Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft
File:                     YpYWXDbflgVmse01DqfefzOLOpk.mft (raw, json)
Hash identifier:          PtrnZoaxxM4XVV8/Ir7EfT2JY+iO9RnT5bUItjqf0B4=
Subject key identifier:   B9:76:E5:A1:90:B1:C7:9F:78:27:6E:06:EA:B3:82:45:65:F1:B0:E8
Authority key identifier: 62:96:16:5C:36:DF:96:05:66:B1:ED:35:0E:A7:DE:7F:33:8B:3A:99
Certificate issuer:       /CN=A91456CD/serialNumber=6296165C36DF960566B1ED350EA7DE7F338B3A99
Certificate serial:       30
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft
Manifest number:          2D
Signing time:             Fri 17 Jul 2026 10:01:17 +0000
Manifest this update:     Fri 17 Jul 2026 10:01:17 +0000
Manifest next update:     Fri 24 Jul 2026 10:01:17 +0000
Files and hashes:         1: YpYWXDbflgVmse01DqfefzOLOpk.crl (hash: ySW9p9CaKvYZGDLF8Qe0t0jSEVBM6nq25oBg2JgwvUs=)
                          2: BBFF83183E1311F1A75FAD3AAF833773.roa (hash: tVkmnNetZiuk3U9n5t1OgMJioxU81CU8IuCEcNguLvc=)
                          3: E70D393E3E1211F1B8544D87AE833773.roa (hash: QKtJAkqUtPB3mTAjjBY4LLg9Wgtws5WpGtADkwoN/hg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.crl
                          rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 10:01:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 48 (0x30)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91456CD, serialNumber=6296165C36DF960566B1ED350EA7DE7F338B3A99
        Validity
            Not Before: Jul 17 10:01:17 2026 GMT
            Not After : Jul 24 10:01:17 2026 GMT
        Subject: CN=6a59fd6d-c6ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:87:ad:49:d3:18:21:42:77:9c:05:ee:78:ba:
                    5e:0a:ef:08:ae:b4:25:24:6e:30:73:05:77:f0:0a:
                    d6:d8:d9:58:17:be:d3:28:45:52:7e:52:e5:bf:ab:
                    29:40:f1:d6:2d:3f:fa:6c:61:95:49:8c:59:80:69:
                    1e:38:e1:ae:99:d9:ad:41:4c:d7:56:7e:66:17:c6:
                    75:79:7c:e9:ff:f6:64:83:cc:56:70:95:0f:64:b2:
                    28:7a:31:23:12:12:01:0e:18:58:9c:4a:49:13:f1:
                    c2:35:96:d6:2f:ac:0a:e5:4c:14:df:25:63:7a:a1:
                    32:70:c0:12:7a:9a:01:0e:d5:64:c2:2e:fc:a8:20:
                    c9:8c:d9:c1:26:4c:61:b3:cf:93:c7:a2:00:95:7c:
                    28:cb:ac:a7:2c:a9:87:64:18:82:4f:d7:53:e5:99:
                    15:74:23:7e:2a:ed:18:e7:a6:f3:c3:43:52:97:1c:
                    71:1b:68:3a:43:92:83:8f:c9:ae:be:9a:e9:2a:f7:
                    19:cd:85:a8:f2:5d:89:e3:f6:25:8d:48:b5:45:bf:
                    30:4f:ef:99:ae:0d:e4:aa:84:82:5b:c7:16:80:b4:
                    b8:8b:67:ac:19:c1:c5:02:4e:8f:1a:88:0c:dd:d7:
                    a7:f0:76:e6:28:f5:9c:2c:73:d5:f4:76:22:36:40:
                    c5:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:76:E5:A1:90:B1:C7:9F:78:27:6E:06:EA:B3:82:45:65:F1:B0:E8
            X509v3 Authority Key Identifier:
                keyid:62:96:16:5C:36:DF:96:05:66:B1:ED:35:0E:A7:DE:7F:33:8B:3A:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:e0:25:06:a9:78:eb:b0:30:cb:f2:e0:0d:b3:0c:13:8c:47:
         ea:ec:30:66:48:08:1a:83:37:e1:d7:22:fb:84:00:49:da:62:
         1b:d5:c5:1e:0c:dd:1c:ef:76:12:d8:38:29:e5:b5:68:f5:c9:
         37:74:a0:da:6a:b6:47:8c:01:50:f1:0a:e5:7a:db:a0:92:bb:
         d0:59:90:5b:ce:7c:f3:ea:75:74:fd:0f:0e:d2:72:ef:8e:43:
         c3:e1:11:34:f7:67:73:be:91:47:bc:0b:77:53:1c:f9:5f:58:
         d0:1e:b8:12:73:f4:a0:bb:da:d3:42:7d:be:93:8e:c9:d5:b4:
         fb:24:f3:f0:fa:01:e2:ca:9f:66:cb:0f:d8:a3:9d:d1:41:5b:
         ae:0b:fc:41:2d:02:fa:c6:7a:ee:80:44:ab:66:52:39:80:8a:
         90:dc:9e:77:11:20:df:1a:61:3f:27:5a:d3:84:1f:9c:af:c2:
         0d:b4:f9:3f:39:6e:ac:57:46:88:ff:60:5e:c4:51:72:58:6a:
         b4:a6:9a:00:9e:5c:09:2f:18:b1:1e:f5:f6:b0:ab:91:89:a8:
         97:3a:49:ee:62:30:41:f6:ea:fe:16:a5:83:2e:5c:5c:cc:d8:
         59:f1:3a:93:41:81:6b:26:73:db:49:21:a7:64:c4:ca:83:a6:
         19:f2:16:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:58:18 2026 by rpki-client