Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
File:                     jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json)
Hash identifier:          LL7mrk/1TXiDP4/FmzFw2FdAOHHjzQmjKFPtB54r7tk=
Subject key identifier:   97:87:E6:5C:40:1B:B4:51:64:72:19:3C:7A:AB:2F:C0:79:38:AA:EB
Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07
Certificate issuer:       /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07
Certificate serial:       01E1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
Manifest number:          01C8
Signing time:             Fri 03 Jul 2026 04:31:03 +0000
Manifest this update:     Fri 03 Jul 2026 04:31:02 +0000
Manifest next update:     Fri 10 Jul 2026 04:31:02 +0000
Files and hashes:         1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: L78OWdQ2ZRQzB/MgDcNGUl7X9H9VbR7zS/Rt+dIivKU=)
                          2: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: owQYw9h+uccODUhkikEdlCDKK/hYVX6MWumcBf31Hrw=)
                          3: F4E2989683AC11EF9F80F70FC4F9AE02.roa (hash: 0E4qYTpBck7zqd7XOVsdpYAiDLiP6vH0ev4CSQjnfXI=)
                          4: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: /8Gd5gZ758sNArtTS8yRpNug05q/Okyd5D7W2BUqcNk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl
                          rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 04:31:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 481 (0x1e1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07
        Validity
            Not Before: Jul  3 04:31:02 2026 GMT
            Not After : Jul 10 04:31:02 2026 GMT
        Subject: CN=6a473b06-51b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:6a:51:cf:9b:0c:42:b4:d4:fc:9b:c9:19:28:
                    02:2f:83:f9:4a:69:08:2e:98:03:d1:7c:28:1d:1a:
                    52:ce:6f:95:d8:6c:20:6d:d6:f0:e3:1c:33:c7:56:
                    3d:c1:3a:e7:95:56:68:b8:21:ad:47:63:60:03:0b:
                    55:30:85:1b:ca:ef:02:e4:8f:94:cc:52:88:8d:ff:
                    be:35:58:3d:4a:a7:1a:38:d1:47:04:90:9d:bd:2b:
                    17:63:25:cb:c3:e7:a4:b5:5a:78:42:e1:31:6e:cb:
                    e9:b9:13:e9:04:cd:57:33:a2:3f:03:fd:c3:8a:07:
                    19:14:37:d1:4e:d6:62:63:c7:08:8a:94:66:08:61:
                    99:df:58:9e:c4:2c:b2:77:6c:9c:7c:39:a8:aa:d3:
                    d1:35:e4:18:10:70:3a:ed:83:c4:9e:dc:00:f9:11:
                    63:52:24:2e:65:6c:0c:fe:19:57:77:89:77:30:f6:
                    59:28:dd:3a:97:da:05:9e:7a:25:08:10:ab:73:e7:
                    d2:86:b3:5c:b6:13:25:0e:89:f0:f8:dd:ec:b7:07:
                    6c:cd:53:c0:b9:95:cc:34:6e:b6:45:20:73:0c:08:
                    72:96:fc:3e:52:c3:1a:a1:7f:7d:65:18:64:9b:da:
                    46:56:5c:61:9f:b9:ec:f6:5c:e9:0a:42:bb:61:75:
                    4f:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:87:E6:5C:40:1B:B4:51:64:72:19:3C:7A:AB:2F:C0:79:38:AA:EB
            X509v3 Authority Key Identifier:
                keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:df:36:6f:39:67:de:a8:2b:ba:68:c4:60:51:4b:3a:68:de:
         13:47:aa:90:8f:0b:92:65:01:af:2d:98:58:ad:31:1a:05:66:
         87:8c:08:9e:b3:ff:6b:18:11:9d:34:cc:b1:4a:45:e8:cc:87:
         a9:bf:7d:b9:c0:12:82:cd:04:90:ad:18:c3:24:e3:eb:5d:fb:
         d0:00:c3:90:3d:67:3d:ab:b7:cb:a4:b3:e5:0c:32:e3:c0:2b:
         35:9c:bf:52:31:08:fa:f1:c7:e1:50:44:06:b6:d2:a0:eb:83:
         6b:87:e8:4b:83:97:53:23:aa:fd:3f:6c:7b:8f:d2:df:76:2b:
         af:70:46:d3:61:b5:ab:c9:6c:57:fe:b7:23:22:a9:70:5b:25:
         29:8b:23:d6:af:7f:0b:7f:39:44:51:e9:e5:99:a7:ac:de:f2:
         ca:a9:c7:24:cc:a4:1d:b2:5b:81:00:61:c6:f7:bb:43:91:9c:
         04:de:e7:f8:73:ad:ea:63:de:8f:5a:d9:1f:12:97:1e:85:7d:
         0b:5b:f1:ec:39:49:76:83:39:aa:8e:6e:03:a7:a9:8d:c3:92:
         c6:24:01:dc:cb:29:13:05:67:76:dc:03:bc:20:e6:60:82:58:
         4c:5b:e3:ab:99:67:a1:0a:fb:f4:48:e4:65:62:28:64:f5:e6:
         e3:8e:46:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:45:25 2026 by rpki-client