzfcYKojySQJoRPt0XSNM9v5CUnuQ=)
                          2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: c+4urNgJNXNWBhwpLiUNezIdmF5mlVJxmjpsI9/AkQI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl
                          rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 22:54:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 300 (0x12c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F
        Validity
            Not Before: Jul 16 22:54:23 2026 GMT
            Not After : Jul 23 22:54:23 2026 GMT
        Subject: CN=6a59611f-e56e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:fd:3d:5f:be:dd:ab:b9:dd:f9:59:1f:db:e9:
                    7d:b3:5a:87:1b:01:26:40:32:00:fb:4f:62:e1:8b:
                    af:f7:a1:2e:17:90:22:0f:34:08:de:f7:74:5a:ee:
                    14:29:1c:3e:60:3b:6b:84:51:05:84:76:28:c0:c6:
                    62:90:35:ad:5a:e6:f2:89:12:ad:4e:3a:cc:c8:1e:
                    3a:e0:9a:12:54:2f:5b:5a:72:a0:53:d1:6b:f7:bd:
                    0b:07:80:86:4f:95:ff:81:ed:eb:77:33:4a:e0:80:
                    7d:77:a2:62:6e:ee:76:3d:f9:c2:97:32:77:2c:7a:
                    00:47:86:b3:32:46:d6:b8:d0:6a:cf:34:4c:a1:a3:
                    21:16:51:89:2c:ef:21:ef:12:20:11:cf:dd:99:d8:
                    18:d5:09:3b:1f:e2:cb:bd:b7:9a:4b:6e:41:f0:e8:
                    09:0d:0f:fc:d5:2d:79:5c:75:ea:85:3e:e6:c8:b9:
                    f4:fb:3c:a6:24:3f:9c:8d:25:fd:ae:08:42:ea:17:
                    8c:e9:f3:ec:fd:67:11:05:2f:3f:c6:fd:b9:22:d1:
                    6a:9e:48:87:6c:9a:fd:9e:18:e6:b1:70:aa:22:27:
                    a1:b9:4c:ad:bc:77:f2:59:20:8c:d2:e5:3f:29:90:
                    a2:b1:33:9f:b0:a2:e1:88:e2:88:1e:fb:14:d7:3b:
                    85:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:98:2F:1A:A7:A1:92:9C:2A:4C:C8:FB:05:66:04:0C:BC:56:68:CD
            X509v3 Authority Key Identifier:
                keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:dd:77:7a:af:9a:49:8d:0f:23:35:2c:5d:32:29:a7:f2:f4:
         9a:eb:38:f5:51:52:f7:48:eb:f1:82:bf:63:56:c7:db:f2:11:
         8d:28:ae:00:dc:e4:37:93:21:4a:59:91:6a:ed:6c:f6:b1:44:
         e7:dd:3a:96:c4:6f:bd:48:5b:4f:73:95:af:c3:0f:54:b9:83:
         03:d2:6c:e5:93:a1:df:96:94:65:29:f8:86:91:f7:40:2d:98:
         66:c2:8c:2a:56:60:c0:a0:37:51:fd:f1:bd:20:ca:06:03:b6:
         50:76:e6:bb:e5:a8:7a:29:48:ea:a0:1b:f2:4e:1a:28:07:07:
         38:f3:59:f7:c1:49:42:a5:2d:86:5b:3b:ab:72:f5:70:66:b3:
         7c:2f:33:88:de:cf:41:2b:f8:8e:91:f3:8d:f4:a7:e5:43:ba:
         b2:a9:74:17:e4:bd:39:3e:96:95:89:df:3b:c7:e7:db:73:3f:
         49:78:5d:7b:66:e7:8b:25:e2:e0:13:82:f2:ee:9d:77:9f:ac:
         2b:01:61:3d:4b:cd:32:9e:5a:18:c5:ca:b5:82:8d:e6:ca:9d:
         df:cb:0f:e4:64:70:60:37:2b:03:68:11:67:83:dd:3a:da:a7:
         f0:9e:32:2a:4c:23:02:88:42:ba:0e:3f:19:6a:da:5a:0f:73:
         eb:ae:fa:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:18 2026 by rpki-client