Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft
File:                     Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft (raw, json)
Hash identifier:          EQ1EEF0C+WOm95HzEjmBCjN7s55zMhHpmS1h4AVmrSI=
Subject key identifier:   F1:D4:24:49:A0:16:5E:9E:D7:68:7F:E4:1F:94:2B:DB:35:2B:DC:6B
Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC
Certificate issuer:       /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC
Certificate serial:       08B3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft
Manifest number:          088A
Signing time:             Sat 04 Jul 2026 20:57:51 +0000
Manifest this update:     Sat 04 Jul 2026 20:57:50 +0000
Manifest next update:     Sat 11 Jul 2026 20:57:50 +0000
Files and hashes:         1: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl (hash: Zzapozu44NFnTEsMUFowJm8qxT7QzNqpmsfIvcWoX90=)
                          2: 1069D50EB54B11F092E79246C4F9AE02.roa (hash: sMAmYlXlaGfYX483zQnKNNyggh6fdl5j3X0veZpEvVk=)
                          3: 4314DB4C8EAF11F091C0B421C4F9AE02.roa (hash: v7v6WaMiJJgHGJFslronZNjFXcWnrbiRDd5BXO1kv5Q=)
                          4: 1DB0529C7CA711F0A52C5966C4F9AE02.roa (hash: Jad+xXpbo9F1Si83r3/4thdMZxhxo4YYl8MwD9607wo=)
                          5: 1F5EE982235011F1ABBAE38DAE833773.roa (hash: 4vii0PEyxfAMDDStR+CEGDgcVMprRDhlhb9Z9n20u5A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl
                          rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 20:57:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2227 (0x8b3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC
        Validity
            Not Before: Jul  4 20:57:50 2026 GMT
            Not After : Jul 11 20:57:50 2026 GMT
        Subject: CN=6a4973cf-2536
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:87:ca:ef:28:5c:ca:f1:ec:fd:95:55:89:64:
                    4b:31:f6:4d:d6:f5:77:8f:19:a6:ae:6b:0d:27:a6:
                    96:76:76:4a:27:b2:58:20:48:35:24:a6:fd:df:23:
                    1f:31:b5:1b:cb:a6:ce:d0:2d:52:60:b4:6d:80:4a:
                    89:d5:2a:69:01:33:db:e1:fb:f0:58:7f:43:5b:72:
                    9e:3e:ce:f0:49:c0:c3:18:40:69:5a:96:71:00:78:
                    ae:1c:5d:30:c5:a9:03:9a:4b:e6:4b:3d:f0:e7:f9:
                    62:ad:9f:9c:9b:df:59:c2:90:ec:0e:8b:b0:34:c1:
                    b7:96:5b:25:11:91:1f:a8:96:6b:60:8a:9a:53:81:
                    9a:45:5f:db:eb:a1:31:45:c1:c5:65:04:32:29:e2:
                    20:6c:a9:3b:ad:10:ba:45:15:14:92:b2:45:e2:14:
                    56:6c:96:36:82:fa:87:e8:f2:30:b5:60:fb:77:23:
                    c4:50:bc:59:6e:0b:96:ce:7c:7f:c7:9a:bf:f2:a2:
                    cd:69:21:da:36:32:17:79:8b:7e:4a:02:ad:fd:94:
                    cc:f1:38:71:6c:07:6e:58:38:10:89:cc:da:fc:11:
                    dc:3c:0c:8e:b8:30:e8:c7:b4:ee:f0:4a:4c:b5:fb:
                    2e:45:77:89:88:7b:dc:2d:da:fc:76:a6:ce:f5:ba:
                    13:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:D4:24:49:A0:16:5E:9E:D7:68:7F:E4:1F:94:2B:DB:35:2B:DC:6B
            X509v3 Authority Key Identifier:
                keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:6d:45:7c:65:68:b2:7b:8e:23:f7:26:59:ae:5b:86:ba:e1:
         1e:ad:e4:4b:67:01:aa:2c:cd:35:d7:5e:13:7c:59:bb:9a:3f:
         04:54:ad:9c:aa:2b:dd:67:ef:51:61:84:8b:61:c3:0c:d5:b6:
         24:53:51:2f:34:db:1b:52:0c:e6:9a:1f:b7:e9:54:60:d5:8f:
         1d:11:21:d9:e7:33:28:a8:04:18:76:a9:d5:70:d4:e8:71:54:
         d5:1d:70:fc:12:2c:a2:e6:0a:c4:78:fd:b3:8c:aa:ed:30:96:
         65:82:45:bf:b2:59:6d:55:80:0d:e0:1b:a0:22:8a:ab:2a:31:
         e1:0e:b1:95:58:99:ed:b3:94:c6:74:2c:5f:ba:26:cd:1e:c7:
         51:23:22:96:c3:bc:dd:0d:79:c8:86:64:80:b7:43:e0:9e:6d:
         9d:ee:ab:95:15:a1:56:63:04:94:05:b4:9d:b6:63:76:aa:09:
         8b:49:25:6b:e6:40:9c:11:aa:7e:e6:70:83:2e:10:c0:a5:77:
         48:b4:33:45:ff:09:3c:3d:68:00:d4:61:8e:52:07:a4:ef:8d:
         a7:b2:6f:62:18:1c:3f:a8:4f:44:ec:ce:6e:1c:45:67:9b:86:
         89:e1:34:49:d5:7d:b5:64:0f:b3:14:42:e3:1e:00:18:bf:0c:
         60:03:c5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:41:03 2026 by rpki-client