Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft
File:                     ybbzh3rMoIEu_42KP1wESgwwvIA.mft (raw, json)
Hash identifier:          zLlxocF9R7boWtQ383QLb1gHhZpVUGQQtqCG9UlTN0M=
Subject key identifier:   3D:16:B1:52:49:D3:73:25:5A:B3:6D:12:52:3F:ED:A2:9C:4D:88:CC
Authority key identifier: C9:B6:F3:87:7A:CC:A0:81:2E:FF:8D:8A:3F:5C:04:4A:0C:30:BC:80
Certificate issuer:       /CN=A91A77C2/serialNumber=C9B6F3877ACCA0812EFF8D8A3F5C044A0C30BC80
Certificate serial:       0696
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft
Manifest number:          068E
Signing time:             Thu 16 Jul 2026 22:58:06 +0000
Manifest this update:     Thu 16 Jul 2026 22:58:05 +0000
Manifest next update:     Thu 23 Jul 2026 22:58:05 +0000
Files and hashes:         1: ybbzh3rMoIEu_42KP1wESgwwvIA.crl (hash: UBuqAl8J79lKvKFc8uooZ5+zNC2OUWx3VBLXHWXmjhc=)
                          2: E5692882C63411EB9E5F5F30C4F9AE02.roa (hash: qvLQA7WpjcptMon0VXPLruBJDNLR89kXk5T+FJz9bmw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.crl
                          rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 22:58:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1686 (0x696)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A77C2, serialNumber=C9B6F3877ACCA0812EFF8D8A3F5C044A0C30BC80
        Validity
            Not Before: Jul 16 22:58:05 2026 GMT
            Not After : Jul 23 22:58:05 2026 GMT
        Subject: CN=6a5961fd-6e43
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:7c:af:94:48:63:18:bf:4f:85:8d:a8:a2:12:
                    ca:20:2d:64:24:d3:a2:ec:ab:d6:8d:ff:50:91:40:
                    01:d9:0c:58:44:9c:ea:ee:4f:93:02:36:6e:86:7a:
                    00:6a:dc:af:d8:e6:61:33:54:bc:05:ae:0c:d4:50:
                    2e:36:b5:db:b1:40:6d:d9:10:f7:cb:ef:e8:55:40:
                    cb:36:ed:44:8e:ae:e7:b7:ce:8c:f9:99:e3:e8:e7:
                    72:a7:09:70:78:73:bb:ed:0d:f1:75:27:61:dd:d3:
                    17:5e:45:d7:44:6b:c7:fe:81:cd:ab:8f:1c:78:bd:
                    e1:90:72:61:c9:ae:3d:cf:6c:d1:9b:fa:80:1e:b8:
                    e6:cf:42:3a:e8:d4:13:0d:42:ed:aa:b9:cf:0e:eb:
                    89:03:e6:87:74:aa:24:9f:39:af:b4:5c:6e:d1:5b:
                    0c:05:67:72:98:46:99:f8:53:40:20:51:10:f8:8a:
                    98:fc:90:99:3e:d2:0d:6d:96:16:43:4b:0a:c6:31:
                    5c:b5:53:24:6a:78:ee:60:ee:eb:4f:a4:80:f4:ec:
                    9b:95:8d:58:eb:57:30:94:51:c1:b5:03:18:fe:98:
                    c9:34:3b:ec:b9:db:73:8f:9b:d2:20:98:a2:23:38:
                    3f:8d:c0:cd:33:1e:61:b3:c8:75:73:71:8c:85:9c:
                    2f:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:16:B1:52:49:D3:73:25:5A:B3:6D:12:52:3F:ED:A2:9C:4D:88:CC
            X509v3 Authority Key Identifier:
                keyid:C9:B6:F3:87:7A:CC:A0:81:2E:FF:8D:8A:3F:5C:04:4A:0C:30:BC:80

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:c7:67:2e:32:97:83:51:f0:d1:58:c1:af:51:69:41:dc:84:
         51:b2:88:88:e7:f1:0f:bd:d3:59:ca:42:d3:ea:c9:a5:28:e8:
         bd:1e:e8:42:39:c3:a6:f4:e9:8c:c4:44:c3:b7:26:b7:d0:74:
         61:c1:b2:22:5a:de:3f:37:f6:1a:b6:e9:2d:33:af:80:08:03:
         1c:32:18:48:a7:fc:52:84:7d:3e:ef:28:7e:7f:ee:db:72:e8:
         9b:d4:2d:b5:ab:e0:0b:ce:75:56:47:47:da:3e:4c:34:04:b6:
         ac:a7:34:8e:52:c4:a1:8c:f2:6b:1c:5d:c3:1a:d1:e8:11:69:
         18:fb:f5:5c:88:2d:0b:a6:2e:5f:18:c0:fe:ae:07:de:85:0f:
         90:1c:84:1b:49:3c:9d:b2:59:de:8e:f4:40:28:ec:5c:9b:35:
         0a:ee:e9:fb:f7:ce:da:4c:8f:cc:04:ea:a3:26:01:bf:6d:e4:
         86:1a:05:ae:eb:86:be:68:a1:7b:56:53:8e:78:09:39:fb:ec:
         57:0d:b6:a3:ff:2e:60:da:fd:03:6e:19:d1:85:6f:e4:98:20:
         bb:a3:e2:8c:c8:1e:ea:6d:e0:92:bc:06:ac:7d:dd:f3:7d:7c:
         ab:8e:5e:5a:86:fb:90:bc:21:da:d8:14:b9:a1:84:8f:21:e2:
         3f:1e:fa:a1
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTc3QzIxMTAvBgNVBAUTKEM5QjZGMzg3N0FDQ0EwODEyRUZGOEQ4QTNGNUMwNDRB
MEMzMEJDODAwHhcNMjYwNzE2MjI1ODA1WhcNMjYwNzIzMjI1ODA1WjAYMRYwFAYD
VQQDEw02YTU5NjFmZC02ZTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAm3yvlEhjGL9PhY2oohLKIC1kJNOi7KvWjf9QkUAB2QxYRJzq7k+TAjZuhnoA
atyv2OZhM1S8Ba4M1FAuNrXbsUBt2RD3y+/oVUDLNu1Ejq7nt86M+Znj6Odypwlw
eHO77Q3xdSdh3dMXXkXXRGvH/oHNq48ceL3hkHJhya49z2zRm/qAHrjmz0I66NQT
DULtqrnPDuuJA+aHdKoknzmvtFxu0VsMBWdymEaZ+FNAIFEQ+IqY/JCZPtINbZYW
Q0sKxjFctVMkanjuYO7rT6SA9OyblY1Y61cwlFHBtQMY/pjJNDvsudtzj5vSIJii
Izg/jcDNMx5hs8h1c3GMhZwvKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD0WsVJJ
03MlWrNtElI/7aKcTYjMMB8GA1UdIwQYMBaAFMm284d6zKCBLv+Nij9cBEoMMLyA
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzdDMi8zRURBRDEwQ0M2
MzIxMUVCQUFENzRBMkVDNEY5QUUwMi95YmJ6aDNyTW9JRXVfNDJLUDF3RVNnd3d2
SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3liYnpoM3JNb0lFdV80MktQMXdFU2d3d3ZJQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NzdDMi8zRURBRDEwQ0M2MzIxMUVCQUFENzRBMkVDNEY5QUUwMi95YmJ6aDNyTW9J
RXVfNDJLUDF3RVNnd3d2SUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAh8dnLjKXg1Hw0VjBr1FpQdyEUbKIiOfxD73TWcpC0+rJpSjovR7oQjnDpvTp
jMREw7cmt9B0YcGyIlrePzf2GrbpLTOvgAgDHDIYSKf8UoR9Pu8ofn/u23Lom9Qt
tavgC851VkdH2j5MNAS2rKc0jlLEoYzyaxxdwxrR6BFpGPv1XIgtC6YuXxjA/q4H
3oUPkByEG0k8nbJZ3o70QCjsXJs1Cu7p+/fO2kyPzATqoyYBv23khhoFruuGvmih
e1ZTjngJOfvsVw22o/8uYNr9A24Z0YVv5Jggu6PijMge6m3gkrwGrH3d8318q45e
Wob7kLwh2tgUuaGEjyHiPx76oQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:15:19 2026 by rpki-client