Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft
File:                     OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft (raw, json)
Hash identifier:          oVOHIa83dRN4ilXC91t2rp5HaeMrpsKQgPWH7oIH220=
Subject key identifier:   73:63:C0:7C:D4:CD:3A:74:C2:10:AE:7F:CD:27:DD:06:23:2E:34:E5
Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C
Certificate issuer:       /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C
Certificate serial:       011A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft
Manifest number:          0106
Signing time:             Thu 09 Jul 2026 08:07:07 +0000
Manifest this update:     Thu 09 Jul 2026 08:07:07 +0000
Manifest next update:     Thu 16 Jul 2026 08:07:07 +0000
Files and hashes:         1: OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl (hash: 06XNa0ehPxRgAzfUBQi0thISft8ZGxLT3gvhL+1M/n8=)
                          2: 553798E2FB2E11EFB488A95EC4F9AE02.roa (hash: aNrWLrutR5ArzXGRsTtMLurkk5UM/Q77zEZqj2DNM6w=)
                          3: D759EECE244011F1B0BBBC37BB833773.roa (hash: 4ZLnEVH62B/fFZNl3E3aTQ7rJ1PwOzf217E+4KcGPOw=)
                          4: 41C8C708244111F1AF80D04DBB833773.roa (hash: P0OVA8RnrCkxwGNC5Oj/FAk/vhkA7eOmVQFaY4OMLYg=)
                          5: 54DA33D2FB2E11EFB488A95EC4F9AE02.roa (hash: lVJ/wAuLoxmXnwU3EkGNm9UUsAUB6qqvPi8MZYUo1FY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl
                          rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 08:07:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 282 (0x11a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C
        Validity
            Not Before: Jul  9 08:07:07 2026 GMT
            Not After : Jul 16 08:07:07 2026 GMT
        Subject: CN=6a4f56ab-9030
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:c2:d9:79:07:ac:a1:ce:9f:55:62:70:59:46:
                    b7:ab:e1:09:35:a4:cb:79:d3:ae:ea:42:41:fd:04:
                    cc:44:ac:fb:a9:34:7c:24:f6:9c:37:dc:a1:fb:23:
                    e7:8d:a1:58:6f:9b:e3:cc:ae:4d:77:88:93:cc:f7:
                    78:92:01:05:60:3e:62:2d:bf:64:23:33:bd:1b:10:
                    98:55:bb:5e:fc:a3:e6:f0:2c:1e:d7:ea:1c:9f:6e:
                    4a:22:da:47:56:05:f2:bf:75:8c:c3:f5:04:4f:a0:
                    cf:03:96:89:80:58:ee:5b:3b:c3:f7:c1:84:c5:ea:
                    97:54:87:b7:34:23:95:a4:7a:21:08:1f:e7:c4:17:
                    ca:ca:7e:74:e3:1f:dc:fb:79:16:77:b5:45:a0:8f:
                    9e:86:de:a7:90:31:69:a8:e7:83:9a:e7:47:2f:a3:
                    17:86:c1:09:25:dd:44:40:83:63:c5:0a:b7:2c:e6:
                    0c:2a:a5:1c:89:9b:6f:85:1e:51:ba:d6:f5:01:03:
                    9f:59:09:87:f7:93:6c:e3:bf:34:04:4c:e6:3c:7a:
                    18:f0:76:e0:3a:76:7a:7f:e8:30:c5:c9:8d:9a:1f:
                    66:bd:50:2f:09:2b:45:f8:01:7b:fb:1b:5b:66:f3:
                    05:4b:46:a1:9b:86:93:17:04:da:2f:a5:d6:be:d8:
                    08:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:63:C0:7C:D4:CD:3A:74:C2:10:AE:7F:CD:27:DD:06:23:2E:34:E5
            X509v3 Authority Key Identifier:
                keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:96:66:27:9d:ce:16:0e:d4:7e:00:45:f5:1c:d6:04:be:2d:
         c5:2f:34:1f:41:a7:1b:d6:b2:04:cc:2a:4b:68:8b:59:b5:86:
         d9:bf:c2:c3:3b:09:28:c4:2c:21:08:1e:4a:e5:7f:73:5a:3c:
         e5:37:fd:9b:32:4d:ac:a1:48:cd:80:66:81:4f:6e:fc:b8:96:
         41:cf:19:0b:2f:d5:3c:f4:c4:12:5f:8b:dc:83:f2:c7:66:c9:
         98:3e:e8:8c:59:f4:00:b5:e9:03:08:d9:97:e1:a7:b3:9f:ea:
         09:b9:6d:8a:2f:2c:d6:ee:86:c2:34:ea:c0:ac:87:f3:70:00:
         94:d0:55:0a:90:3e:f8:f6:f5:40:37:2b:9b:a5:2a:0c:dd:e4:
         bc:85:5f:5b:d1:ff:97:b4:45:25:ff:92:3d:da:d2:af:72:43:
         7b:e4:97:63:29:8b:cd:bb:dc:b5:50:00:a6:24:cf:7b:7b:82:
         9e:a5:69:73:87:c0:a2:9c:e8:ee:70:49:53:91:9f:cf:16:12:
         2c:77:dc:1c:3a:98:55:28:26:7a:70:3c:e4:c7:95:4c:cf:ea:
         b2:f8:ef:6d:8b:dd:b6:ee:26:3f:4f:9c:17:9f:b9:26:59:95:
         bf:1f:c2:95:8e:6e:fc:21:bf:af:e1:5b:de:c4:24:e3:ba:6e:
         8d:a8:b8:8b
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUU1MDIxMTAvBgNVBAUTKDM4NkMzMDBFRDcyRjEyQjkwNTQ3OEEzM0NFRjI3Nzk5
MjU0QTY5MUMwHhcNMjYwNzA5MDgwNzA3WhcNMjYwNzE2MDgwNzA3WjAYMRYwFAYD
VQQDEw02YTRmNTZhYi05MDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAmcLZeQesoc6fVWJwWUa3q+EJNaTLedOu6kJB/QTMRKz7qTR8JPacN9yh+yPn
jaFYb5vjzK5Nd4iTzPd4kgEFYD5iLb9kIzO9GxCYVbte/KPm8Cwe1+ocn25KItpH
VgXyv3WMw/UET6DPA5aJgFjuWzvD98GExeqXVIe3NCOVpHohCB/nxBfKyn504x/c
+3kWd7VFoI+eht6nkDFpqOeDmudHL6MXhsEJJd1EQINjxQq3LOYMKqUciZtvhR5R
utb1AQOfWQmH95Ns4780BEzmPHoY8HbgOnZ6f+gwxcmNmh9mvVAvCStF+AF7+xtb
ZvMFS0ahm4aTFwTaL6XWvtgICQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHNjwHzU
zTp0whCuf80n3QYjLjTlMB8GA1UdIwQYMBaAFDhsMA7XLxK5BUeKM87yd5klSmkc
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwMi84N0MzRkQwQUZC
MjkxMUVGQjc2NkRDNzZDNEY5QUUwMi9PR3d3RHRjdkVya0ZSNG96enZKM21TVkth
UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FSdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
RTUwMi84N0MzRkQwQUZCMjkxMUVGQjc2NkRDNzZDNEY5QUUwMi9PR3d3RHRjdkVy
a0ZSNG96enZKM21TVkthUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAeZZmJ53OFg7UfgBF9RzWBL4txS80H0GnG9ayBMwqS2iLWbWG2b/CwzsJKMQs
IQgeSuV/c1o85Tf9mzJNrKFIzYBmgU9u/LiWQc8ZCy/VPPTEEl+L3IPyx2bJmD7o
jFn0ALXpAwjZl+Gns5/qCbltii8s1u6GwjTqwKyH83AAlNBVCpA++Pb1QDcrm6Uq
DN3kvIVfW9H/l7RFJf+SPdrSr3JDe+SXYymLzbvctVAApiTPe3uCnqVpc4fAopzo
7nBJU5GfzxYSLHfcHDqYVSgmenA85MeVTM/qsvjvbYvdtu4mP0+cF5+5JlmVvx/C
lY5u/CG/r+Fb3sQk47pujai4iw==
-----END CERTIFICATE-----
Generated at Sat Jul 11 03:19:54 2026 by rpki-client