Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
File:                     Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json)
Hash identifier:          56Ogvj0DTYCRT5QKZueM8GFDEG8cLPz/m7ekdtY6xQM=
Subject key identifier:   D6:1B:63:C0:68:5F:76:72:7F:7C:2E:B3:4B:C3:A9:8E:5C:BD:33:01
Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D
Certificate issuer:       /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D
Certificate serial:       068B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
Manifest number:          0682
Signing time:             Thu 16 Jul 2026 23:00:57 +0000
Manifest this update:     Thu 16 Jul 2026 23:00:56 +0000
Manifest next update:     Thu 23 Jul 2026 23:00:56 +0000
Files and hashes:         1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: i0LRPjL0qQXNBt6gjt5TaNxPxUZLmlM8KixUuEJkZpw=)
                          2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: 9P+/XWI1mTR2CKwLdPvtfOBgjyqZfC7ZNyD/mGLr3KU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl
                          rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:00:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1675 (0x68b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D
        Validity
            Not Before: Jul 16 23:00:56 2026 GMT
            Not After : Jul 23 23:00:56 2026 GMT
        Subject: CN=6a5962a9-d982
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:c6:31:54:2b:1a:c0:a0:a9:38:2f:ac:f5:cf:
                    ca:af:9e:18:18:8c:06:0b:5c:73:1f:c7:32:69:9f:
                    cf:8f:c4:fc:3b:da:74:f8:1f:a1:21:09:2d:f0:9c:
                    68:0e:db:e6:d4:60:8e:6c:df:4e:80:cd:cb:eb:c4:
                    7b:be:24:a2:da:bf:79:c3:b6:46:30:97:75:83:f4:
                    1e:da:a9:60:08:c1:0a:0d:d3:73:de:d0:c1:41:ad:
                    2f:c4:dd:b2:e0:3e:22:40:bb:d0:9e:44:f1:a8:43:
                    55:00:b9:d5:24:cb:18:ba:f1:1f:4b:17:5a:50:38:
                    f2:63:70:11:a1:2f:96:7f:25:8e:05:28:03:b3:b2:
                    df:90:79:4e:08:51:5b:ef:31:f2:c8:90:6d:45:41:
                    bd:8b:54:59:ff:e3:ae:6c:17:f2:bd:1b:58:a2:8b:
                    af:85:5a:e2:4b:62:89:41:20:99:43:9c:e6:ac:22:
                    16:62:db:fe:f8:64:e1:6f:97:f9:2e:25:54:7f:2b:
                    0d:18:c4:f3:0d:94:81:ec:eb:04:31:a7:30:01:7d:
                    6e:34:73:de:b3:dc:17:3c:2e:be:14:fc:a8:f5:dd:
                    6a:54:a4:8e:e9:d1:8c:95:9c:2c:6a:14:39:5a:f1:
                    00:21:61:24:61:33:a3:67:eb:a8:25:b1:cf:d9:a6:
                    82:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:1B:63:C0:68:5F:76:72:7F:7C:2E:B3:4B:C3:A9:8E:5C:BD:33:01
            X509v3 Authority Key Identifier:
                keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:30:41:0b:f8:b1:38:6a:35:a2:41:1e:5e:14:73:86:20:5b:
         33:58:5c:0b:b4:f4:6c:dc:88:43:06:02:d0:5d:38:ed:26:3b:
         5d:0a:ec:b8:d5:82:5f:d6:af:08:9a:23:d5:ed:6d:e6:07:97:
         6c:d8:53:9f:e8:7d:39:1b:01:37:55:89:b4:87:ac:f5:1e:c0:
         e6:54:3b:22:4f:e1:a4:f6:35:55:bc:f1:e9:11:75:cf:9d:b2:
         fa:f2:3e:10:ac:44:9f:b2:ae:08:aa:8b:d3:52:63:97:67:0c:
         0d:89:63:91:75:2c:df:dd:39:9f:25:c7:88:a1:f0:5a:aa:21:
         9e:a7:93:91:78:67:05:58:45:ba:cc:a8:56:52:78:11:f2:07:
         59:86:fa:8d:47:1a:9f:9f:4c:69:22:ad:db:20:1e:ce:26:03:
         41:6f:9b:8d:01:0e:c0:54:13:6e:1b:08:87:f8:75:1c:49:40:
         a5:42:8e:36:38:c7:01:45:ad:2e:7d:2b:86:3f:bd:30:57:04:
         24:1d:c0:ef:55:9e:2d:19:b1:61:3e:87:81:51:3a:2a:01:5e:
         f9:c3:b0:a9:a8:15:e7:4f:50:1e:7d:31:a5:f8:68:a4:7d:54:
         28:6b:50:c9:b1:8a:31:bf:70:9b:be:1e:1c:5e:0c:59:d2:52:
         94:76:2e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:15:45 2026 by rpki-client