Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft
File:                     ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json)
Hash identifier:          MxVhbc8hbogJuqBlVyxKKvlAaYKgWUZumj/2t21m5IY=
Subject key identifier:   8C:86:B2:68:2A:43:C5:7E:3C:2F:16:31:08:7D:62:25:62:C1:BD:1F
Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E
Certificate issuer:       /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E
Certificate serial:       0BC1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft
Manifest number:          0BA0
Signing time:             Thu 16 Jul 2026 19:20:56 +0000
Manifest this update:     Thu 16 Jul 2026 19:20:56 +0000
Manifest next update:     Thu 23 Jul 2026 19:20:56 +0000
Files and hashes:         1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: 1+HFdj1sULP+GCj2FHVULtFO98ZESOAecifeMRvA1zk=)
                          2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: wATgHFFEBhvghT6gMqTJTC0PonsBt+Ml1sqdhxwQAPg=)
                          3: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: OLS2n2bCipeK2cJAKKmNcGHacmpb1F1CGfou3xcKoRw=)
                          4: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: Qrs9ea1Ryt4mplsCkDhjHp70Ezhx/br174uLvjICktg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl
                          rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 19:20:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3009 (0xbc1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E
        Validity
            Not Before: Jul 16 19:20:56 2026 GMT
            Not After : Jul 23 19:20:56 2026 GMT
        Subject: CN=6a592f18-f28a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:20:b9:3b:1a:a2:8d:f4:d9:81:c6:5a:91:b0:
                    9e:8f:f0:c2:39:0a:15:15:c4:10:d6:c8:eb:7b:12:
                    07:aa:27:15:d9:5f:bc:ee:0b:c3:b7:92:3f:39:d7:
                    6b:2a:9b:6d:15:06:14:5a:9e:c5:3e:10:2e:38:4f:
                    c2:d9:d8:9a:c5:ce:38:80:72:23:1b:5a:fa:f1:a5:
                    36:42:e9:2d:b7:fa:70:3e:3c:50:db:ea:23:46:87:
                    08:5d:dd:52:dc:f4:89:50:8d:97:a6:69:99:42:f0:
                    04:36:20:c0:d9:5f:ae:14:96:9a:bf:38:a3:01:2c:
                    8f:c9:e4:9e:0b:5e:c2:00:68:6b:0d:00:5c:82:a0:
                    95:50:95:e5:b1:9e:a8:89:9f:3b:e4:ca:8d:40:29:
                    7f:55:c4:d2:c7:0d:bb:ec:2a:c2:fe:4f:6d:c6:86:
                    b6:1f:c1:bc:06:5b:c4:d5:08:8c:c2:46:ff:48:5e:
                    26:a1:25:4a:7a:04:37:e8:27:9e:d3:d5:bc:6d:6e:
                    73:42:42:32:f5:3e:b3:61:ba:1d:5e:6b:aa:93:ff:
                    aa:58:00:ea:6d:71:dc:4d:cb:38:a1:6d:c2:7a:e6:
                    35:bd:d9:a7:94:ed:45:57:6c:bd:0a:f4:41:90:96:
                    78:7a:b3:89:27:a0:40:88:4d:ff:20:51:ec:ce:a0:
                    65:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:86:B2:68:2A:43:C5:7E:3C:2F:16:31:08:7D:62:25:62:C1:BD:1F
            X509v3 Authority Key Identifier:
                keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:d7:ed:5e:3d:a3:bd:60:c7:d6:0d:98:3b:65:33:b8:ac:1a:
         da:42:7e:24:41:0d:93:4b:62:da:55:42:14:8b:8c:a1:1f:7e:
         a3:2f:94:17:1c:27:80:19:4f:93:cc:63:49:62:e4:a9:1a:18:
         10:4e:f6:6f:fa:9b:c2:d0:19:43:98:74:89:e8:20:e2:59:89:
         a8:c8:a1:a3:e9:93:5c:ab:56:f3:9b:6d:4a:83:17:ad:16:38:
         30:62:95:cd:1d:4f:1d:77:16:e7:1b:0c:da:ae:6b:86:29:cf:
         21:b6:8d:c9:4b:d6:3a:0c:06:ae:b0:5f:d1:af:26:ea:ef:7e:
         77:60:02:c3:9c:c3:4d:bc:0b:47:dc:42:3d:c5:d0:12:c2:9c:
         e3:cf:21:d4:57:1b:4f:5a:ad:10:ec:c9:b7:98:4f:94:c4:31:
         56:2e:d9:47:41:41:fb:63:bb:bf:ec:a4:98:8e:2a:db:d8:37:
         10:90:d9:7c:10:5d:02:0c:bd:31:14:74:c1:a0:fb:08:48:0e:
         30:78:2a:31:e4:a4:67:63:59:4f:ca:b5:e2:0a:11:00:1d:11:
         31:21:ef:fe:36:e8:c0:bd:be:49:ca:b9:4d:5d:d3:c3:8f:6e:
         9a:8d:d2:0e:32:e0:5c:89:ef:d6:bb:a0:6f:dc:9c:1b:3b:0c:
         68:d1:58:1f
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx
RTVBREE2MEUwHhcNMjYwNzE2MTkyMDU2WhcNMjYwNzIzMTkyMDU2WjAYMRYwFAYD
VQQDEw02YTU5MmYxOC1mMjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAiyC5OxqijfTZgcZakbCej/DCOQoVFcQQ1sjrexIHqicV2V+87gvDt5I/Oddr
KpttFQYUWp7FPhAuOE/C2diaxc44gHIjG1r68aU2Quktt/pwPjxQ2+ojRocIXd1S
3PSJUI2XpmmZQvAENiDA2V+uFJaavzijASyPyeSeC17CAGhrDQBcgqCVUJXlsZ6o
iZ875MqNQCl/VcTSxw277CrC/k9txoa2H8G8BlvE1QiMwkb/SF4moSVKegQ36Cee
09W8bW5zQkIy9T6zYbodXmuqk/+qWADqbXHcTcs4oW3CeuY1vdmnlO1FV2y9CvRB
kJZ4erOJJ6BAiE3/IFHszqBlwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIyGsmgq
Q8V+PC8WMQh9YiViwb0fMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0
QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw
ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS
alM4cVhaOW5aV1VlV3RwZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAg9ftXj2jvWDH1g2YO2UzuKwa2kJ+JEENk0ti2lVCFIuMoR9+oy+UFxwngBlP
k8xjSWLkqRoYEE72b/qbwtAZQ5h0iegg4lmJqMiho+mTXKtW85ttSoMXrRY4MGKV
zR1PHXcW5xsM2q5rhinPIbaNyUvWOgwGrrBf0a8m6u9+d2ACw5zDTbwLR9xCPcXQ
EsKc488h1FcbT1qtEOzJt5hPlMQxVi7ZR0FB+2O7v+ykmI4q29g3EJDZfBBdAgy9
MRR0waD7CEgOMHgqMeSkZ2NZT8q14goRAB0RMSHv/jbowL2+Scq5TV3Tw49umo3S
DjLgXInv1rugb9ycGzsMaNFYHw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 02:55:42 2026 by rpki-client