Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft
File:                     baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json)
Hash identifier:          KSCxs4KHW2EnG9n1CQWa+UhxhnCYaiOcRmTx+5K5rlw=
Subject key identifier:   FB:8C:36:5C:1B:22:12:51:C4:24:0F:DD:B5:ED:B5:81:D3:FE:E3:0A
Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06
Certificate issuer:       /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206
Certificate serial:       0829
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft
Manifest number:          081A
Signing time:             Thu 16 Jul 2026 21:33:38 +0000
Manifest this update:     Thu 16 Jul 2026 21:33:38 +0000
Manifest next update:     Thu 23 Jul 2026 21:33:38 +0000
Files and hashes:         1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: N+qgvX3/qtCfniTDqaCP9S/u8qQeWWAjGV9lejQ/5XM=)
                          2: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (hash: VwwT7RQ/qXGeiFBkCB3JtIL1WCq5yNf8aGSsCVk++yQ=)
                          3: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: cVjs8CCmJom1l0o4wFC6QkXwpn/JOlzgY1YvrYV5KoA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl
                          rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 21:33:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2089 (0x829)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206
        Validity
            Not Before: Jul 16 21:33:38 2026 GMT
            Not After : Jul 23 21:33:38 2026 GMT
        Subject: CN=6a594e32-b479
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:95:7e:bc:21:39:d7:f4:8a:56:93:d4:f0:91:
                    03:d3:11:91:41:ec:86:d1:39:3c:99:e8:45:8f:8f:
                    c8:da:08:b8:3b:91:7d:91:f7:ab:db:55:20:76:d2:
                    ba:c5:b0:aa:88:f0:a6:c0:85:04:f4:4e:dd:4d:95:
                    e6:46:46:49:0b:b8:97:c7:49:d2:3b:5c:c4:3f:b6:
                    0d:4e:0e:7e:9d:0a:ca:09:cc:15:bc:87:c1:48:93:
                    5a:c6:4e:67:d0:12:d7:74:04:3d:10:d7:4f:d5:56:
                    5f:8c:78:96:be:16:1d:df:3d:05:c5:9e:97:5d:ec:
                    a4:a9:65:67:da:3e:7a:e7:f9:28:d3:5d:04:97:54:
                    ff:61:22:69:de:9e:25:54:6a:08:2c:87:3d:55:79:
                    d7:10:7c:9f:d2:b5:ff:b1:20:7e:81:c7:d7:a9:8a:
                    b4:1e:8f:91:cc:fd:58:12:47:54:f7:4f:fb:02:46:
                    bb:2a:eb:29:62:0b:d2:cd:95:ed:98:5d:f6:68:d1:
                    b5:2a:3d:66:1d:48:30:68:c1:40:0b:5b:f6:0f:d6:
                    97:88:a6:0b:c9:b2:67:a3:0a:03:eb:fe:62:c7:4b:
                    5a:66:8d:f9:4c:21:41:a0:59:df:41:97:0e:7a:ac:
                    f5:d4:a7:44:63:2b:c7:81:2e:2d:50:50:0b:bd:be:
                    24:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:8C:36:5C:1B:22:12:51:C4:24:0F:DD:B5:ED:B5:81:D3:FE:E3:0A
            X509v3 Authority Key Identifier:
                keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:c2:d0:b4:5d:88:57:ee:9a:93:67:4b:ee:db:76:8c:b3:93:
         6b:a7:9e:5f:31:e7:8c:71:b6:ab:19:97:22:07:1b:1f:06:68:
         f4:a2:21:da:88:fc:2b:1e:ce:26:10:d0:bf:5b:15:52:97:ca:
         c9:52:4d:0b:f1:84:7b:9d:7d:b4:66:89:f0:f5:b3:86:3d:3e:
         dd:e3:ce:bd:fc:1c:37:76:08:f8:b1:13:3d:09:0a:b6:0f:76:
         ed:a5:66:02:35:80:75:40:ae:5b:a5:82:8c:78:96:0d:34:24:
         02:ae:ce:66:d2:32:4c:10:b3:ee:ac:0e:94:29:44:3a:34:ab:
         7e:db:ed:88:41:36:09:87:bf:8d:4a:69:68:d3:39:74:10:1e:
         20:c5:0b:f8:8e:15:05:79:b5:7e:e4:f2:73:73:b5:60:61:92:
         a8:9c:87:db:b4:94:16:8b:42:10:32:17:b2:c0:4c:14:33:b6:
         ba:b1:4e:6b:c6:a5:32:28:0e:68:c5:88:12:fe:08:45:75:e2:
         0f:1c:70:c3:08:ce:9d:85:2d:0e:6c:06:9f:00:5f:89:f5:34:
         e0:67:64:f5:a4:ec:e6:45:fa:96:2d:b3:4c:34:8e:e1:6c:8f:
         2c:50:f1:02:85:d5:0e:94:a3:4b:2b:d4:27:91:6f:6b:9d:a7:
         8c:1f:06:af
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz
Q0U5MzQyMDYwHhcNMjYwNzE2MjEzMzM4WhcNMjYwNzIzMjEzMzM4WjAYMRYwFAYD
VQQDEw02YTU5NGUzMi1iNDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA9JV+vCE51/SKVpPU8JED0xGRQeyG0Tk8mehFj4/I2gi4O5F9kfer21UgdtK6
xbCqiPCmwIUE9E7dTZXmRkZJC7iXx0nSO1zEP7YNTg5+nQrKCcwVvIfBSJNaxk5n
0BLXdAQ9ENdP1VZfjHiWvhYd3z0FxZ6XXeykqWVn2j565/ko010El1T/YSJp3p4l
VGoILIc9VXnXEHyf0rX/sSB+gcfXqYq0Ho+RzP1YEkdU90/7Aka7KuspYgvSzZXt
mF32aNG1Kj1mHUgwaMFAC1v2D9aXiKYLybJnowoD6/5ix0taZo35TCFBoFnfQZcO
eqz11KdEYyvHgS4tUFALvb4kxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPuMNlwb
IhJRxCQP3bXttYHT/uMKMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF
QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR
Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz
YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAD8LQtF2IV+6ak2dL7tt2jLOTa6eeXzHnjHG2qxmXIgcbHwZo9KIh2oj8Kx7O
JhDQv1sVUpfKyVJNC/GEe519tGaJ8PWzhj0+3ePOvfwcN3YI+LETPQkKtg927aVm
AjWAdUCuW6WCjHiWDTQkAq7OZtIyTBCz7qwOlClEOjSrftvtiEE2CYe/jUppaNM5
dBAeIMUL+I4VBXm1fuTyc3O1YGGSqJyH27SUFotCEDIXssBMFDO2urFOa8alMigO
aMWIEv4IRXXiDxxwwwjOnYUtDmwGnwBfifU04Gdk9aTs5kX6li2zTDSO4WyPLFDx
AoXVDpSjSyvUJ5Fva52njB8Grw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 02:55:05 2026 by rpki-client