Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft
File:                     P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json)
Hash identifier:          6EPWSD1PyBQApSUsg21muWeSIXQxOJJJfd92KRkOupQ=
Subject key identifier:   77:F9:BF:60:13:54:20:CD:E2:09:A6:D8:27:6E:43:13:E0:DC:51:B9
Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57
Certificate issuer:       /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957
Certificate serial:       2BD4
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft
Manifest number:          2B84
Signing time:             Tue 24 Mar 2026 15:31:10 +0000
Manifest this update:     Tue 24 Mar 2026 15:31:10 +0000
Manifest next update:     Tue 31 Mar 2026 15:31:10 +0000
Files and hashes:         1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: kMJhaj5WqFZ6N27RkQKZzxJPE0PIQDSyv0VLYXOVBwY=)
                          2: E8573BE8F1C111F098487417396F56BC.roa (hash: F0Fv187N1RGFhEEbx/oMjZ1udUPLSoWgSQeuKM9bGms=)
                          3: A2842DA6E07D11F0A337A81D3B6F56BC.roa (hash: BXRFGNYuity9lTYV79AbAsykkMdd6+n6EZ7PrTkQhsk=)
                          4: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: KdnM+2nBmwCpA+MGMHO0Bl1xzd46blXEMYh3gkA7MWA=)
                          5: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: e0sKc/3PzukaFrJycUXB6K4Zrj8DGKsFURALFcSQcVU=)
                          6: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: Eo31vAFnAsF5u9q6EjT+7W+u7j0+BA8u4cDp5rL/syM=)
                          7: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: lwhgxQ+LgrJn47zyUAnLsM4ouCqlk1HX6qTOZMFb/HM=)
                          8: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: 80yPdyzDWGKZGoqPlrkXe6z7oxzuh7a6qYo6nHURbRI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl
                          rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 31 Mar 2026 15:31:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11220 (0x2bd4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957
        Validity
            Not Before: Mar 24 15:31:10 2026 GMT
            Not After : Mar 31 15:31:10 2026 GMT
        Subject: CN=69c2ae3e-9063
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:97:cb:d4:89:d3:2f:9f:57:7c:dc:2e:fe:05:
                    2d:a3:19:75:24:54:5c:30:f5:55:dc:df:90:c6:06:
                    d7:fd:08:f8:d6:67:1f:d1:93:9c:51:f7:17:53:60:
                    9c:d1:10:85:bd:35:4c:09:27:d9:15:52:56:cc:13:
                    fe:9e:20:a6:49:ea:33:15:38:3d:cb:aa:83:d7:b5:
                    54:f9:c6:6a:76:cf:eb:fa:2f:5d:58:e6:e5:c8:e0:
                    fe:7c:49:ce:79:62:e4:57:2a:c0:bd:56:9d:fe:fa:
                    b2:8e:ab:2e:6a:40:ce:a0:19:37:64:b5:e6:49:25:
                    ca:db:8b:36:43:ca:ee:57:a0:c0:85:2e:78:f3:3a:
                    b0:28:40:85:29:80:e0:ac:31:0c:e7:ba:f3:60:54:
                    9a:9c:01:ad:18:76:5a:85:89:3f:dc:c1:d3:00:52:
                    ef:47:69:30:73:6d:19:01:f3:f6:ac:8c:5f:2b:9d:
                    80:85:06:57:ff:bb:5a:cf:0f:39:a2:46:28:77:7c:
                    01:be:8c:e2:cd:48:17:47:75:3d:09:e5:94:4a:aa:
                    d6:bc:18:6f:56:d3:cf:73:bc:8b:03:44:e0:41:22:
                    e2:89:4e:4f:c9:67:3a:ec:28:16:bb:52:d4:a7:28:
                    aa:d9:d8:5f:ed:51:72:47:83:5d:ce:50:9f:40:13:
                    a0:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:F9:BF:60:13:54:20:CD:E2:09:A6:D8:27:6E:43:13:E0:DC:51:B9
            X509v3 Authority Key Identifier:
                keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:f3:4e:9f:d7:9e:dd:5e:b2:2b:4d:c1:b5:ca:0e:43:d5:35:
         e2:05:87:22:53:50:95:b2:b4:76:e1:24:a8:f1:12:7f:b2:6c:
         1b:97:d9:ce:c5:a3:38:d2:88:f2:76:9f:db:43:25:e2:32:a8:
         05:b9:1f:d0:84:a2:a0:72:84:4a:1e:2c:19:0f:91:7c:24:f8:
         df:23:8b:9a:f7:c8:bb:1c:a2:c5:23:5d:9a:00:a8:18:b9:47:
         8f:30:31:28:48:81:94:f0:10:a3:81:0c:6f:95:2d:12:06:c5:
         0e:0d:87:e0:80:55:f8:b0:3c:db:f0:e9:90:cc:5f:c7:f8:24:
         c7:ba:3d:74:8d:6a:d3:2f:18:e9:c9:a3:42:97:9a:a9:76:0f:
         24:7c:82:e1:9e:46:e3:02:12:62:ba:d1:48:b4:97:ce:63:27:
         13:6c:87:8d:8e:f8:97:fb:12:74:6a:ef:ab:53:33:88:ea:f6:
         40:a5:49:30:d7:03:01:7c:a4:0e:12:9d:c7:44:8d:8b:36:aa:
         4a:95:3b:ec:f5:e0:71:33:80:5c:0c:50:eb:87:14:59:4d:cb:
         1e:00:c7:a1:e8:71:53:ad:11:d4:8d:fa:8d:65:1f:ed:ef:ef:
         4f:df:9b:8a:74:21:b9:14:5f:44:c7:b6:83:16:e7:45:2a:f9:
         6d:89:be:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:59:14 2026 by rpki-client