Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft
File:                     qo4b42JCQNwzAgR_tBp9TkeAjvg.mft (raw, json)
Hash identifier:          dks9m8EWY9enfIjrFZhfxCSWglb4Az1zXZaFRilHcAM=
Subject key identifier:   58:AC:B1:43:05:59:1E:49:AB:A4:F8:EE:81:76:00:B0:9C:05:74:44
Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8
Certificate issuer:       /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8
Certificate serial:       0A74
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft
Manifest number:          0A2F
Signing time:             Mon 06 Jul 2026 20:19:03 +0000
Manifest this update:     Mon 06 Jul 2026 20:19:02 +0000
Manifest next update:     Mon 13 Jul 2026 20:19:02 +0000
Files and hashes:         1: qo4b42JCQNwzAgR_tBp9TkeAjvg.crl (hash: P6aA6myZZkeIe7sKG/gGXRqEKHNEtii00DKV7OLzwCA=)
                          2: 0FD0ED72DEDF11F085D204E3526F56BC.roa (hash: pTLqg59yg6AHQtWauJEh8VBOaMqkkf2a1JioyqursTM=)
                          3: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (hash: 1IEjJ30lw69ZEHMKoLQ8EMNLbhqzITtfEQNas8rt+9s=)
                          4: 35E2088CDEDC11F09573FB8A516F56BC.roa (hash: Pkdcinjik27aP1313/FsgkfOJBBKQKn1ifEErEuk2l8=)
                          5: C2A410D4ADA011F08E990C1DC4F9AE02.roa (hash: G0vU5JVbCZyLk1wSOWyQBhOy8mR2nS22Z/eltaU886M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl
                          rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 20:19:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2676 (0xa74)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8
        Validity
            Not Before: Jul  6 20:19:02 2026 GMT
            Not After : Jul 13 20:19:02 2026 GMT
        Subject: CN=6a4c0db7-c72f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:a7:d6:05:87:d6:55:c9:e2:d4:ac:75:8e:12:
                    60:5a:fc:2d:69:76:b2:45:07:30:a8:f6:25:cf:1f:
                    f2:0b:6d:3f:53:51:21:52:27:ea:c2:86:c3:db:b8:
                    84:68:90:6f:c5:e3:9b:08:ae:a0:16:d6:9f:1e:6c:
                    2a:f4:c2:05:fe:60:a6:7e:f0:84:d3:59:3a:42:6f:
                    a1:b0:10:7f:5b:b6:82:bf:c4:2c:de:87:60:93:9d:
                    d8:50:5d:ff:c9:89:87:de:29:66:27:b7:fb:9d:74:
                    98:a0:fe:ec:81:fa:86:0b:de:4b:c5:65:e2:fe:ff:
                    d9:44:08:56:9c:96:48:30:c4:c7:dd:e1:4c:5d:ca:
                    62:86:ee:ab:16:e5:75:2b:f4:63:5c:d1:97:ec:18:
                    d2:79:60:54:22:58:14:61:72:75:72:6e:79:04:f9:
                    7a:99:0f:81:68:f9:af:8b:dd:00:65:58:86:82:6a:
                    18:8c:bd:e7:06:0b:e7:09:4f:58:e8:bd:07:1e:f3:
                    92:21:4a:70:3c:ce:e2:de:bf:d9:e0:b4:3d:69:df:
                    c0:a8:a7:bd:17:6f:e5:6b:40:a1:e8:38:77:ad:55:
                    f8:f5:21:52:e7:82:45:cc:93:8c:3e:d4:bf:2a:0c:
                    c8:27:17:09:4c:b3:df:4b:18:04:18:5a:10:1e:f7:
                    11:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:AC:B1:43:05:59:1E:49:AB:A4:F8:EE:81:76:00:B0:9C:05:74:44
            X509v3 Authority Key Identifier:
                keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:0a:b5:ed:fc:82:01:79:8d:fe:7d:d6:58:5f:73:ed:df:e1:
         f4:0a:25:e8:e9:5e:06:45:56:80:ca:02:09:c8:ec:4b:6c:8b:
         32:12:fd:89:84:c6:b1:93:c6:88:27:16:da:08:1f:15:e9:30:
         dc:98:b7:f1:bc:40:f0:2c:a5:ea:18:a3:83:90:12:68:d9:86:
         28:2f:78:e1:38:02:a7:c4:0e:86:ec:dc:8b:2a:c7:49:5b:a7:
         d6:b4:03:98:cd:8f:25:91:2b:30:68:6e:5f:54:20:db:72:e2:
         50:6a:a0:c6:b2:60:34:ee:b7:49:7b:b3:2a:4d:0b:21:0e:9e:
         e2:27:6f:02:e3:0d:d4:53:be:61:48:54:cf:9d:0c:26:62:fc:
         80:07:39:34:43:29:21:da:84:44:bf:65:a4:a2:17:f6:2a:1c:
         92:06:ab:e4:c3:43:0b:c9:5f:ba:dd:08:16:6c:21:4d:1a:87:
         65:40:62:20:12:9b:5f:30:ec:b7:1b:7b:5c:d3:fc:8c:cf:36:
         b6:ab:34:2d:a1:d3:c5:c4:97:50:33:9b:14:1d:53:f2:1c:41:
         10:e4:a2:7b:57:f6:40:a1:fc:c9:ae:8c:ce:76:a7:62:65:0a:
         f2:07:2b:36:9a:9e:ca:d9:22:76:3b:85:fd:eb:4d:62:61:b3:
         40:1a:fa:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 20:46:42 2026 by rpki-client