Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft
File:                     RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json)
Hash identifier:          3NbzT2Vwj+paURduJqRNhwQV+Nko0TIo7V7nyuFaGfQ=
Subject key identifier:   BB:8D:7B:65:BD:5E:7B:90:D9:2A:E9:DC:D2:A6:B0:01:D9:2E:2F:E1
Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA
Certificate issuer:       /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA
Certificate serial:       18C1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft
Manifest number:          18B5
Signing time:             Thu 16 Jul 2026 16:31:47 +0000
Manifest this update:     Thu 16 Jul 2026 16:31:47 +0000
Manifest next update:     Thu 23 Jul 2026 16:31:47 +0000
Files and hashes:         1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: Gt6xKq2K0PdJYM9IcYU6MJPlzoXcZT6zL3UKy0kfBdk=)
                          2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: S0eb6BXPdezebakxVAbsrMO/KgjOPcxO/tmX+jv5Uos=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl
                          rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:31:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6337 (0x18c1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91589E7, serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA
        Validity
            Not Before: Jul 16 16:31:47 2026 GMT
            Not After : Jul 23 16:31:47 2026 GMT
        Subject: CN=6a590773-bb8b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:08:7c:ea:45:14:ee:f1:59:c0:82:67:64:fe:
                    b8:a7:d7:85:2f:d1:d1:8e:8d:74:9d:b7:d7:af:59:
                    f0:ad:e7:1e:b0:89:af:1a:8a:cb:ac:8c:d6:ca:9d:
                    43:cb:ab:ab:a4:57:bf:9b:5f:f5:35:62:cc:51:c9:
                    34:53:e4:c5:0a:97:4a:d9:59:8b:54:bf:5c:0c:0d:
                    b3:76:4c:20:b9:43:a1:22:bb:78:2e:22:ec:f0:ff:
                    a6:4c:79:7d:ea:7d:33:35:e7:ec:dc:bc:7a:ee:b4:
                    5a:83:dc:0e:f5:05:41:77:32:2f:59:43:8b:84:05:
                    fb:48:ef:17:98:83:10:27:1e:40:72:f2:fe:d9:b7:
                    c1:f7:08:84:6d:f5:cc:66:4a:cd:fc:61:1b:7e:8a:
                    ef:55:53:a4:0f:9b:25:36:6f:8b:c5:78:df:24:a3:
                    4a:b2:51:30:88:43:0c:00:fe:4b:7e:72:c5:b3:f8:
                    63:60:4d:20:55:ec:11:ba:70:6b:3c:09:af:74:a8:
                    87:88:82:9a:cf:3d:8a:e3:aa:94:e6:f5:ef:91:27:
                    b6:56:e8:e1:b0:1d:bc:02:1d:47:d2:39:0e:ce:e9:
                    0e:e5:14:46:e0:f5:67:5c:f1:bf:9f:1e:7e:d4:60:
                    a4:9d:2a:c7:fb:a8:69:05:bd:5a:8f:83:44:a9:1e:
                    16:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:8D:7B:65:BD:5E:7B:90:D9:2A:E9:DC:D2:A6:B0:01:D9:2E:2F:E1
            X509v3 Authority Key Identifier:
                keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:38:89:34:05:d5:60:29:87:90:c4:4c:9e:6d:32:17:08:3f:
         b5:f2:d2:9e:66:61:66:a8:88:87:d8:e0:8c:d1:ad:ea:55:3f:
         6c:01:29:4e:50:11:73:bc:e3:f1:d9:0e:f7:3d:9d:98:e9:f9:
         52:5b:b1:99:84:7c:4e:01:fc:4f:3e:72:12:9c:c4:b1:7f:e4:
         41:e7:16:db:f6:5b:fb:61:05:6a:00:3d:d9:0d:ef:bf:26:11:
         5b:58:91:cd:62:30:30:05:f5:ed:6a:0b:f4:70:57:88:2e:53:
         a7:e2:ae:b1:76:3f:f0:3f:3f:2e:28:7e:b1:b1:94:80:da:93:
         c7:fb:66:54:16:db:10:b7:49:ea:61:0a:f4:42:cb:6f:39:4a:
         69:8b:84:1b:e2:0a:45:66:11:09:94:3f:0b:dd:0b:cd:ee:db:
         9a:a8:7a:f7:5e:d7:7a:ec:dc:59:11:5a:c8:a6:5b:99:45:92:
         52:aa:2b:21:cc:c5:ce:27:bc:b9:a6:a7:ab:8f:a0:ff:75:ee:
         29:b9:ee:00:14:f0:df:e7:b3:83:55:1a:8e:e1:b2:ae:d8:e3:
         60:62:64:03:4f:ff:ac:fc:0a:12:13:8c:a8:ed:bb:1f:ad:a0:
         32:87:27:57:d0:a4:81:e0:2b:a7:d8:22:c5:c4:30:5a:e7:c3:
         e0:2b:04:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:16:08 2026 by rpki-client