Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft
File:                     bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft (raw, json)
Hash identifier:          7I9OKOQAPhBvIhG1Dm0nCQjF8ya+JnW/ASLHLXq6z08=
Subject key identifier:   AA:BE:58:F2:70:77:DC:69:5C:D0:D3:52:B6:2A:07:93:37:24:5E:4F
Authority key identifier: 6D:8A:B6:FD:E5:21:DC:10:6F:94:82:92:B5:02:FD:5A:07:34:83:7C
Certificate issuer:       /CN=A917877E/serialNumber=6D8AB6FDE521DC106F948292B502FD5A0734837C
Certificate serial:       C2
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft
Manifest number:          C0
Signing time:             Fri 17 Jul 2026 08:07:44 +0000
Manifest this update:     Fri 17 Jul 2026 08:07:44 +0000
Manifest next update:     Fri 24 Jul 2026 08:07:44 +0000
Files and hashes:         1: bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl (hash: 1oPXyfCVMN1Al9nr4ncTEWXFrhIJatzQrNxhE7jHHQE=)
                          2: 9EA96DF25D5D11F08A574048C4F9AE02.roa (hash: j5dVLv6OLKywzj6nsoTlfZRGOA0pKSPRrtwDldvzxCc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl
                          rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:07:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 194 (0xc2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917877E, serialNumber=6D8AB6FDE521DC106F948292B502FD5A0734837C
        Validity
            Not Before: Jul 17 08:07:44 2026 GMT
            Not After : Jul 24 08:07:44 2026 GMT
        Subject: CN=6a59e2d0-6255
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:6d:7c:15:f3:71:73:f2:ce:09:1b:f4:08:42:
                    58:77:b2:76:c3:6f:66:65:e0:90:b6:41:9c:e9:57:
                    d4:e2:32:5c:e9:bb:da:22:81:8b:d1:1d:e5:a3:3f:
                    ce:af:d7:22:43:58:9a:b0:89:20:e2:92:58:dc:07:
                    44:04:2a:ec:e1:90:a1:b5:10:43:bf:63:aa:d1:6d:
                    63:8d:0b:57:f6:40:dc:d7:54:c4:9a:06:4e:7e:00:
                    aa:dd:83:01:06:03:bc:66:05:17:64:61:ee:e8:4b:
                    2d:7d:2d:ba:87:99:00:b9:cd:d0:39:b1:29:10:e1:
                    37:00:21:df:b2:36:0e:27:a1:4e:a7:e7:35:6d:6a:
                    87:25:c9:63:95:49:d7:65:48:bb:e1:3f:ca:00:55:
                    68:b4:6f:b5:01:5a:d0:41:1e:fa:63:6b:63:b0:d1:
                    37:df:7e:4b:4c:a9:ed:a2:ae:a8:b7:57:5f:2c:c5:
                    fb:27:e5:96:f8:12:1a:9d:fa:af:98:41:d9:ec:a9:
                    99:6d:61:81:85:38:6a:d1:bb:0d:b6:2c:23:6a:c1:
                    b3:53:84:e1:83:40:08:0d:ef:6d:63:d9:49:70:7a:
                    38:63:75:f4:10:10:8f:49:c9:ab:67:85:95:14:86:
                    c2:54:90:e4:f6:e9:52:21:0d:00:7e:97:2b:3c:62:
                    a1:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:BE:58:F2:70:77:DC:69:5C:D0:D3:52:B6:2A:07:93:37:24:5E:4F
            X509v3 Authority Key Identifier:
                keyid:6D:8A:B6:FD:E5:21:DC:10:6F:94:82:92:B5:02:FD:5A:07:34:83:7C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:d6:67:d3:79:22:c3:13:f5:c4:5f:f4:f0:eb:37:d6:e3:18:
         b2:47:ef:51:83:72:35:a4:b5:88:23:a2:06:c8:8d:6f:e3:c2:
         ee:26:a6:6f:22:9e:3e:b3:73:2c:f2:24:6a:7e:52:ab:02:00:
         9b:87:72:8a:85:1f:d3:f7:84:23:94:af:81:40:87:3f:2a:c5:
         bc:2e:81:ab:ab:70:2e:8a:63:71:1e:b2:ff:e3:4c:e8:51:01:
         f5:1d:d1:a9:24:1c:2e:fd:89:4e:1d:10:0a:72:14:d8:e3:b6:
         38:9d:1b:12:5c:1a:11:bb:9b:99:40:78:f0:87:b2:6a:c2:aa:
         b3:59:46:52:b8:4c:1e:ab:28:d1:21:c8:ac:8e:44:49:1f:6e:
         26:3c:5c:bd:d0:c5:94:30:76:40:9a:d5:c8:34:72:b0:fe:d7:
         23:4e:6b:98:e3:6b:de:d0:d1:13:af:3b:d4:3e:43:a9:79:d1:
         fd:11:e4:bc:ab:92:98:b8:32:17:1a:b8:81:03:6e:8b:28:65:
         f1:ac:cb:cb:ae:1b:26:fd:2e:c8:47:9e:17:1a:25:ee:40:60:
         75:a9:ce:a7:e7:20:87:64:03:f3:12:09:7d:cb:63:16:14:d8:
         8f:f8:b9:22:b4:1c:0b:eb:64:e2:d6:bf:e3:9c:da:d3:3e:64:
         aa:f7:73:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:02 2026 by rpki-client