Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
File:                     bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json)
Hash identifier:          YuPgdpVpWhS6h5jEd5zg8BpszGo8pE7xDC4dhqg4hqw=
Subject key identifier:   6C:68:57:23:16:C9:22:EF:66:6B:3F:29:E6:15:60:CF:DC:5D:A8:23
Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56
Certificate issuer:       /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356
Certificate serial:       0366
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
Manifest number:          035C
Signing time:             Fri 17 Jul 2026 01:33:21 +0000
Manifest this update:     Fri 17 Jul 2026 01:33:21 +0000
Manifest next update:     Fri 24 Jul 2026 01:33:21 +0000
Files and hashes:         1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: QKwfVsEOj2M8kEwhDxiQbaaoZ5ejXH+Q4uRLubx9A6o=)
                          2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: nNS4I6wnFDV0IY10DkD6nefkEApdL1HBIkLyD0uDd2g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl
                          rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:33:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 870 (0x366)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356
        Validity
            Not Before: Jul 17 01:33:21 2026 GMT
            Not After : Jul 24 01:33:21 2026 GMT
        Subject: CN=6a598661-da74
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:98:80:33:4c:bb:fc:1d:66:3c:3d:79:1f:8d:
                    a5:a1:98:7b:59:76:46:7a:03:6c:98:13:0c:b0:11:
                    d1:96:f8:f6:fd:85:54:89:28:7b:55:4b:2c:18:41:
                    cd:99:39:37:ba:60:5b:67:b8:b6:36:ae:de:1a:e6:
                    b3:7e:2b:7f:75:c7:5d:47:e7:43:cb:3e:e0:44:77:
                    a7:2a:e1:fa:a9:18:26:8b:28:75:98:37:d9:f6:ce:
                    5a:7a:65:5c:18:49:0c:5e:48:50:e0:db:a5:84:53:
                    dd:0e:17:39:3b:ce:3d:af:e1:e7:16:7c:ad:c3:69:
                    f0:32:e5:72:77:e9:6b:71:e6:86:d5:38:62:2c:2b:
                    37:fd:37:e7:27:8f:9e:71:5e:2e:b5:14:d5:32:11:
                    ad:42:65:5b:24:19:d2:51:ed:a7:5a:2b:14:0e:1c:
                    2e:95:44:19:c0:75:ed:d8:ed:98:86:47:77:5f:70:
                    07:18:f9:9e:e8:96:63:02:32:5a:f2:c8:1d:f9:8c:
                    14:ed:58:2d:e3:be:b5:19:ea:56:09:96:b0:af:88:
                    ea:9c:d4:b7:d9:96:08:83:9a:65:aa:92:d7:7a:7a:
                    b1:c7:77:69:f9:ce:4e:1a:53:c8:7c:83:c6:31:ed:
                    ff:0e:89:b3:5e:ab:5e:94:1f:3b:a3:98:09:90:cd:
                    f1:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:68:57:23:16:C9:22:EF:66:6B:3F:29:E6:15:60:CF:DC:5D:A8:23
            X509v3 Authority Key Identifier:
                keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:61:e7:a1:e4:73:89:8b:6c:46:a6:d4:0a:61:04:8b:c3:6f:
         a2:be:54:78:a1:40:d0:6a:dc:3c:ac:20:b9:44:d7:0c:22:c4:
         1e:bf:c1:62:81:aa:cc:47:41:63:1f:5d:ae:db:45:e5:a7:e0:
         68:bb:7f:6b:63:3f:2e:a4:88:0f:ec:e5:32:09:d1:b8:ef:17:
         ef:a7:05:e1:e4:35:fc:ec:e0:b5:07:5b:1f:87:b9:f7:8a:b8:
         8f:d4:c3:cf:a6:98:72:d9:d2:3d:56:4d:cd:7d:45:90:ce:dd:
         f9:15:45:63:da:c1:5e:47:85:b9:b1:e5:32:31:79:e0:93:e0:
         ca:c1:7b:2c:bd:34:58:49:9c:8c:b0:5c:c8:b6:d6:5d:e0:3e:
         9b:c8:9b:d3:39:b6:f5:69:7b:23:f3:1a:ef:9e:d9:de:03:3c:
         4c:10:2a:8f:e8:f8:e0:92:97:db:15:a4:aa:0a:dc:6b:fa:54:
         7f:0e:5f:e1:db:7f:97:02:bf:4f:b7:06:99:02:07:e5:d8:3a:
         e4:fd:0b:cf:7d:9f:ab:b9:d3:3f:32:d9:4b:3f:a2:e8:96:0a:
         33:00:30:68:0d:36:ff:57:7a:1d:bf:bd:95:c1:28:e9:b0:31:
         b0:fe:bc:1e:59:64:81:9b:6a:a2:92:d8:33:29:d2:89:8d:48:
         17:95:63:22
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3
RjA0RDUzNTYwHhcNMjYwNzE3MDEzMzIxWhcNMjYwNzI0MDEzMzIxWjAYMRYwFAYD
VQQDEw02YTU5ODY2MS1kYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtJiAM0y7/B1mPD15H42loZh7WXZGegNsmBMMsBHRlvj2/YVUiSh7VUssGEHN
mTk3umBbZ7i2Nq7eGuazfit/dcddR+dDyz7gRHenKuH6qRgmiyh1mDfZ9s5aemVc
GEkMXkhQ4NulhFPdDhc5O849r+HnFnytw2nwMuVyd+lrceaG1ThiLCs3/TfnJ4+e
cV4utRTVMhGtQmVbJBnSUe2nWisUDhwulUQZwHXt2O2Yhkd3X3AHGPme6JZjAjJa
8sgd+YwU7Vgt4761GepWCZawr4jqnNS32ZYIg5plqpLXenqxx3dp+c5OGlPIfIPG
Me3/DomzXqtelB87o5gJkM3xowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGxoVyMW
ySLvZms/KeYVYM/cXagjMB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3
MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V
MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H
VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAnmHnoeRziYtsRqbUCmEEi8Nvor5UeKFA0GrcPKwguUTXDCLEHr/BYoGqzEdB
Yx9drttF5afgaLt/a2M/LqSID+zlMgnRuO8X76cF4eQ1/OzgtQdbH4e594q4j9TD
z6aYctnSPVZNzX1FkM7d+RVFY9rBXkeFubHlMjF54JPgysF7LL00WEmcjLBcyLbW
XeA+m8ib0zm29Wl7I/Ma757Z3gM8TBAqj+j44JKX2xWkqgrca/pUfw5f4dt/lwK/
T7cGmQIH5dg65P0Lz32fq7nTPzLZSz+i6JYKMwAwaA02/1d6Hb+9lcEo6bAxsP68
HllkgZtqopLYMynSiY1IF5VjIg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 09:32:17 2026 by rpki-client