Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft
File:                     Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json)
Hash identifier:          OfyKoQ1tmQzsHVWyaJBZLA7YBRgsHidAqYq6+Hpbwig=
Subject key identifier:   82:40:72:12:9E:1C:3D:22:76:F8:60:1C:F8:1C:B4:D7:5B:FF:38:C1
Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09
Certificate issuer:       /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809
Certificate serial:       024B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft
Manifest number:          0235
Signing time:             Fri 17 Jul 2026 03:51:26 +0000
Manifest this update:     Fri 17 Jul 2026 03:51:25 +0000
Manifest next update:     Fri 24 Jul 2026 03:51:25 +0000
Files and hashes:         1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: YIAeD04FV0nUuah38xSKSYrlQFEsEUeNFTvovQiSAVs=)
                          2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: cgC2ydMTGIHogqUutqNvoyHdmfwEliEqE+1X5oBYTDA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl
                          rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 03:51:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 587 (0x24b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9194C0D, serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809
        Validity
            Not Before: Jul 17 03:51:25 2026 GMT
            Not After : Jul 24 03:51:25 2026 GMT
        Subject: CN=6a59a6bd-11e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:4c:38:72:58:62:1e:de:4d:2d:b5:11:03:c0:
                    5e:26:4a:95:d1:cd:cb:f2:82:29:b1:bc:d0:b1:f1:
                    0b:c1:b1:ac:52:c0:18:6d:9d:91:f3:43:5c:6a:b8:
                    af:f6:12:91:74:30:df:4b:ca:4e:9f:26:51:34:24:
                    68:e2:bf:6a:e0:d6:79:84:f4:9b:0a:e2:45:c8:46:
                    11:ca:e9:7f:f4:8c:84:ab:e9:6c:78:4f:96:c4:5e:
                    b9:2a:23:c7:f2:8c:ea:06:51:40:e5:21:43:19:2c:
                    ba:f7:da:c2:20:61:c2:b4:d5:ff:30:90:47:ad:e9:
                    36:a4:09:72:e8:30:b9:12:79:68:45:09:a3:73:9d:
                    56:52:8c:ea:17:b8:16:fd:80:9a:13:cb:6d:a1:65:
                    a8:be:42:27:5f:76:fc:ec:45:e8:6b:bf:63:b5:8d:
                    9f:ba:16:68:f3:10:5e:06:4b:ff:ee:2d:34:32:37:
                    b1:38:ba:ab:c8:09:07:0c:ef:bb:83:53:d5:40:53:
                    7a:1d:a2:b2:a0:57:61:22:77:78:b0:d2:82:76:8f:
                    f8:c6:06:95:ee:6b:a3:89:77:b8:4d:55:04:3b:b6:
                    c3:10:98:bf:4e:26:30:4a:db:a9:63:01:31:48:01:
                    04:4b:d9:2b:dd:c0:03:7f:d7:c6:96:7e:73:bc:b6:
                    0c:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:40:72:12:9E:1C:3D:22:76:F8:60:1C:F8:1C:B4:D7:5B:FF:38:C1
            X509v3 Authority Key Identifier:
                keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:e4:d6:11:59:66:4e:f1:82:65:d4:6c:a5:30:eb:02:95:8b:
         d0:99:7a:31:16:dd:b8:d0:b2:91:d6:75:99:03:bc:ec:93:cb:
         29:2e:27:74:77:86:8c:b5:5f:67:06:a2:0f:19:8a:41:aa:17:
         ee:84:2c:de:a0:32:86:e7:b3:93:71:d5:9f:df:a6:27:66:4a:
         c4:1a:3c:93:0a:6c:25:cc:3d:3c:3c:ac:20:86:e0:e8:5f:c0:
         c5:c6:54:43:97:d4:f9:cf:aa:06:39:33:ba:21:f2:0b:93:9f:
         57:ae:06:22:85:ce:75:3e:52:71:00:6b:57:42:60:91:9f:23:
         f4:7c:0a:9c:ba:93:d0:cf:87:88:f4:f8:8c:35:34:9c:2d:5e:
         9e:00:b5:d5:e8:a9:7a:18:91:47:c8:d2:1e:c7:ea:ff:93:44:
         03:c9:ef:29:39:97:d1:9f:9e:01:68:84:fc:c2:3d:b4:83:12:
         25:19:63:30:7d:7e:95:ef:65:9c:5c:e0:5c:41:f0:bd:ef:16:
         7a:e1:4f:bd:d7:04:c6:cd:d4:ae:6b:6d:72:63:ae:88:08:40:
         48:7f:fa:b1:52:31:3f:59:b5:2a:6b:3c:62:b7:33:99:dc:52:
         c7:f0:84:24:9f:3b:df:08:77:5b:62:be:69:c5:fe:4e:8d:96:
         a2:81:fc:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:47 2026 by rpki-client