Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft
File:                     YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json)
Hash identifier:          Qrqjp9mauD7ZBveRmgxdaNkymWQ1CfORtPVTvFpR26Y=
Subject key identifier:   21:9B:6D:10:D4:41:1A:AC:50:BF:19:B1:64:1B:01:AA:F4:16:9F:5F
Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36
Certificate issuer:       /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336
Certificate serial:       02B7
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft
Manifest number:          02AA
Signing time:             Sun 05 Jul 2026 02:09:29 +0000
Manifest this update:     Sun 05 Jul 2026 02:09:29 +0000
Manifest next update:     Sun 12 Jul 2026 02:09:29 +0000
Files and hashes:         1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: JqTtaTN67aABz2x+uWlO8m+N9lP8sUm6pq+8z09GcFo=)
                          2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: B71votStEYYp/K2emTulLeZ6cRSZ/0mH+ncAa56QIjU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl
                          rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 02:09:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 695 (0x2b7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336
        Validity
            Not Before: Jul  5 02:09:29 2026 GMT
            Not After : Jul 12 02:09:29 2026 GMT
        Subject: CN=6a49bcd9-bda0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:1c:b1:ba:1f:59:da:93:10:45:e1:45:16:f8:
                    18:61:7e:03:84:90:bf:21:05:78:83:c8:91:17:09:
                    bc:69:fd:0b:20:22:04:91:f2:e9:68:8a:1f:e2:a6:
                    3d:c4:ef:87:f2:49:ba:d7:07:ee:e7:e1:d9:af:3e:
                    ba:44:90:86:b7:8c:60:73:c4:72:b3:4a:24:ad:5e:
                    1c:51:5b:c9:1e:d4:5d:2f:de:0f:ec:be:ab:e9:0e:
                    07:5a:5b:f2:42:a8:9e:cc:08:1a:0f:8b:15:c9:d3:
                    20:93:fc:81:48:88:32:ba:9e:22:f8:70:0f:50:82:
                    47:77:44:c6:d6:b9:b7:29:b8:3f:1b:36:93:53:a8:
                    e1:63:07:be:de:55:62:fa:c8:ca:fe:c9:a2:b6:89:
                    1d:df:c6:87:60:36:71:c9:32:39:3e:28:f4:49:69:
                    1c:d8:fd:cf:a4:f5:d5:f3:e4:6e:8c:60:b4:65:24:
                    5d:4e:17:a1:75:24:c3:03:68:2d:41:90:10:83:e4:
                    77:df:9c:04:b3:db:f9:4a:d9:e2:bf:9a:8e:5a:c5:
                    f3:41:80:34:0e:82:cc:97:8f:36:89:db:b4:e5:31:
                    c8:98:18:b4:a5:c5:23:73:82:e5:f8:3f:10:6a:83:
                    1c:0a:d9:5a:35:b5:04:04:e9:15:09:89:b4:f9:08:
                    55:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:9B:6D:10:D4:41:1A:AC:50:BF:19:B1:64:1B:01:AA:F4:16:9F:5F
            X509v3 Authority Key Identifier:
                keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:34:df:5a:15:50:7f:d8:85:6d:6e:87:f7:ac:52:f6:65:74:
         a6:1b:68:7d:86:47:cd:e1:78:2b:5d:0a:46:b5:0d:d9:ff:6a:
         69:07:be:36:fd:5e:f7:a3:b9:cd:ec:1d:91:8a:5a:30:03:81:
         bb:ae:68:fa:95:ef:2d:d6:87:c5:ea:b2:00:e7:f5:db:66:fc:
         90:4d:df:82:5f:2f:72:a6:26:94:fd:a9:69:e6:92:b8:48:b2:
         cb:94:c1:c8:61:3f:11:bd:79:4a:64:cd:8c:be:75:c9:0b:7a:
         ad:cb:20:4a:44:12:aa:d3:d8:b8:e3:cb:0c:9d:0b:d0:a4:5c:
         cc:79:a3:b1:f5:f5:c6:e8:e8:15:21:9c:50:f4:0a:16:d4:1d:
         7f:8e:45:f5:64:5d:f1:88:24:8a:4a:14:b2:4f:e8:9b:d0:3a:
         03:f1:bb:c4:70:9b:2e:10:82:f2:dd:62:5b:b7:22:a1:ed:70:
         d1:bc:09:4c:b6:2d:eb:ce:9e:dd:f0:c7:b5:6a:d9:bb:15:5e:
         09:23:b5:3c:31:7d:4b:19:89:77:c0:95:05:eb:e1:76:83:c7:
         57:38:b2:11:3d:67:33:45:58:c4:22:25:c4:a2:ad:56:8d:39:
         02:ac:a6:08:d3:a2:e2:81:1d:ed:3e:48:aa:af:02:e6:4e:ff:
         6c:63:56:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:56 2026 by rpki-client