Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
File:                     LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft (raw, json)
Hash identifier:          4axxl1m7U5FZA98QcVEwJJmWUEPLe9lnYnfbeylBNdk=
Subject key identifier:   DC:1B:0D:2B:AF:2C:AA:D2:F8:CE:23:5A:0A:5C:50:FB:52:4F:48:B9
Authority key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
Certificate issuer:       /CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C
Certificate serial:       071B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
Manifest number:          0708
Signing time:             Mon 06 Jul 2026 22:41:19 +0000
Manifest this update:     Mon 06 Jul 2026 22:41:19 +0000
Manifest next update:     Mon 13 Jul 2026 22:41:19 +0000
Files and hashes:         1: LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl (hash: ZyJpbTii/QLPh9w1p1loTsq2f0Cu+vujygwlnPWjCyg=)
                          2: 8CBE17540BCF11EF80BE8E0CC4F9AE02.roa (hash: K5LcOR8cOoj1G9hwCRlc2w0NxNadpML+5njvncofuUc=)
                          3: 579FE34A0BF211EF8B0F9C81C4F9AE02.roa (hash: 2QQLdWByWmzyDLm9K7Etw2tEiz/l3b7pU56fbAv1SHo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl
                          rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 22:41:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1819 (0x71b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91203EB, serialNumber=2F265B0C802473094926890A85124E21B109DA3C
        Validity
            Not Before: Jul  6 22:41:19 2026 GMT
            Not After : Jul 13 22:41:19 2026 GMT
        Subject: CN=6a4c2f0f-dcd5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:67:22:47:65:1a:78:14:0e:78:7d:90:ec:94:
                    6d:6b:35:7b:3b:d9:63:99:05:78:30:f4:5f:f5:0c:
                    11:9d:7f:f6:0f:4b:33:da:30:61:7b:44:c4:b6:cc:
                    db:a0:f5:d7:f6:5c:1f:70:37:4a:27:65:a1:45:0a:
                    c6:da:c0:29:4e:90:32:ba:6b:90:2c:fb:3e:68:a2:
                    c3:09:36:93:df:f5:91:9e:01:e0:4d:95:f7:b4:d5:
                    b2:f8:e3:6e:f9:3f:cc:69:ad:02:71:8e:fa:ac:f0:
                    25:c1:24:32:2e:98:9e:6c:49:c7:63:18:b0:51:38:
                    0f:54:b4:08:9c:cb:79:86:ae:93:67:fd:5d:0e:86:
                    d8:b8:f3:fc:7c:a2:a7:6d:34:c0:01:a5:4f:43:69:
                    44:91:90:64:b3:17:1b:29:42:9e:7e:b6:1d:8d:b5:
                    f6:d5:8d:93:95:e9:5a:72:04:48:8d:27:fd:e3:b0:
                    ad:02:90:ac:95:36:ea:3a:ad:78:c4:db:1e:6b:fc:
                    d7:16:4a:92:bd:73:fe:7f:3e:2a:df:1e:76:13:1c:
                    75:f5:11:64:1a:1c:e6:a2:9b:62:66:20:68:48:70:
                    89:33:e3:ed:34:89:f6:7f:43:b0:d5:68:d0:73:af:
                    06:6d:1a:a9:8e:0d:71:fd:f3:72:e8:d4:0f:d5:68:
                    16:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:1B:0D:2B:AF:2C:AA:D2:F8:CE:23:5A:0A:5C:50:FB:52:4F:48:B9
            X509v3 Authority Key Identifier:
                keyid:2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:ee:33:f0:c0:e7:a0:2d:74:94:11:99:41:e7:95:38:15:56:
         6f:4c:dc:65:7c:5d:e0:c0:32:92:81:a3:50:c5:b0:00:fe:7f:
         bd:57:79:c3:5f:18:58:58:2c:82:31:15:4b:dd:ed:2a:68:e1:
         81:e7:87:62:d2:67:4d:63:2a:0b:b5:e2:fd:19:4e:8d:30:2d:
         3f:e3:c7:92:31:fc:7e:9c:95:f4:a7:ca:a6:4e:89:5f:9a:90:
         42:66:5e:24:0d:42:4a:9e:8c:5b:f6:34:98:26:92:d6:5e:de:
         6c:cb:79:02:40:5b:60:f9:1b:aa:26:ef:f9:e0:c5:c0:05:71:
         b2:8a:d0:f0:06:31:44:e0:55:8f:1d:46:34:3f:db:be:57:50:
         21:e3:97:de:48:4d:e9:25:87:5f:90:f1:9d:9d:1f:51:5c:49:
         e2:e1:9c:de:51:e3:c2:f1:1e:d2:89:69:0b:6d:04:55:f7:d9:
         2c:ee:3b:4c:35:fa:bd:db:a4:52:b2:98:61:32:32:47:50:94:
         ed:49:5d:79:f2:90:59:ed:0a:39:c1:9d:17:ba:c4:0e:c2:cd:
         8f:ad:25:ae:99:3b:c7:ea:ab:3d:e9:f2:11:cf:1b:8f:5d:35:
         3e:54:c4:a4:d3:2a:9f:09:7a:44:98:83:cd:70:b1:56:ae:4d:
         33:88:ff:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:30:49 2026 by rpki-client