Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
File:                     YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json)
Hash identifier:          1VneecaJ3gXUFATriwId76Jz+Ugy0XyTB8VS+Ih+osw=
Subject key identifier:   FB:D9:EB:B1:AC:20:FA:4E:8F:31:94:7F:36:A2:EE:B6:7B:61:E6:B6
Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E
Certificate issuer:       /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E
Certificate serial:       0140
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
Manifest number:          013C
Signing time:             Fri 17 Jul 2026 06:33:34 +0000
Manifest this update:     Fri 17 Jul 2026 06:33:33 +0000
Manifest next update:     Fri 24 Jul 2026 06:33:33 +0000
Files and hashes:         1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: 0XBJZc5k5yDq8dQ+95DVVe/CIQsK6XvCH2+g//geO4k=)
                          2: 181772049FD811EF8680B438C4F9AE02.roa (hash: nlnEqbRNBdElRTHPRbYW578QyapawXEp7sk2hMeS67g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl
                          rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:33:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 320 (0x140)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E
        Validity
            Not Before: Jul 17 06:33:33 2026 GMT
            Not After : Jul 24 06:33:33 2026 GMT
        Subject: CN=6a59ccbe-1ed9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:4f:b8:3c:07:e1:b3:19:7f:ce:7a:9d:60:c0:
                    04:6e:b1:d3:c1:c6:ee:58:cd:cd:b0:dc:fe:ac:c9:
                    19:ca:b2:a1:72:6e:3c:86:35:d2:b6:89:b8:04:77:
                    75:56:0e:69:88:e1:48:02:9f:53:e7:fb:55:43:da:
                    a5:a0:43:6a:30:35:b2:d0:ed:08:1e:36:15:a8:e9:
                    63:af:ec:a9:f9:aa:d7:c7:05:74:61:c8:28:b5:05:
                    f6:be:d1:47:63:8e:80:2f:e8:58:08:66:8a:32:15:
                    97:54:6f:23:29:19:a0:93:2f:be:eb:0c:30:84:36:
                    01:4e:84:2e:eb:13:f2:d4:16:94:d7:d8:10:42:9b:
                    b4:40:33:a0:0c:44:24:49:a0:a8:fd:45:2e:19:1d:
                    1b:9e:7e:66:42:0c:6a:35:16:3e:a7:ab:d0:41:09:
                    f5:36:a3:b9:d3:6a:f3:4f:68:99:23:93:37:f8:05:
                    34:bc:56:ef:d4:91:f1:6f:b7:05:4a:f8:90:ce:c0:
                    ca:5e:58:c7:dc:1e:e9:90:6b:b2:fa:04:e4:62:c0:
                    3e:f9:99:0e:2b:c6:e7:e3:7d:d3:17:c0:70:96:ed:
                    49:f0:f6:05:10:4d:49:14:4f:cb:40:82:9e:4d:94:
                    41:1b:1f:84:99:b7:bb:ab:f6:4a:c7:b2:5f:fb:7f:
                    ae:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:D9:EB:B1:AC:20:FA:4E:8F:31:94:7F:36:A2:EE:B6:7B:61:E6:B6
            X509v3 Authority Key Identifier:
                keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:aa:1c:cd:4b:83:ab:23:58:1f:7b:ce:45:17:fa:c9:e8:06:
         f9:d7:96:e5:3f:11:21:d1:46:78:8e:b2:47:e3:75:60:38:0c:
         3e:fe:86:6b:a8:50:3d:fb:0d:e1:c1:21:29:79:a8:0b:a4:2e:
         d4:78:4b:6a:da:fb:cc:0f:32:3f:71:c8:6f:e1:f2:73:8e:59:
         d4:b4:7b:cd:e8:3e:22:54:57:d5:51:e1:83:2d:c9:4b:27:fb:
         9b:fd:af:bf:93:ed:04:e0:da:db:2b:19:1a:01:48:ac:de:5a:
         70:16:de:67:a1:06:2c:c9:6a:ad:9c:0a:9c:b0:8e:7d:30:1b:
         38:1b:c1:8f:b7:11:71:63:27:03:4f:18:b4:01:bd:56:c8:c5:
         a4:99:c4:b0:b7:e9:bd:25:6d:53:0b:14:e5:24:22:d1:58:d1:
         d4:22:8b:60:b2:e6:76:45:2d:21:1b:a5:d0:6c:4e:9a:48:d6:
         e6:a5:d3:5c:a5:32:05:3a:e1:74:be:65:b5:f0:3e:e1:2a:5c:
         8c:55:6f:39:c0:ac:19:87:e2:be:68:f8:85:6b:53:9c:0c:0c:
         87:cd:d3:4b:62:fb:63:77:39:4d:5b:42:0c:d5:69:44:ac:12:
         74:11:3f:e2:4c:5f:de:e0:c1:54:bb:ad:ae:3d:50:81:2f:1e:
         f5:5f:13:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:53 2026 by rpki-client