Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft
File:                     BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json)
Hash identifier:          2M5KY9UltPHIYQUtPTq9WXSzGFqvbrrgnoAXYEWecnE=
Subject key identifier:   8B:59:3E:28:4E:1C:C4:6A:51:20:0E:94:33:AC:D7:A2:5E:82:A2:7B
Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47
Certificate issuer:       /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347
Certificate serial:       11ED
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft
Manifest number:          11D9
Signing time:             Fri 10 Jul 2026 17:19:38 +0000
Manifest this update:     Fri 10 Jul 2026 17:19:38 +0000
Manifest next update:     Fri 17 Jul 2026 17:19:38 +0000
Files and hashes:         1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: nr4AwTZow+o0eB7ZrKx4SG0u0AEeEqlwCqs9U0RXwL4=)
                          2: C484F3C0B74E11F0823EBC10C4F9AE02.roa (hash: h2DwpWR+IjAMG7fxYPQ9pAtPnP4GTYNqqiG9hVcrgDE=)
                          3: 7F35DF3CB74E11F0B044DA80C4F9AE02.roa (hash: cXPjCHPaKFx65HIG8toHkGNypseR6/vfwRdThb3BfVw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl
                          rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 17 Jul 2026 17:19:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4589 (0x11ed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347
        Validity
            Not Before: Jul 10 17:19:38 2026 GMT
            Not After : Jul 17 17:19:38 2026 GMT
        Subject: CN=6a5129aa-aab7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:7a:04:ff:b1:f6:9a:f2:86:8c:fb:6c:2c:47:
                    58:8f:31:80:c3:5a:59:39:05:63:23:da:c5:60:10:
                    41:d5:b2:97:fe:4d:8c:48:ce:9b:e4:29:e8:5c:2c:
                    34:21:41:a1:ad:b4:0d:4c:21:64:f7:08:f1:5f:68:
                    78:71:a1:9a:ee:47:a3:36:8d:9c:0e:52:b9:15:88:
                    6b:11:52:f5:69:5f:58:14:e6:5b:dd:ec:6b:58:a2:
                    62:61:30:ca:3c:9a:c1:d7:48:6e:51:ac:27:67:0e:
                    34:05:8c:de:10:2c:37:bc:ad:54:98:82:59:00:c5:
                    d4:80:de:7b:ac:75:97:60:b5:25:25:1a:a7:cb:17:
                    81:49:25:01:af:12:04:3e:ab:c5:72:87:da:34:d8:
                    d7:4b:ef:dd:4d:97:e6:74:b7:a9:5d:48:99:db:51:
                    de:85:6b:42:50:0f:97:f1:12:47:a1:f4:0d:fb:da:
                    11:fa:23:74:1e:98:5a:01:68:5f:93:15:31:6f:ee:
                    cf:4c:64:1e:6a:36:05:45:3f:59:5f:33:32:6c:8a:
                    a4:b3:9e:fc:26:8b:9f:90:f6:6d:82:2b:1f:ae:24:
                    f7:16:e7:04:31:11:16:de:1b:bb:07:71:8c:6c:e1:
                    94:6f:02:ca:e6:ff:c6:6d:19:08:ef:af:f1:b7:c3:
                    d7:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:59:3E:28:4E:1C:C4:6A:51:20:0E:94:33:AC:D7:A2:5E:82:A2:7B
            X509v3 Authority Key Identifier:
                keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:be:b4:59:4c:37:df:3c:ac:47:6b:3c:8a:53:ab:1a:3b:c2:
         0b:bd:2e:11:c4:b8:3b:21:2e:79:71:e5:3d:d3:a2:fe:f0:cb:
         87:18:86:8c:54:d4:d9:99:ce:4d:e7:1c:1c:43:1b:b1:d9:64:
         a4:9a:05:16:06:b1:18:b9:ac:8a:3b:de:c6:31:7a:9e:6c:72:
         16:24:fa:fb:3e:89:5a:92:b7:5b:d4:92:62:9e:7f:98:14:3e:
         cb:40:91:39:19:7c:3b:dd:a7:6a:06:d2:22:f1:53:cf:c3:11:
         a0:a2:ab:1e:45:53:88:64:ef:f8:3a:9a:03:50:c6:67:48:c8:
         1f:e4:9d:2d:82:91:bb:b9:b4:97:e6:53:6f:29:53:32:3c:6e:
         30:37:b3:2c:3a:bc:d6:cd:a3:98:66:69:fd:8b:6c:88:47:34:
         0b:c3:2c:a0:f5:60:f2:8e:21:85:ef:47:ca:da:3c:8a:1c:40:
         c6:48:8a:67:5f:61:76:3e:5f:cb:e0:81:9f:71:8a:0f:85:cb:
         e0:ca:15:92:f7:89:62:62:6e:83:4a:6d:b0:c0:67:14:68:b5:
         6c:cf:7e:d6:65:24:8f:6a:6e:b2:64:85:72:68:af:b6:60:e4:
         4e:e0:af:05:74:d5:7e:e0:8c:52:34:e2:38:01:ab:06:94:5a:
         68:f3:1a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 12:02:23 2026 by rpki-client