Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft
File:                     gyiT0KdSAaIToGRFUyA9Aac8-v8.mft (raw, json)
Hash identifier:          ykvP+DigQOR8UGRl8yS2PJXoQkQ+5NobPhGWeocEMl8=
Subject key identifier:   89:1F:CD:67:DF:06:F9:00:A4:41:DE:84:A8:02:42:E6:A0:95:05:37
Authority key identifier: 83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF
Certificate issuer:       /CN=A9176632/serialNumber=832893D0A75201A213A0644553203D01A73CFAFF
Certificate serial:       C0
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft
Manifest number:          BE
Signing time:             Fri 17 Jul 2026 08:09:18 +0000
Manifest this update:     Fri 17 Jul 2026 08:09:18 +0000
Manifest next update:     Fri 24 Jul 2026 08:09:18 +0000
Files and hashes:         1: gyiT0KdSAaIToGRFUyA9Aac8-v8.crl (hash: KcwuSrqscE1XZmRlToObiP5VqbSnGIAV3d+IUYXK9vM=)
                          2: 9DB90EE05E0F11F09722E15EC4F9AE02.roa (hash: R+yKKJFZUpnxPKJ79z1OaMA2OB1A9rsyasLFDhiY1WY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl
                          rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:09:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 192 (0xc0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9176632, serialNumber=832893D0A75201A213A0644553203D01A73CFAFF
        Validity
            Not Before: Jul 17 08:09:18 2026 GMT
            Not After : Jul 24 08:09:18 2026 GMT
        Subject: CN=6a59e32e-99f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:f8:76:06:a1:b8:2f:62:81:10:1b:4b:7c:06:
                    64:29:53:77:97:f2:0b:f7:a5:50:f6:f5:53:0f:e6:
                    b8:4e:c5:3c:ab:72:e5:a5:73:15:ef:34:8f:80:07:
                    e8:0a:5e:25:eb:39:45:bf:8b:e6:d3:2a:bf:4f:06:
                    03:09:b0:ad:ac:0b:f9:59:1a:94:a7:f3:16:a1:59:
                    9f:88:f2:9c:32:47:8a:b2:78:88:a4:1b:d0:4b:fa:
                    77:10:12:2a:7f:2c:b7:bf:0d:b3:da:e4:28:56:58:
                    12:6b:5d:9a:b4:66:2c:47:89:61:e6:5b:79:10:f1:
                    ae:42:d7:b0:76:0b:82:e4:4b:10:6e:76:1e:87:d5:
                    f2:46:71:e6:7c:6b:b2:8a:42:6e:98:43:e5:ac:79:
                    19:dd:34:e4:35:c8:5e:db:c2:5a:4c:43:02:b9:0b:
                    a8:50:fd:65:c7:b8:2c:1f:a9:6d:b1:dc:9a:42:97:
                    33:1b:61:eb:83:3f:3d:0f:65:49:3e:e0:e5:e3:07:
                    3a:74:6b:12:d8:1e:21:3c:54:c1:c9:de:86:4c:dd:
                    66:e4:c2:5d:66:19:18:9a:21:77:58:c6:db:7c:0d:
                    ab:c9:da:5a:d5:a6:6a:a0:c5:44:1a:46:38:7d:ff:
                    e9:13:09:4b:91:53:2c:7d:c1:b8:f4:86:b8:c2:70:
                    2a:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:1F:CD:67:DF:06:F9:00:A4:41:DE:84:A8:02:42:E6:A0:95:05:37
            X509v3 Authority Key Identifier:
                keyid:83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:17:f0:5e:49:6f:11:b7:b4:98:8e:b3:02:47:02:d1:f9:62:
         d0:40:b0:ff:12:03:e8:07:74:9a:ea:60:34:2f:e8:bd:a4:e4:
         ce:74:a9:47:e9:49:86:92:3f:57:bc:7d:29:d7:0a:04:73:c0:
         63:93:f1:c6:89:fe:bd:24:06:cc:9c:18:24:94:17:25:4e:21:
         13:aa:c7:44:51:52:f9:92:d6:df:53:34:52:95:f3:eb:11:00:
         07:26:e1:6b:ee:7f:f6:e7:bf:cd:81:11:1b:f1:76:12:1c:0f:
         69:8e:55:40:25:6a:03:f3:3c:ed:03:0d:ff:7e:21:e4:09:61:
         f0:58:7d:f6:ce:c6:f7:e7:84:8e:ce:42:30:d3:bc:70:97:75:
         6c:82:26:a5:a7:7c:bd:e2:dc:35:96:34:cd:cd:f4:8c:9b:b0:
         ce:b6:c8:78:f3:de:19:2d:e3:f6:7f:ab:ba:63:f2:2d:ae:05:
         2e:d1:00:6a:2e:38:fd:34:a8:ae:ce:7f:a9:4d:cc:e2:76:35:
         cb:00:df:79:72:b1:d0:31:33:bf:a9:b6:91:da:8f:f7:9a:0a:
         9e:03:95:2d:06:d6:92:d8:9f:35:41:ad:09:49:69:f8:59:28:
         24:4f:56:50:b1:cc:1e:eb:98:d6:cf:35:42:92:9a:8f:3b:52:
         81:86:0e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:40 2026 by rpki-client