Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft
File:                     8ItqFjLJysLoaI3qSIfZMC6VYBA.mft (raw, json)
Hash identifier:          Q0i8PoCSEpAUzDzwjt8LCaDnm0Om+RSjiq89ozzE164=
Subject key identifier:   7C:9D:F8:C0:7F:A9:58:50:63:2F:20:B7:10:18:A7:A9:4E:09:B3:0A
Authority key identifier: F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10
Certificate issuer:       /CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010
Certificate serial:       085B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft
Manifest number:          0847
Signing time:             Mon 06 Jul 2026 21:28:41 +0000
Manifest this update:     Mon 06 Jul 2026 21:28:41 +0000
Manifest next update:     Mon 13 Jul 2026 21:28:41 +0000
Files and hashes:         1: 8ItqFjLJysLoaI3qSIfZMC6VYBA.crl (hash: 9StUwWU358wOk9GCxhRvlp50BlBXV5SkYXxZvrDZ49Q=)
                          2: B5DC8802169411EBBEBD9A23C4F9AE02.roa (hash: bNwR09y5zMMM14ZXXZzaqooJdRynsIYvdb/mm7Q6iWE=)
                          3: 7E18ACF0C66811F084C00543C4F9AE02.roa (hash: 7XFhCYpRi5MWgMi60pgzWpPeSkzwa4nMJXrUSx4/k1M=)
                          4: B54C3DBA169411EBBEBD9A23C4F9AE02.roa (hash: NghPk/wVq3Vd7LHngXkzOUMOG/RNZ/zYTp/fCWTTyU4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl
                          rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 20:28:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2139 (0x85b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911FFAB, serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010
        Validity
            Not Before: Jul  6 21:28:41 2026 GMT
            Not After : Jul 13 21:28:41 2026 GMT
        Subject: CN=6a4c1e09-b007
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:65:27:ac:58:0f:c1:15:1c:72:55:ad:d3:43:
                    aa:f6:e8:bd:c6:93:4f:f7:86:e8:f6:31:9e:f0:0c:
                    10:40:f3:22:ea:40:2b:e2:bf:67:77:37:f4:05:a5:
                    c9:67:93:2f:fe:7d:a3:10:ac:cf:87:5f:4f:a4:4f:
                    17:23:02:a7:52:05:c5:61:a8:d3:6a:51:f7:17:8d:
                    da:77:7e:34:89:5c:7d:39:ae:7a:87:61:30:26:a4:
                    7e:d8:9e:da:51:af:c7:8e:23:aa:72:66:d3:42:10:
                    13:bb:0a:91:0c:f7:f5:4d:bd:65:87:f2:46:2e:b9:
                    c4:f5:7c:35:a9:48:0a:96:20:17:9c:62:d4:a9:2d:
                    37:f2:ee:f5:71:42:b1:40:fe:87:89:c9:53:56:8e:
                    a1:d4:23:cb:db:26:a2:a1:58:e8:43:a5:9a:de:d4:
                    4a:bf:9d:07:a9:1c:12:9c:b0:a9:13:d1:e8:10:48:
                    01:02:a6:8e:10:1b:18:83:c2:e0:78:dc:97:d9:09:
                    75:74:7e:7d:c6:93:ec:68:a2:5b:d7:c2:c8:55:5e:
                    d9:5f:a2:6f:b3:2d:e8:41:73:1f:b1:b4:10:3d:63:
                    4d:a8:37:4b:18:ae:03:c6:0f:2c:2a:5f:cb:83:49:
                    d8:c9:44:7f:0f:2b:a6:ae:9e:18:ca:9e:34:91:69:
                    d3:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:9D:F8:C0:7F:A9:58:50:63:2F:20:B7:10:18:A7:A9:4E:09:B3:0A
            X509v3 Authority Key Identifier:
                keyid:F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:58:20:75:ed:4c:e4:26:fa:22:07:09:dd:dd:d7:37:d4:a5:
         c8:e4:75:d2:46:96:ee:bc:a5:39:9b:61:5f:8a:4d:d8:40:b0:
         31:06:e5:54:6b:4a:c0:24:91:d2:8e:ce:11:92:92:8a:62:74:
         fc:31:e4:bb:af:ff:5d:76:21:e1:18:06:52:a8:2d:04:db:77:
         0f:c5:50:f7:69:03:7b:8e:1f:49:58:53:45:da:c3:c9:fd:48:
         66:6e:a4:ff:7a:4e:87:73:b9:c5:f1:1c:2a:c5:b7:0b:64:c5:
         a6:d9:4c:0f:71:d0:e9:6c:ba:bf:d1:96:49:2a:72:e0:bc:ca:
         79:7a:85:27:22:cc:68:96:f3:b1:35:48:9a:ac:01:cd:3c:ce:
         6a:c7:c9:2d:d7:75:10:19:c3:02:38:4b:cd:64:f3:2b:93:1b:
         46:f9:ae:f7:1c:89:9c:eb:2e:63:72:61:63:c2:23:04:a8:93:
         59:49:83:ab:2a:27:b4:eb:f8:c6:03:43:4a:6b:83:53:4a:19:
         ff:dc:aa:b6:6f:71:0c:60:2f:fe:39:c8:8a:71:2a:a1:15:04:
         0b:cd:0a:64:44:e2:10:84:f4:f4:bb:e3:83:3f:a8:b7:f3:82:
         c8:5c:24:e1:e4:07:67:ea:94:93:dd:34:6e:b3:55:ec:36:3d:
         c6:f3:7c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:49 2026 by rpki-client