Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
File:                     3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json)
Hash identifier:          d8FmOMPqX8v4G3bNLhDEdIT9d+7ueTEp2fWf0UYeE2s=
Subject key identifier:   FF:7B:3F:75:8B:1A:7C:38:6C:C3:B5:2F:BF:EF:79:D5:96:2A:7B:6D
Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F
Certificate issuer:       /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F
Certificate serial:       0104
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
Manifest number:          F1
Signing time:             Thu 09 Jul 2026 08:28:27 +0000
Manifest this update:     Thu 09 Jul 2026 08:28:27 +0000
Manifest next update:     Thu 16 Jul 2026 08:28:27 +0000
Files and hashes:         1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: 5P9UBeMccHY0vk0c6taZ81uYaWKoRlYEJryZ5J4vSuc=)
                          2: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: gciNcDUVUCgw2qH2N78KovAnzOQWySARLNLA0rYt0Qc=)
                          3: 57AE76BA76D711F19DF4999C7BA30FBC.roa (hash: 6wRayQcINiwIUCo58JgrG1mNFg6i7e/wwz7+kqUH+lc=)
                          4: 4693C4A276D711F19E795C9A7BA30FBC.roa (hash: PfN9tequr7/Zu4xPf/Z2ZvqOuMMu0qCRpIUVkg6sAek=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl
                          rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 08:28:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 260 (0x104)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F
        Validity
            Not Before: Jul  9 08:28:27 2026 GMT
            Not After : Jul 16 08:28:27 2026 GMT
        Subject: CN=6a4f5bab-157a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:21:10:49:37:3a:f4:35:7f:68:ba:f4:ec:9e:
                    43:74:16:86:d8:11:10:51:fd:9e:72:51:0a:4f:4e:
                    ba:5c:6c:1c:d5:49:e5:dc:c1:dd:5a:40:f1:ad:ea:
                    61:23:ad:74:cd:50:64:38:62:dc:46:51:12:85:a3:
                    77:3a:7e:13:3f:af:31:e7:2a:81:15:96:ef:51:d5:
                    55:f5:eb:23:dd:5a:86:60:8f:ca:6c:f1:ff:9d:0b:
                    f1:b3:2c:b4:b8:a8:44:5c:ec:a0:9d:97:61:da:13:
                    2c:a1:dc:65:2b:17:d4:2c:0a:b9:9a:e9:01:83:48:
                    23:36:22:bc:e8:cb:5c:16:33:e2:1d:55:c4:3d:b0:
                    68:63:5c:48:b1:dd:b6:a3:a9:61:6e:8b:e3:a9:3a:
                    3c:e7:49:60:f6:f1:c7:c4:e4:5a:1a:90:36:14:12:
                    cd:73:b0:dd:5f:f8:8f:8e:02:a8:c4:3c:13:94:da:
                    25:00:ff:f3:6e:0d:a4:ba:3c:49:bb:98:60:98:cf:
                    b2:7b:42:cc:d1:ca:15:81:d9:82:95:64:0f:27:72:
                    73:a7:ba:00:57:44:61:40:ee:db:cb:c6:23:97:ee:
                    95:b4:3a:b5:04:2b:f3:c8:49:53:38:79:80:7f:3b:
                    5a:aa:ec:5b:03:4d:80:7c:7d:ad:c6:66:98:a4:64:
                    42:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:7B:3F:75:8B:1A:7C:38:6C:C3:B5:2F:BF:EF:79:D5:96:2A:7B:6D
            X509v3 Authority Key Identifier:
                keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:00:dd:a5:f4:b9:33:c7:d7:20:74:17:50:c5:42:81:3c:57:
         8a:2e:6e:7e:4f:dd:ca:0d:5f:dd:97:4e:6d:99:07:d7:87:75:
         8b:e2:4f:46:44:f4:ba:10:c7:d3:98:c9:b5:a5:bb:c5:ff:fc:
         00:a1:63:cb:7d:d9:d8:de:98:d7:2c:c9:42:74:b8:b5:d5:58:
         c8:0a:8f:73:60:e9:93:73:45:0c:4f:05:0a:43:2f:bf:b9:1d:
         e7:72:b1:9a:27:50:c1:9b:7d:d3:0a:93:49:1c:29:86:b1:c4:
         11:01:b8:6d:aa:4e:d7:04:66:21:c6:ac:93:d6:af:9d:fe:f5:
         71:43:4c:78:13:bb:01:59:9e:3a:e8:e0:7c:d0:82:c7:c5:55:
         a1:c2:a7:9f:3f:00:c6:46:72:40:3f:59:9c:11:93:81:5e:f1:
         be:16:39:cc:4b:fc:ad:13:9a:03:a5:37:aa:44:2b:64:93:75:
         8d:c0:a3:86:bd:12:24:f4:89:15:39:9f:3d:c1:8c:39:a3:85:
         2c:3e:ec:4f:7a:79:b8:60:2a:9c:d4:89:98:18:c2:2b:99:3e:
         11:df:37:e1:ca:9c:79:eb:fc:1f:76:32:61:63:c1:9a:16:fd:
         f4:e2:1b:2e:2e:46:cf:31:e6:b9:ed:a7:7b:f8:5c:fe:48:ce:
         a0:c6:d1:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 20:34:42 2026 by rpki-client