Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft
File:                     _Yje-aa92-pZOJ7cYXGq3KEGtQk.mft (raw, json)
Hash identifier:          n3fQaMZbcLYDPrY7xXkI2V1/qYAiYFI0X6JHMUecIcQ=
Subject key identifier:   48:FC:69:C4:41:47:1E:59:09:F0:A8:9E:BB:4D:32:8F:FE:88:74:D0
Authority key identifier: FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09
Certificate issuer:       /CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509
Certificate serial:       013C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft
Manifest number:          0134
Signing time:             Fri 17 Jul 2026 06:40:51 +0000
Manifest this update:     Fri 17 Jul 2026 06:40:51 +0000
Manifest next update:     Fri 24 Jul 2026 06:40:51 +0000
Files and hashes:         1: _Yje-aa92-pZOJ7cYXGq3KEGtQk.crl (hash: ogcneWAV9sjIv8M9wS/UUu8+RClqt891Mp8WugPtaQY=)
                          2: 2D810A88AB4011EF849D9515C4F9AE02.roa (hash: ReDU3pM6puyTOqvPDYn/OPZQZEhbfRxZyleb6fyedWE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl
                          rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:40:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 316 (0x13c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9172FC5, serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509
        Validity
            Not Before: Jul 17 06:40:51 2026 GMT
            Not After : Jul 24 06:40:51 2026 GMT
        Subject: CN=6a59ce73-220a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:44:b8:aa:f6:eb:b9:1a:9d:53:00:62:a5:37:
                    e7:44:ed:f0:0b:79:b6:58:64:48:32:42:88:87:5b:
                    07:1d:cf:90:51:76:db:87:ab:5e:f6:a2:03:4d:70:
                    94:83:90:a7:04:94:fb:d3:17:56:8e:90:fa:fc:48:
                    14:e1:d9:4a:b5:e8:c7:ea:2a:7d:b4:e9:18:ac:f1:
                    f8:9c:d1:53:70:f4:dc:74:f3:b4:3f:7c:94:3c:45:
                    b4:2a:9d:f9:a4:06:cb:dd:86:9a:58:6f:3f:3b:b4:
                    14:24:de:15:1d:9c:c7:40:51:ac:3c:7b:97:9b:26:
                    ed:21:7d:cd:5e:32:d9:70:37:83:f7:5f:ea:18:8d:
                    aa:f0:a8:cc:d1:54:c9:67:2d:7f:e7:63:b4:36:e9:
                    42:fe:43:4f:8f:39:ca:99:1f:5f:29:df:4a:b1:c0:
                    b9:61:5d:ce:dd:57:86:5f:14:dc:a2:ed:b1:c6:73:
                    35:64:e6:1b:48:04:16:80:47:6e:c8:2c:e0:17:2f:
                    aa:dc:0e:07:0e:9e:ca:97:07:0e:c0:59:62:9a:f9:
                    11:90:56:5e:f8:3d:c0:52:75:e1:1f:53:3f:d9:e0:
                    8d:5b:4a:c7:57:5f:e7:89:dd:88:00:bb:89:39:31:
                    28:6b:34:12:c5:f7:e5:bb:f0:bb:78:82:14:d6:4d:
                    7e:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:FC:69:C4:41:47:1E:59:09:F0:A8:9E:BB:4D:32:8F:FE:88:74:D0
            X509v3 Authority Key Identifier:
                keyid:FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:51:7d:7b:eb:57:28:2d:21:1c:21:f3:5e:0f:c8:c3:6f:ef:
         f9:f4:47:e2:ec:28:51:2a:fb:0a:3e:5f:50:17:2b:fd:1b:02:
         3d:64:c8:30:35:34:92:b0:7a:2b:b9:a4:8a:e7:33:74:9b:ae:
         0d:b9:fc:5a:ee:ed:e8:f7:57:e4:bd:6c:03:a4:90:fc:21:a1:
         85:a8:3b:68:13:a2:e4:87:6a:82:7c:cd:71:1a:56:8f:cd:5f:
         1e:37:71:2f:b6:f3:31:d7:5b:87:f8:cc:f8:2b:8a:be:87:9c:
         00:5c:b6:28:7c:fc:7d:92:f6:47:9c:30:f8:c0:33:36:b4:03:
         b7:fb:cd:84:24:5f:5f:62:6e:b9:e4:b1:75:56:33:c0:5f:e3:
         00:48:d0:fa:24:6c:c1:e5:a3:87:91:96:c9:e1:12:5d:c5:ae:
         96:e5:dc:ef:7f:c9:ee:16:c1:02:45:39:23:7c:04:d2:c7:3a:
         23:4d:94:fc:83:31:c8:8f:a8:f7:08:5c:d1:7a:18:52:0b:82:
         8c:cd:f2:cf:9d:b8:09:74:f0:51:41:4b:f6:48:6e:6f:52:be:
         9c:18:db:10:b6:82:e8:9f:2b:28:1f:11:ee:ed:bf:32:12:9c:
         5a:d6:ae:fd:86:3d:1a:53:50:d9:49:af:40:eb:db:d4:b8:21:
         e6:a5:3f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:21:25 2026 by rpki-client