Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft
File:                     MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json)
Hash identifier:          B8qesBuAcscjsEcgepVp1G5sCEqzyuH9CHRQeF9FqCU=
Subject key identifier:   F3:AD:16:C4:F6:8E:59:8F:38:94:1A:71:CC:BD:92:C6:9F:60:A8:65
Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92
Certificate issuer:       /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592
Certificate serial:       0AA6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft
Manifest number:          0A89
Signing time:             Mon 06 Jul 2026 20:01:13 +0000
Manifest this update:     Mon 06 Jul 2026 20:01:12 +0000
Manifest next update:     Mon 13 Jul 2026 20:01:12 +0000
Files and hashes:         1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: PqQK02xlcIw2vE8tcGhLLZGLH9DXwRY2gHJ0sdjxnsA=)
                          2: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: nPdlPveaGEn/o0RAhqipdNtydGVDIBxlaIUin+YvoPY=)
                          3: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: tAcZwWZwhXU4QpEPlt2t2XMLszlvvkM98qyIqRR6Ejk=)
                          4: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: 8uX/hlFjGe/V8LokTmcu8tEggMYCwiDilR7VyuWjQ5g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl
                          rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 20:01:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2726 (0xaa6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592
        Validity
            Not Before: Jul  6 20:01:12 2026 GMT
            Not After : Jul 13 20:01:12 2026 GMT
        Subject: CN=6a4c0988-dd32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:92:b3:1c:24:7f:76:7d:db:b4:7f:d2:34:94:
                    d0:28:ca:a8:b6:94:a2:91:5a:54:c9:4c:14:c9:b2:
                    6b:e9:e3:49:fb:df:6d:cb:3f:61:96:84:88:66:5b:
                    eb:b0:cf:77:c8:e1:26:38:be:54:c8:42:e6:23:d5:
                    9b:68:d7:45:bd:2e:25:6a:60:be:d3:9f:e9:87:04:
                    06:80:a4:62:6a:47:a0:4e:7c:ad:8d:84:b5:94:3e:
                    e3:44:8e:b0:01:99:5c:82:48:16:a5:13:ec:6b:2f:
                    de:44:b2:7f:6b:1c:ff:70:17:69:80:c6:37:e2:29:
                    45:8a:fe:a7:03:da:41:0d:e8:dd:51:aa:65:7d:97:
                    1c:94:d1:c4:0c:7c:d9:68:5a:18:52:c9:02:14:54:
                    87:a9:3a:75:ed:45:3d:51:2f:32:c1:0b:af:8e:b3:
                    d1:94:92:47:6e:37:c5:ad:68:63:b8:41:d9:a1:21:
                    c4:ff:ef:3a:90:16:c6:cc:0a:7d:ab:9b:2d:c2:2b:
                    47:61:cf:12:5d:e3:8c:2c:98:ec:f1:35:64:43:dc:
                    f7:e4:79:78:a2:af:a7:2c:22:76:48:0f:0d:52:5c:
                    d3:5b:80:9e:92:38:9a:87:c5:2f:75:42:02:af:1d:
                    30:33:8a:06:a7:6a:88:92:8c:e7:e3:39:f2:cb:9e:
                    41:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:AD:16:C4:F6:8E:59:8F:38:94:1A:71:CC:BD:92:C6:9F:60:A8:65
            X509v3 Authority Key Identifier:
                keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:1c:5b:00:1f:15:21:d4:8f:ff:8a:1b:88:4f:e3:60:49:2a:
         17:59:e4:2c:cf:ed:4b:75:68:a2:2a:0d:39:9a:e9:62:94:6e:
         a6:3b:72:c1:fd:03:90:d7:9d:3a:2e:bd:a1:80:df:52:fd:15:
         99:65:f8:e7:38:c1:64:ab:f6:0a:84:1d:fc:77:d8:74:ed:cf:
         aa:6e:f1:66:bf:7a:f1:1c:8c:5a:85:a2:19:8f:09:3f:57:b2:
         eb:85:47:58:0e:33:13:76:9d:d1:c6:4d:c1:7a:7a:22:6f:02:
         d7:94:49:a5:cc:fd:bb:0f:ee:23:ba:b4:fc:71:11:4e:2b:c0:
         f8:ff:26:1f:49:71:b1:b9:d2:3c:66:78:c4:0e:95:99:0a:02:
         62:ae:e4:1b:31:30:62:77:4c:e0:cc:cf:74:93:03:28:90:de:
         00:25:ed:f7:38:bb:84:fc:9d:21:6e:af:41:07:36:c0:d6:15:
         af:cb:f0:2a:b1:4a:61:32:b3:31:47:0a:06:93:5c:b3:0c:0b:
         ec:06:56:0e:8c:ef:48:1a:1d:c1:e2:10:dc:26:e8:8e:0b:ad:
         c1:c2:d5:32:e6:68:0f:ef:d3:6e:9b:d6:b2:b9:40:16:e0:36:
         2c:15:b1:86:f3:e8:8b:fb:ce:f0:18:45:f7:76:34:ae:84:6b:
         60:54:a0:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:56 2026 by rpki-client