Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft
File:                     drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json)
Hash identifier:          5wv7JeYQZJVfm+JfwSaGNGAhsAfEEd4ndR8otNLxOLA=
Subject key identifier:   60:57:F2:10:48:5E:52:C0:75:89:5E:75:29:B9:33:99:7C:8D:E3:12
Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4
Certificate issuer:       /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4
Certificate serial:       0BC0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft
Manifest number:          0BA2
Signing time:             Thu 02 Jul 2026 19:15:46 +0000
Manifest this update:     Thu 02 Jul 2026 19:15:46 +0000
Manifest next update:     Thu 09 Jul 2026 19:15:46 +0000
Files and hashes:         1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: Xf+p5ShNBuH7Hm6KhVTul7iIrATN3h7WAlmU1EeXrR4=)
                          2: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: bw6V3e8uxgz/w4mVGTTnR4lCFXMSeabuBZrROz8xFwc=)
                          3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: nvrbL4K8UTuSHUzb0sameKGMaeUHHtqeYardPlMzhKY=)
                          4: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: NYJZvZPzyDgeHzpdsKVjfnf0vb6jVGfn+iXWogNI5w0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl
                          rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 19:15:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3008 (0xbc0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4
        Validity
            Not Before: Jul  2 19:15:46 2026 GMT
            Not After : Jul  9 19:15:46 2026 GMT
        Subject: CN=6a46b8e2-32b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:01:c2:66:46:0a:f6:b6:66:fd:5f:37:a8:45:
                    78:98:79:a5:c8:71:c5:39:e6:ed:48:7f:bb:f7:50:
                    28:8d:b5:03:7a:19:8a:17:b1:b9:57:42:69:1b:38:
                    85:a0:44:87:94:c8:88:8d:b9:bd:83:07:a9:37:9a:
                    8c:94:59:91:16:0f:81:ee:30:bd:d7:91:05:ff:c0:
                    af:f2:fb:8e:bb:6d:74:95:69:dc:87:21:92:f4:c0:
                    96:49:4b:aa:6d:e2:ab:9e:87:8d:be:f3:84:0f:65:
                    22:df:c8:b5:77:e5:60:5c:65:16:21:4b:65:01:80:
                    50:3e:9a:aa:8a:67:ee:ac:a0:02:08:35:92:d1:b2:
                    fc:22:2c:1e:5a:62:a5:99:35:62:67:37:09:59:b4:
                    0e:75:12:ed:b8:f5:df:ef:0a:1a:fe:9d:a1:cc:5e:
                    45:c8:78:b4:ef:c2:6f:d0:b5:8f:2f:bf:af:7b:ee:
                    b2:2b:8a:ab:42:48:7c:3f:81:2d:25:a7:be:4f:c1:
                    d9:11:28:07:c1:e8:69:64:1b:ab:2b:b8:cc:fd:e6:
                    57:4e:81:3b:b9:04:8e:02:82:9a:96:4e:48:55:17:
                    d5:e9:4d:1a:fa:cb:34:1f:7f:e6:a0:7b:cf:bd:17:
                    a3:46:05:c5:b3:15:fc:3d:3c:1a:d3:d6:69:27:60:
                    fa:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:57:F2:10:48:5E:52:C0:75:89:5E:75:29:B9:33:99:7C:8D:E3:12
            X509v3 Authority Key Identifier:
                keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:e5:fb:a7:3f:60:f4:b8:5f:ec:08:8c:a9:f0:4e:03:8f:f2:
         a8:7a:f7:be:d4:ba:78:42:56:26:e0:c4:ba:d7:f9:a1:e3:d9:
         43:30:0b:02:f0:93:e7:3f:62:5a:c1:4b:dc:0d:22:a6:4a:f2:
         03:0d:fa:7c:cc:b7:25:65:b1:06:a2:f0:20:df:4d:ce:ce:bb:
         6b:d4:3f:82:79:0b:aa:80:e2:53:67:85:be:a8:9e:d2:2a:04:
         64:25:29:8f:30:ba:b7:ef:2e:cd:75:8a:4a:b7:9a:04:e8:71:
         e2:c1:49:2d:16:7b:be:4f:39:94:70:cc:72:70:12:a7:4e:95:
         4f:8d:7a:1f:67:b5:02:d2:4f:5a:12:02:e1:1a:b0:5f:5d:dc:
         af:b3:8c:64:f9:a4:3a:cd:e8:b2:b8:e6:5b:1e:64:4d:ae:5c:
         ed:12:af:39:d0:12:f3:0e:03:cc:ed:1f:64:58:80:10:97:44:
         12:e9:d1:ce:29:22:c9:51:de:05:77:91:a8:18:60:34:ba:58:
         0f:3d:9f:bc:65:c6:56:25:6e:82:5d:be:e3:5a:63:a9:3c:fe:
         7b:cd:2e:a4:11:68:5d:e1:95:92:80:b5:eb:ae:18:7f:0c:17:
         90:ae:d0:e8:11:8d:88:f1:58:b2:dd:66:e2:9a:0b:a2:26:98:
         b1:4a:20:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 01:25:02 2026 by rpki-client