Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft
File:                     1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json)
Hash identifier:          7GKKb2n6pUdVkXcvHZaVRI4/5+ijRXK6+KDsbuCNs+U=
Subject key identifier:   72:44:2F:1E:7A:5A:26:B9:15:63:29:48:2A:DE:9B:13:0B:AA:FF:49
Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2
Certificate issuer:       /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2
Certificate serial:       CE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft
Manifest number:          CB
Signing time:             Fri 17 Jul 2026 08:02:10 +0000
Manifest this update:     Fri 17 Jul 2026 08:02:10 +0000
Manifest next update:     Fri 24 Jul 2026 08:02:10 +0000
Files and hashes:         1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: /84czKlJY++agBb6AmbfJhJJvLG4e2Ajy9rp2IIoTFY=)
                          2: D28B7DD450E411F081600061C4F9AE02.roa (hash: oi0JC/Dg/qtN4Sq4ydksp3+2DNk0fSKtyYZSAHUSHgk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl
                          rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:02:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 206 (0xce)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2
        Validity
            Not Before: Jul 17 08:02:10 2026 GMT
            Not After : Jul 24 08:02:10 2026 GMT
        Subject: CN=6a59e182-768f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:e8:17:14:6f:d9:a3:35:e9:9e:f5:32:f7:71:
                    74:21:9b:51:7b:77:d9:e2:1f:20:29:60:55:7f:78:
                    0a:be:cc:5d:1a:f1:27:64:d1:be:88:74:86:f7:5f:
                    ca:90:cb:df:e5:cb:1b:31:7f:e5:12:80:8e:eb:bf:
                    17:f1:b1:67:3a:14:37:1a:1a:be:27:06:49:6d:5a:
                    87:51:30:71:3f:42:bc:25:cb:3f:34:26:6d:94:d0:
                    8b:d2:b1:33:6f:75:f4:b7:8f:41:cd:08:0c:a6:0e:
                    c0:e0:06:4e:eb:e4:64:9c:0c:1d:ef:29:3b:1f:e2:
                    a3:85:9e:f4:6a:fa:7d:d2:80:e2:ff:05:0c:e5:22:
                    1d:d1:c9:89:57:d2:79:42:0e:53:05:1f:59:37:ab:
                    eb:03:f1:f6:ba:03:02:12:5d:65:99:6a:56:ad:20:
                    61:a9:70:2e:89:61:a0:c7:9c:e3:67:13:c6:16:fc:
                    0e:8c:9b:5f:e9:67:f1:f2:98:26:e8:89:fe:54:4a:
                    fa:22:c0:5d:ec:5c:86:99:5d:24:64:55:93:75:d3:
                    aa:07:90:bb:a2:32:2c:83:b2:22:15:98:94:90:af:
                    1c:a6:22:fc:ce:21:bf:4e:a5:ad:9a:bf:da:31:e6:
                    8f:26:37:8a:5f:95:3b:d4:bc:0d:9d:9e:98:4a:a3:
                    5c:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:44:2F:1E:7A:5A:26:B9:15:63:29:48:2A:DE:9B:13:0B:AA:FF:49
            X509v3 Authority Key Identifier:
                keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:af:f7:7b:5d:e7:77:53:b0:dc:e8:f7:93:e9:ac:2e:e3:cf:
         13:7b:3c:c6:b8:35:7e:dc:7d:ff:f7:b0:e8:55:44:18:51:09:
         ab:a4:85:e6:1c:05:6d:de:24:54:06:a5:28:8f:ca:c2:ef:69:
         47:1b:d8:f4:5b:0b:46:18:cd:e8:20:39:6c:9a:6f:10:6d:a9:
         60:f6:70:9a:26:72:2d:7f:91:ef:3d:2e:7a:7c:37:45:df:25:
         3e:02:75:f8:45:e9:93:cf:1d:44:02:e7:73:10:50:42:64:b6:
         2b:ca:79:7c:68:c4:49:92:81:ce:0a:3e:c1:15:91:af:81:14:
         93:55:29:27:ec:f8:ce:be:ea:ca:74:dd:05:a0:17:e7:c4:33:
         c9:c6:5e:f2:f7:27:0d:c8:a5:31:52:fb:82:86:9c:d9:a0:4e:
         1b:06:cb:75:12:f1:d5:a5:74:ba:36:ea:b6:00:31:fe:b4:74:
         3a:27:1e:7f:e3:12:86:86:d6:e9:36:7b:42:f3:56:14:31:75:
         b7:77:6a:63:06:1a:8d:ba:32:8b:6a:f9:4a:77:37:77:a6:3a:
         4e:4b:fe:a8:72:09:02:86:50:21:73:74:9b:0a:16:e4:19:39:
         6f:8e:c6:4f:45:70:7a:b0:1c:e8:cd:ff:5d:d4:e6:58:36:32:
         f5:d4:a6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:24:11 2026 by rpki-client