Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft
File:                     7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json)
Hash identifier:          xYBe0T8keDtRG15wP7pexvdrLyP3kbxE8VPhpLfXy4c=
Subject key identifier:   EF:41:AB:DE:69:A2:F0:D8:8E:0A:D9:E0:9D:E3:1A:E1:80:90:0F:54
Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66
Certificate issuer:       /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66
Certificate serial:       0129
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft
Manifest number:          0120
Signing time:             Sun 05 Jul 2026 06:28:12 +0000
Manifest this update:     Sun 05 Jul 2026 06:28:11 +0000
Manifest next update:     Sun 12 Jul 2026 06:28:11 +0000
Files and hashes:         1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: m2t8J2yDTJyjr7D/xWRRwEaReirlQCl4psSMcjwg23A=)
                          2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: aHk0t2Hy2gHuEUEuWNA047fzWOktHu8vocVNcFbAJjo=)
                          3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: qt3HSjdPuhwdbu7y+IBM5bXY+abtccfmEZI2ywYOKv4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl
                          rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:54:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 297 (0x129)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9126A3C, serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66
        Validity
            Not Before: Jul  5 06:28:11 2026 GMT
            Not After : Jul 12 06:28:11 2026 GMT
        Subject: CN=6a49f97c-6a65
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:3a:83:91:3c:cd:d6:47:54:07:9f:e1:30:a0:
                    b5:86:ad:c7:a6:23:a8:de:7a:8b:76:2f:06:ba:ad:
                    25:48:5f:0e:06:fb:b2:79:c6:de:2f:a7:32:63:38:
                    23:80:65:e4:6b:c7:b2:bb:da:e3:77:6b:7b:51:17:
                    89:48:ac:af:e7:5e:45:75:f7:14:ab:b0:e9:35:5e:
                    83:ad:9e:61:53:5b:16:cb:cd:0a:81:30:90:3a:38:
                    51:29:55:f1:af:5f:de:ef:6e:bf:93:fc:1b:87:f2:
                    6c:67:70:a0:17:88:a0:2f:5d:3f:c7:17:8e:87:5f:
                    b3:c7:61:ec:34:46:84:45:b4:89:08:fe:1c:fd:34:
                    ca:91:5f:1e:9c:7b:83:47:37:7e:1b:9e:55:1b:5e:
                    de:1e:4c:b9:74:52:71:78:ad:2c:4f:90:26:6f:4c:
                    b3:2e:2f:79:74:ff:7e:55:27:0b:06:31:12:4b:8b:
                    7b:06:a1:73:4b:44:90:b9:fb:66:5e:b0:c0:8b:c7:
                    13:15:7d:fa:5e:9f:45:e2:bc:50:87:4a:e5:04:1e:
                    98:c4:e9:42:57:e0:f6:ca:17:f2:ea:7a:13:0b:16:
                    07:38:c1:ee:de:37:c8:f2:77:20:bc:00:3d:64:0d:
                    7b:75:b0:55:f2:09:5b:fc:06:98:7a:39:e6:cc:aa:
                    1f:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:41:AB:DE:69:A2:F0:D8:8E:0A:D9:E0:9D:E3:1A:E1:80:90:0F:54
            X509v3 Authority Key Identifier:
                keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:ff:c8:d0:f8:31:85:bd:e4:71:57:81:17:7d:a0:63:7a:c2:
         d8:7f:9d:04:71:eb:64:39:be:bd:9d:99:a6:19:15:bb:94:0c:
         80:cd:1a:b2:ab:36:ad:8d:9f:33:cf:5d:da:b5:df:93:72:9c:
         5a:3e:30:99:6a:00:20:f3:96:b0:ad:60:3a:5e:18:72:99:3d:
         b9:54:b8:b2:ee:0c:13:61:91:f0:a1:d0:25:20:f4:c7:32:ec:
         0a:23:55:d4:ea:dc:d6:13:ed:36:ef:0f:cf:f2:c2:aa:f9:c3:
         9a:5b:ce:e4:93:e7:4c:d9:a0:e1:d2:d5:fd:45:60:38:d2:1d:
         06:53:dc:d9:9b:61:81:7b:64:79:61:4a:a0:71:3f:fb:13:d7:
         80:e0:77:96:a4:6c:cf:dd:32:6a:67:8b:3c:23:11:41:e8:f9:
         a0:18:85:5f:cf:2b:9a:2d:bb:d5:06:23:43:a4:ed:11:36:36:
         1b:93:60:93:55:fe:14:8e:a6:6a:93:85:af:cb:c6:64:a0:9f:
         bf:cb:74:97:a3:dd:a9:2c:e2:4c:81:d9:ea:59:0c:0a:45:41:
         2e:11:dd:33:92:4f:d0:b6:39:5b:a2:6e:af:31:b0:d4:52:1d:
         a8:3d:23:20:fb:0c:3f:e9:b0:b9:65:7f:95:a9:6d:ac:86:53:
         cf:c2:ca:ce
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjZBM0MxMTAvBgNVBAUTKEVFODE5QTQ5QjhDOEE4NDQxM0VFOEZFODMyNkVGMTM3
RjUxODVDNjYwHhcNMjYwNzA1MDYyODExWhcNMjYwNzEyMDYyODExWjAYMRYwFAYD
VQQDEw02YTQ5Zjk3Yy02YTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwjqDkTzN1kdUB5/hMKC1hq3HpiOo3nqLdi8Guq0lSF8OBvuyecbeL6cyYzgj
gGXka8eyu9rjd2t7UReJSKyv515FdfcUq7DpNV6DrZ5hU1sWy80KgTCQOjhRKVXx
r1/e726/k/wbh/JsZ3CgF4igL10/xxeOh1+zx2HsNEaERbSJCP4c/TTKkV8enHuD
Rzd+G55VG17eHky5dFJxeK0sT5Amb0yzLi95dP9+VScLBjESS4t7BqFzS0SQuftm
XrDAi8cTFX36Xp9F4rxQh0rlBB6YxOlCV+D2yhfy6noTCxYHOMHu3jfI8ncgvAA9
ZA17dbBV8glb/AaYejnmzKofGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO9Bq95p
ovDYjgrZ4J3jGuGAkA9UMB8GA1UdIwQYMBaAFO6Bmkm4yKhEE+6P6DJu8Tf1GFxm
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkEzQy83QkZCNENBQ0M2
QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi83b0dhU2JqSXFFUVQ3b19vTW03eE5fVVlY
R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhHWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
NkEzQy83QkZCNENBQ0M2QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi83b0dhU2JqSXFF
UVQ3b19vTW03eE5fVVlYR1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAOf/I0Pgxhb3kcVeBF32gY3rC2H+dBHHrZDm+vZ2ZphkVu5QMgM0asqs2rY2f
M89d2rXfk3KcWj4wmWoAIPOWsK1gOl4Ycpk9uVS4su4ME2GR8KHQJSD0xzLsCiNV
1Orc1hPtNu8Pz/LCqvnDmlvO5JPnTNmg4dLV/UVgONIdBlPc2ZthgXtkeWFKoHE/
+xPXgOB3lqRsz90yameLPCMRQej5oBiFX88rmi271QYjQ6TtETY2G5Ngk1X+FI6m
apOFr8vGZKCfv8t0l6PdqSziTIHZ6lkMCkVBLhHdM5JP0LY5W6JurzGw1FIdqD0j
IPsMP+mwuWV/laltrIZTz8LKzg==
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:41:06 2026 by rpki-client