Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
File:                     YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json)
Hash identifier:          Q5wR64QcYJlKGzFjr2SrQQglPWyZlLjHdsfgzDfUcrA=
Subject key identifier:   24:8C:8F:C3:21:7A:66:4B:F7:72:D3:04:EF:D3:E9:8E:F5:CB:3A:DB
Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60
Certificate issuer:       /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460
Certificate serial:       056B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
Manifest number:          0566
Signing time:             Thu 16 Jul 2026 23:53:04 +0000
Manifest this update:     Thu 16 Jul 2026 23:53:04 +0000
Manifest next update:     Thu 23 Jul 2026 23:53:04 +0000
Files and hashes:         1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: 8r0ZsKKLs/vO2a2yoa+4I3INSMXmh1fQ7b9UCy+I/64=)
                          2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: 1EXMwCZdlr4n5uu1XLxW00w3UXh6JZwNTcRYA1sNXNA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl
                          rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:53:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1387 (0x56b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460
        Validity
            Not Before: Jul 16 23:53:04 2026 GMT
            Not After : Jul 23 23:53:04 2026 GMT
        Subject: CN=6a596ee0-22d4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:8b:f6:e4:f6:40:ed:bc:5d:3b:2a:4e:81:e5:
                    fb:41:8b:55:86:0d:ca:a0:cc:87:e2:d4:8e:9c:e1:
                    8d:e5:25:16:cc:d4:68:1b:37:a7:aa:54:bc:5b:1c:
                    87:05:35:e3:87:35:08:ef:60:cc:66:d4:43:9d:d9:
                    92:43:2d:48:ed:87:50:d2:19:8c:64:fc:65:77:17:
                    c7:b0:42:40:71:c4:ae:56:60:d8:69:13:50:ea:9f:
                    f8:96:da:4a:f1:e6:dc:cd:83:c9:e6:84:f9:77:5a:
                    f0:86:63:d1:9c:0d:e5:05:e2:81:26:cc:a1:19:d7:
                    48:51:ce:10:1c:c7:d0:54:79:ce:50:f0:da:81:fb:
                    c4:eb:4d:b7:ec:65:24:ca:64:31:44:80:58:53:0b:
                    d3:12:3a:ab:36:d5:dd:12:76:d8:40:b7:d8:bb:b0:
                    ed:8a:12:02:77:64:bf:e4:86:0a:36:66:13:0a:09:
                    46:5d:a5:0e:f0:0b:19:3f:c0:e7:18:d7:ab:74:72:
                    ac:03:b3:32:69:21:de:89:68:f7:43:29:ea:d7:ba:
                    b7:b6:25:73:b1:80:22:9a:3c:a3:aa:bb:f2:8f:3a:
                    29:08:09:07:7b:34:15:c6:fa:69:a9:f6:bb:4d:ee:
                    bf:95:7c:71:77:85:95:2f:df:06:40:e0:41:c6:61:
                    a5:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:8C:8F:C3:21:7A:66:4B:F7:72:D3:04:EF:D3:E9:8E:F5:CB:3A:DB
            X509v3 Authority Key Identifier:
                keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:6e:57:d1:18:c7:a4:23:df:9f:2c:92:c4:31:ec:65:20:15:
         cd:bd:81:1c:25:c9:80:04:dc:91:ea:98:8d:a1:a9:3d:ae:74:
         68:17:58:0b:69:93:58:b9:71:8c:c7:58:35:60:bb:0a:cf:42:
         f2:0d:a3:d7:9f:4b:70:b4:25:27:f7:ce:cd:34:7f:92:14:14:
         00:92:6b:c4:fd:53:d1:12:47:ed:c5:60:60:19:a9:fd:2e:bf:
         b2:f0:8e:48:01:7c:de:07:23:00:d4:ce:4e:7c:37:37:a6:a4:
         1c:a9:9b:2f:ad:9b:5e:c0:1a:21:f5:b7:02:3f:b2:9c:ac:b5:
         34:ca:cf:52:a9:53:44:3f:9c:3d:cf:93:03:e2:de:19:04:87:
         0c:b9:20:e5:ca:1d:98:b8:0f:72:0e:2d:f4:a9:2e:15:da:a6:
         33:93:fe:4b:b1:91:32:69:4c:ac:d5:1b:90:a0:fb:fd:ba:1c:
         b4:44:b5:b7:ed:fb:49:c0:ef:70:21:e4:46:69:1f:53:27:b3:
         01:80:81:71:01:83:16:61:2f:2c:76:f1:96:e7:bd:b3:c2:93:
         7f:06:7d:04:01:d2:33:78:6d:f6:b9:7a:22:09:d1:c0:39:44:
         93:38:e5:03:4d:48:0e:f5:8c:2a:2d:6d:8f:ba:54:40:c6:f4:
         83:65:8a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 13:32:47 2026 by rpki-client