Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
File:                     kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json)
Hash identifier:          v5nJlLItJ584sO9kRo2mSddS9WDEfvgT9ykgPzFEuDc=
Subject key identifier:   C8:1D:4F:91:C4:CB:71:16:53:E6:11:7B:7F:FD:D0:04:BB:BB:D6:C4
Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5
Certificate issuer:       /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5
Certificate serial:       04BF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
Manifest number:          04B9
Signing time:             Fri 17 Jul 2026 00:27:24 +0000
Manifest this update:     Fri 17 Jul 2026 00:27:23 +0000
Manifest next update:     Fri 24 Jul 2026 00:27:23 +0000
Files and hashes:         1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: jFCZdkYRXD2lsjUa3DvRtAHnetkeODJ8w1Uc9Z3Qg/E=)
                          2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: 2diXZhIHeiTIXtGE7hgkGrF2mxwMF4mve/3rvi/DmaA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl
                          rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:27:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1215 (0x4bf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5
        Validity
            Not Before: Jul 17 00:27:23 2026 GMT
            Not After : Jul 24 00:27:23 2026 GMT
        Subject: CN=6a5976eb-3ef7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:a6:e8:b3:86:1a:27:56:de:ba:20:91:cc:29:
                    2b:e5:0e:0d:c9:d2:b9:7d:3c:85:d6:93:1b:5c:28:
                    a6:e0:8b:00:10:01:87:79:b1:0e:21:f9:d7:3c:a7:
                    d4:7d:4f:a2:af:51:94:13:ff:30:9e:7b:c5:1d:3d:
                    ee:d0:80:7e:e9:0f:dc:b1:11:b8:1f:d4:08:a2:4d:
                    e3:4a:97:60:5d:91:08:c3:3b:e0:a2:f6:35:51:e2:
                    ff:4f:bd:3e:77:44:a8:75:40:05:5e:99:5d:ea:a9:
                    7a:5a:e3:5e:fe:b6:9c:e9:44:82:a8:8c:be:88:94:
                    66:7c:b9:f6:77:03:86:44:b0:c0:2c:1f:bd:1c:68:
                    41:1d:59:5f:4a:3b:9e:b6:cb:b5:91:7f:5b:ac:72:
                    bc:f2:e3:09:08:e4:80:3d:a1:06:b5:b8:c4:f3:48:
                    c3:ff:44:b0:e3:e8:76:85:09:cb:70:18:93:0c:ce:
                    32:b6:a5:b4:2b:c9:55:18:ed:6c:0d:08:83:5f:7a:
                    86:d8:af:7d:48:63:9e:fb:15:89:94:3a:2f:9a:a3:
                    9a:83:63:23:fa:ec:3e:7b:b0:44:f0:b3:d2:66:27:
                    b4:bb:45:13:0c:73:99:93:1e:e7:82:01:e8:7b:32:
                    3c:e9:bf:8d:f5:f1:09:fc:c0:f3:59:d7:8f:66:4c:
                    a5:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:1D:4F:91:C4:CB:71:16:53:E6:11:7B:7F:FD:D0:04:BB:BB:D6:C4
            X509v3 Authority Key Identifier:
                keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:5c:5c:3d:b2:4e:2d:93:06:e9:0e:47:49:3c:f0:cb:e1:87:
         f0:32:8a:8b:90:52:9d:4e:2d:fd:95:ad:e7:20:27:cf:5d:8d:
         6c:03:d4:91:b8:72:ae:1e:1f:63:1f:a2:e2:1a:f7:ac:03:6e:
         f1:37:81:e1:8a:c9:19:b6:fa:f7:4f:f4:d8:56:cc:6e:54:79:
         df:86:e1:73:19:d9:21:8b:bf:7b:e7:c3:eb:c7:5f:19:4e:f5:
         0e:24:9f:e9:49:d8:18:2a:7b:b6:d5:34:da:0e:42:6e:71:51:
         20:41:0f:11:94:e4:f8:e0:55:b8:b2:86:14:36:71:5d:69:fe:
         cf:62:2c:55:96:67:e4:36:ed:45:f9:ae:2d:3a:ed:9d:f2:ef:
         e3:94:c4:75:61:d4:5b:7c:1e:d7:7c:aa:ea:54:37:9f:9c:e0:
         d2:10:44:d5:5d:55:1a:e6:43:14:06:c6:55:2e:b1:b4:61:eb:
         57:fe:2a:f4:4d:4a:fa:90:f4:1c:27:6d:99:ff:ad:d5:76:08:
         3a:61:fc:11:e3:41:15:ab:b3:c7:9c:a1:b9:ca:c8:75:a2:26:
         3e:65:d3:ee:a5:7a:a2:44:18:55:79:db:92:73:ab:03:28:6b:
         65:7c:b9:c0:54:36:2e:1d:93:c2:74:1f:f1:ac:b2:56:3c:e5:
         d1:a3:49:aa
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2
NUFBRTFEQzUwHhcNMjYwNzE3MDAyNzIzWhcNMjYwNzI0MDAyNzIzWjAYMRYwFAYD
VQQDEw02YTU5NzZlYi0zZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsKbos4YaJ1beuiCRzCkr5Q4NydK5fTyF1pMbXCim4IsAEAGHebEOIfnXPKfU
fU+ir1GUE/8wnnvFHT3u0IB+6Q/csRG4H9QIok3jSpdgXZEIwzvgovY1UeL/T70+
d0SodUAFXpld6ql6WuNe/rac6USCqIy+iJRmfLn2dwOGRLDALB+9HGhBHVlfSjue
tsu1kX9brHK88uMJCOSAPaEGtbjE80jD/0Sw4+h2hQnLcBiTDM4ytqW0K8lVGO1s
DQiDX3qG2K99SGOe+xWJlDovmqOag2Mj+uw+e7BE8LPSZie0u0UTDHOZkx7nggHo
ezI86b+N9fEJ/MDzWdePZkylBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMgdT5HE
y3EWU+YRe3/90AS7u9bEMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG
M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI
Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu
MUJhaDdnYXpHd0ZscXVIY1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAf1xcPbJOLZMG6Q5HSTzwy+GH8DKKi5BSnU4t/ZWt5yAnz12NbAPUkbhyrh4f
Yx+i4hr3rANu8TeB4YrJGbb690/02FbMblR534bhcxnZIYu/e+fD68dfGU71DiSf
6UnYGCp7ttU02g5CbnFRIEEPEZTk+OBVuLKGFDZxXWn+z2IsVZZn5DbtRfmuLTrt
nfLv45TEdWHUW3we13yq6lQ3n5zg0hBE1V1VGuZDFAbGVS6xtGHrV/4q9E1K+pD0
HCdtmf+t1XYIOmH8EeNBFauzx5yhucrIdaImPmXT7qV6okQYVXnbknOrAyhrZXy5
wFQ2Lh2TwnQf8ayyVjzl0aNJqg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 13:32:44 2026 by rpki-client