Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft
File:                     yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json)
Hash identifier:          Uce7Y8rVJ2kueCcI/HBJNx0YRA9eDP1KL59DRCixeCQ=
Subject key identifier:   B1:17:4F:E2:8E:B4:F5:B3:C6:5E:A7:C1:F7:62:78:FF:22:20:E0:70
Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D
Certificate issuer:       /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D
Certificate serial:       017F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft
Manifest number:          017B
Signing time:             Thu 16 Jul 2026 21:36:16 +0000
Manifest this update:     Thu 16 Jul 2026 21:36:16 +0000
Manifest next update:     Thu 23 Jul 2026 21:36:16 +0000
Files and hashes:         1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: WQJeC9EZ/YQPCi1DEdHGIW7gXELgA3SbvQjA2EzYyDY=)
                          2: E098BB864FA311F0B96FBA3DC4F9AE02.roa (hash: OPdh+VvdJ8rvY5Hnhte8AjyqGibUOoE1fm+ikF6YCWY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl
                          rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 21:36:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 383 (0x17f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D
        Validity
            Not Before: Jul 16 21:36:16 2026 GMT
            Not After : Jul 23 21:36:16 2026 GMT
        Subject: CN=6a594ed0-fe99
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:a6:d5:19:c0:9c:7c:b4:a6:79:8b:0e:4f:bc:
                    2f:e4:a5:7c:4a:54:3f:8f:ad:b4:34:67:78:b9:5a:
                    3c:1d:f1:6b:df:7e:03:70:23:69:98:d7:37:ac:c5:
                    2b:ee:3b:b5:5d:dc:db:24:f5:dd:fc:9c:0c:45:f2:
                    e3:5f:e1:4d:b0:87:7e:06:06:c6:db:49:f5:87:5e:
                    45:cc:37:bc:c9:72:9e:00:f7:3a:e0:30:aa:e6:7e:
                    a0:a4:e3:39:b4:de:22:0d:3a:c7:c8:0d:05:ca:b7:
                    78:2a:3d:1b:c4:0d:71:58:d0:91:90:62:ce:14:9b:
                    4e:9b:36:b8:f2:fe:2a:bb:f7:4b:d4:76:1f:77:6b:
                    87:15:f1:45:9b:c8:16:4f:be:a0:4b:23:7d:5b:28:
                    aa:33:13:c9:ac:dc:1f:bf:00:49:78:99:f2:9b:f7:
                    f7:01:4b:05:40:86:46:94:b3:ed:09:96:80:3d:9c:
                    32:c2:e6:15:63:51:e8:bf:16:a2:ea:27:78:28:27:
                    4e:bf:ae:a9:13:0a:18:0d:1c:d1:36:c1:87:d9:57:
                    d6:12:51:7b:e3:a0:93:f3:47:2a:24:68:b6:b3:05:
                    bc:7b:48:02:35:bc:75:09:d8:f6:31:d9:42:8b:01:
                    cd:a7:bc:9b:41:b9:36:95:76:68:b4:f1:f6:b5:68:
                    f6:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:17:4F:E2:8E:B4:F5:B3:C6:5E:A7:C1:F7:62:78:FF:22:20:E0:70
            X509v3 Authority Key Identifier:
                keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:99:df:4f:9f:fa:cb:ea:68:26:87:25:1c:bf:05:37:98:0d:
         62:c6:f4:80:69:a8:0a:98:12:ed:31:65:68:77:aa:70:8a:3d:
         ae:0b:b4:a7:aa:83:33:97:d2:30:b2:a3:ba:2d:9f:bc:9f:9a:
         94:ff:1d:79:8e:a1:6a:e1:f3:bf:ea:c9:a2:63:c2:e2:df:7c:
         77:bb:4f:33:b4:9e:30:3d:6b:ec:00:b1:5c:ee:ba:1e:b6:27:
         16:b6:56:d9:3f:ce:e1:0f:72:d9:eb:83:95:c3:42:eb:2c:36:
         67:e4:20:ac:3c:87:1f:41:84:4c:fa:7c:61:49:41:8f:47:3b:
         4e:f3:de:65:79:ca:c0:f0:09:f8:95:ef:6e:76:8e:d5:56:5e:
         0d:2f:c0:3c:4c:1c:ce:44:45:71:81:9f:98:62:86:bb:82:79:
         f6:9a:13:b9:fe:75:f9:13:13:39:72:81:08:84:0b:ed:ee:ed:
         1c:cb:0c:f2:c4:22:e1:cd:34:60:d0:7f:d7:45:ed:94:4e:1e:
         28:d0:98:ce:b9:ee:9b:55:e3:71:e7:7d:4e:92:5a:b6:b2:3e:
         4e:ff:a1:85:31:50:4e:97:36:db:81:7f:d0:04:ce:3c:65:37:
         27:b6:f4:5c:74:85:5f:c7:a5:7c:1f:7f:41:33:2b:b4:0f:4a:
         03:9b:ae:13
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUEwNTMxMTAvBgNVBAUTKENBODc3QTdBRUYxREJCMDQ1NjQ4N0Y2MUZFRTY5OTM2
Mzc1NDFFNUQwHhcNMjYwNzE2MjEzNjE2WhcNMjYwNzIzMjEzNjE2WjAYMRYwFAYD
VQQDEw02YTU5NGVkMC1mZTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtqbVGcCcfLSmeYsOT7wv5KV8SlQ/j620NGd4uVo8HfFr334DcCNpmNc3rMUr
7ju1XdzbJPXd/JwMRfLjX+FNsId+BgbG20n1h15FzDe8yXKeAPc64DCq5n6gpOM5
tN4iDTrHyA0Fyrd4Kj0bxA1xWNCRkGLOFJtOmza48v4qu/dL1HYfd2uHFfFFm8gW
T76gSyN9WyiqMxPJrNwfvwBJeJnym/f3AUsFQIZGlLPtCZaAPZwywuYVY1Hovxai
6id4KCdOv66pEwoYDRzRNsGH2VfWElF746CT80cqJGi2swW8e0gCNbx1Cdj2MdlC
iwHNp7ybQbk2lXZotPH2tWj2iQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLEXT+KO
tPWzxl6nwfdieP8iIOBwMB8GA1UdIwQYMBaAFMqHenrvHbsEVkh/Yf7mmTY3VB5d
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTA1My84NzIwMzA1RTQ0
OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3UldTSDloX3VhWk5qZFVI
bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhsMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
QTA1My84NzIwMzA1RTQ0OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3
UldTSDloX3VhWk5qZFVIbDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAjJnfT5/6y+poJoclHL8FN5gNYsb0gGmoCpgS7TFlaHeqcIo9rgu0p6qDM5fS
MLKjui2fvJ+alP8deY6hauHzv+rJomPC4t98d7tPM7SeMD1r7ACxXO66HrYnFrZW
2T/O4Q9y2euDlcNC6yw2Z+QgrDyHH0GETPp8YUlBj0c7TvPeZXnKwPAJ+JXvbnaO
1VZeDS/APEwczkRFcYGfmGKGu4J59poTuf51+RMTOXKBCIQL7e7tHMsM8sQi4c00
YNB/10XtlE4eKNCYzrnum1Xjced9TpJatrI+Tv+hhTFQTpc224F/0ATOPGU3J7b0
XHSFX8elfB9/QTMrtA9KA5uuEw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:04 2026 by rpki-client