Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft
File:                     bOLX0NlZgNdDytSEhphI26Elwps.mft (raw, json)
Hash identifier:          cmFIlRNs2b8Xzobhn4WvO10mltAYjANuIW9CFCwjveM=
Subject key identifier:   E8:E7:14:AD:0D:FA:BE:EB:1C:54:71:08:75:98:FD:9E:BE:02:E6:23
Authority key identifier: 6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B
Certificate issuer:       /CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B
Certificate serial:       01C8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft
Manifest number:          01C0
Signing time:             Mon 02 Mar 2026 01:21:00 +0000
Manifest this update:     Mon 02 Mar 2026 01:20:59 +0000
Manifest next update:     Mon 09 Mar 2026 01:20:59 +0000
Files and hashes:         1: bOLX0NlZgNdDytSEhphI26Elwps.crl (hash: RicL7iVAeXzt/oeH97s5Q5aJVEg/W/iXqa5vbh+lGsU=)
                          2: 36F3B6A86E5411EEAA31F87AC4F9AE02.roa (hash: pDTxi/uoAFHGF48GS5j39SSpSo1n7kGbSYg7ozTcf7g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl
                          rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 09 Mar 2026 01:20:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 456 (0x1c8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9120E98, serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B
        Validity
            Not Before: Mar  2 01:20:59 2026 GMT
            Not After : Mar  9 01:20:59 2026 GMT
        Subject: CN=69a4e5fc-5d8a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:7f:74:f9:09:b2:c9:c3:3f:03:a8:4d:5f:75:
                    51:07:7e:07:13:49:fb:af:5b:f0:22:30:bc:c8:24:
                    06:b7:42:58:6b:57:e9:03:e1:da:1d:03:3f:c9:b6:
                    a9:cb:fe:8d:bb:06:34:cb:cb:3f:d7:d6:7a:4b:c3:
                    cd:99:13:57:cd:36:42:3f:71:29:71:1a:97:c9:81:
                    61:f2:dc:ea:bb:2a:8d:16:25:f8:b3:7c:c1:06:eb:
                    a7:d1:42:94:73:44:5a:1e:a5:dd:5e:10:37:2e:50:
                    b2:58:4a:41:45:5a:2d:ec:11:dd:12:87:d3:6b:17:
                    0e:d4:1c:1d:fd:9f:ae:a1:c5:69:41:03:46:ab:e1:
                    ee:38:9c:8f:40:3f:6d:33:b4:60:da:34:df:c5:db:
                    c4:9a:c6:49:e9:08:7f:00:dc:aa:7d:0a:2f:69:cb:
                    9a:4f:91:28:5a:41:b6:d0:50:90:21:69:1d:1e:62:
                    8a:91:0b:62:41:fe:c0:e7:f7:88:f7:17:cf:b9:0b:
                    9f:e0:7f:8a:0c:1e:ac:87:a6:26:9e:04:2e:2b:a6:
                    5c:cb:6e:6f:95:37:05:93:ab:46:2a:dc:c1:d7:d3:
                    e1:9e:35:fb:d3:fe:1b:21:68:14:91:fd:6c:82:20:
                    06:d4:60:67:fd:37:0c:b3:37:bd:dd:dc:8a:29:24:
                    19:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:E7:14:AD:0D:FA:BE:EB:1C:54:71:08:75:98:FD:9E:BE:02:E6:23
            X509v3 Authority Key Identifier:
                keyid:6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:d2:76:8a:40:4f:a9:59:8d:ca:e8:f4:d4:ac:34:df:be:4f:
         4c:e1:de:84:b4:23:b1:c3:59:21:38:29:03:0a:5d:d0:4a:fe:
         0d:c4:53:01:6a:5e:ec:b7:89:35:c8:5a:cc:db:c4:e5:9f:d6:
         af:b9:b6:f5:78:6f:86:e2:29:8a:0b:2f:c5:a9:ff:80:e3:73:
         ca:a7:9b:27:db:e4:30:53:e9:5f:ea:ad:e2:5e:0d:26:5d:bf:
         9e:05:aa:27:89:2e:30:1e:85:37:46:7b:8f:6f:4d:b0:86:a9:
         2d:7d:e5:3f:1b:8c:3e:1e:87:07:54:b4:c5:5a:6b:c9:1b:5a:
         29:20:d1:1c:94:41:85:24:bb:fb:d0:31:89:6d:c4:f2:d4:8d:
         9f:ac:c1:4c:48:ef:08:21:dc:2f:f8:d0:78:bc:20:27:0e:92:
         2a:f6:60:e1:cd:70:e0:88:3d:87:aa:11:be:43:33:b1:e5:4a:
         66:a4:7f:1f:1f:f1:4e:ea:62:10:72:2d:07:f0:78:d8:fc:39:
         97:b1:5e:07:8e:c4:59:2f:c1:6f:db:c7:12:53:cd:ed:b5:ea:
         89:66:b1:77:29:85:76:8b:66:a0:da:2d:41:8f:ae:cb:16:27:
         8e:f7:a9:49:11:77:32:70:75:e0:16:fb:71:d9:57:a9:2f:53:
         24:5e:49:82
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjBFOTgxMTAvBgNVBAUTKDZDRTJEN0QwRDk1OTgwRDc0M0NBRDQ4NDg2OTg0OERC
QTEyNUMyOUIwHhcNMjYwMzAyMDEyMDU5WhcNMjYwMzA5MDEyMDU5WjAYMRYwFAYD
VQQDEw02OWE0ZTVmYy01ZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnn90+QmyycM/A6hNX3VRB34HE0n7r1vwIjC8yCQGt0JYa1fpA+HaHQM/ybap
y/6NuwY0y8s/19Z6S8PNmRNXzTZCP3EpcRqXyYFh8tzquyqNFiX4s3zBBuun0UKU
c0RaHqXdXhA3LlCyWEpBRVot7BHdEofTaxcO1Bwd/Z+uocVpQQNGq+HuOJyPQD9t
M7Rg2jTfxdvEmsZJ6Qh/ANyqfQovacuaT5EoWkG20FCQIWkdHmKKkQtiQf7A5/eI
9xfPuQuf4H+KDB6sh6YmngQuK6Zcy25vlTcFk6tGKtzB19PhnjX70/4bIWgUkf1s
giAG1GBn/TcMsze93dyKKSQZcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOjnFK0N
+r7rHFRxCHWY/Z6+AuYjMB8GA1UdIwQYMBaAFGzi19DZWYDXQ8rUhIaYSNuhJcKb
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEU5OC83NEZENUU4MjZF
NTMxMUVFOUI5MTdFNzlDNEY5QUUwMi9iT0xYME5sWmdOZER5dFNFaHBoSTI2RWx3
cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JPTFgwTmxaZ05kRHl0U0VocGhJMjZFbHdwcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MEU5OC83NEZENUU4MjZFNTMxMUVFOUI5MTdFNzlDNEY5QUUwMi9iT0xYME5sWmdO
ZER5dFNFaHBoSTI2RWx3cHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAK9J2ikBPqVmNyuj01Kw0375PTOHehLQjscNZITgpAwpd0Er+DcRTAWpe7LeJ
NchazNvE5Z/Wr7m29XhvhuIpigsvxan/gONzyqebJ9vkMFPpX+qt4l4NJl2/ngWq
J4kuMB6FN0Z7j29NsIapLX3lPxuMPh6HB1S0xVpryRtaKSDRHJRBhSS7+9AxiW3E
8tSNn6zBTEjvCCHcL/jQeLwgJw6SKvZg4c1w4Ig9h6oRvkMzseVKZqR/Hx/xTupi
EHItB/B42Pw5l7FeB47EWS/Bb9vHElPN7bXqiWaxdymFdotmoNotQY+uyxYnjvep
SRF3MnB14Bb7cdlXqS9TJF5Jgg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:24:56 2026 by rpki-client