Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft
File:                     yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json)
Hash identifier:          TETWSljjPcDyk9s2OeytTTDdlmssym47Tu+m/mwJNOc=
Subject key identifier:   E9:DD:E8:D2:51:6A:ED:86:B3:2E:8B:E3:22:B0:BA:1D:DC:23:A8:90
Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A
Certificate issuer:       /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A
Certificate serial:       057E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft
Manifest number:          0550
Signing time:             Thu 16 Jul 2026 23:59:05 +0000
Manifest this update:     Thu 16 Jul 2026 23:59:05 +0000
Manifest next update:     Thu 23 Jul 2026 23:59:05 +0000
Files and hashes:         1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: GiI5fqJpSHs0XolUJPFc7J3Uc/1/ShpgrK8gX4F1gx4=)
                          2: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: dG9p093s1Ue0rrA4RBzIOjl2As439gOH8sz6VM6eiUQ=)
                          3: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: 1fMszEVclnRMOM/POK57IbuTqKPaZ6i1HdvWDw7RSC4=)
                          4: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: 1S4BYpNOabN3d/LnYoJIPgaMIRT82AJo33zkA94dJ9s=)
                          5: FBB1514E370111F1AC489D14BF833773.roa (hash: ZkDSUGhIzcmjSgjRJZ9cZlXr5/YHk19HP0IIMCiijuA=)
                          6: FC94057A370111F1AC489D14BF833773.roa (hash: JZJalDSQr/IoFea9NxLBWN3ZOZ/DgJ84ZBHO9Nd0bsM=)
                          7: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: YheXK0UgGEB7Z/3VeNqFrG7TEedt8nnqAV/x4ZuFjYw=)
                          8: FB03729A370111F1AC489D14BF833773.roa (hash: AU9dHXjHqTNme6QysdUZa4PCsHy+4a87mRqErQXJ6iA=)
                          9: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: xY/esRTHmVcSEnmni9qKfYB8APe7aNUaqGzW5UYshQs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl
                          rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:59:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1406 (0x57e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A
        Validity
            Not Before: Jul 16 23:59:05 2026 GMT
            Not After : Jul 23 23:59:05 2026 GMT
        Subject: CN=6a597049-a802
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:27:6a:29:5c:b8:71:5a:ff:93:a3:51:f3:94:
                    b5:9e:0d:87:d9:84:7b:82:5b:65:8d:fa:71:22:06:
                    2f:e8:51:f0:6e:9d:9d:11:60:4f:f4:cf:36:81:b1:
                    8d:d6:1b:f5:d8:fb:40:c2:0e:9b:4a:8f:fe:0a:3e:
                    d2:5d:1f:af:bb:e4:e8:1d:d9:47:16:ab:42:dd:c5:
                    b6:b1:39:6f:bf:ad:70:11:12:29:10:44:a3:f4:73:
                    43:6a:7f:23:ff:40:d1:4e:ee:ad:57:a0:fc:94:eb:
                    7a:73:fa:7f:55:0a:13:3a:f2:ff:df:b2:62:e5:eb:
                    ca:98:95:a4:31:5a:63:2a:39:e7:ea:14:fc:8e:d4:
                    55:4d:29:f2:e6:5a:63:77:88:c6:74:70:e2:aa:32:
                    75:97:98:5a:17:62:b1:98:5b:a9:9c:d1:61:4b:f1:
                    04:aa:ff:15:09:e7:5b:85:d7:7c:d4:de:c0:02:d1:
                    82:51:02:1c:e5:fb:13:3e:68:3d:b1:da:3a:62:bd:
                    e0:17:89:7e:8e:98:9b:cb:2d:d6:67:46:69:ab:94:
                    15:eb:fc:fc:7a:fe:91:b3:0b:6a:d7:f2:6a:79:8e:
                    0d:f6:45:19:04:76:49:77:f5:8e:b1:90:72:47:cf:
                    00:f1:48:51:34:c3:c6:97:f2:6c:d3:65:58:db:22:
                    2c:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:DD:E8:D2:51:6A:ED:86:B3:2E:8B:E3:22:B0:BA:1D:DC:23:A8:90
            X509v3 Authority Key Identifier:
                keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:91:a6:a3:38:b3:f0:c2:5f:7b:9a:f8:bb:12:16:e0:a6:bc:
         28:5f:00:1c:8b:01:92:99:d6:4a:8d:bf:4a:64:31:c6:fe:5c:
         8f:98:b8:2c:75:39:c5:a0:fb:33:63:bc:29:df:bc:21:cc:0d:
         bc:60:66:6c:3c:68:d0:00:22:60:70:33:d4:9f:5c:b5:ea:37:
         f7:e4:2f:15:42:72:ad:a3:66:ad:0e:b6:2e:77:9b:95:c2:d9:
         07:63:d6:71:02:ad:39:f9:05:59:09:4a:56:e9:d8:38:8f:c9:
         6f:3e:f2:9a:5f:2a:11:d3:f6:16:39:9a:b5:1a:82:0a:65:b4:
         a2:d0:16:72:53:fc:8d:70:96:f9:bf:ec:f7:93:9e:e1:c1:97:
         14:a7:84:50:59:76:c6:e4:c0:08:a7:04:05:41:5d:35:2d:ba:
         9a:73:36:ac:74:b9:dd:7a:d3:28:d3:39:cd:98:50:44:b5:95:
         da:45:92:59:80:82:a1:9d:6f:52:74:91:93:0b:a1:39:9b:e2:
         c0:0a:c4:3d:43:ea:ee:28:91:ac:8f:55:89:35:39:c2:18:d9:
         46:ba:ee:aa:39:ea:45:16:f1:59:80:60:fa:19:8e:7f:4a:83:
         8e:00:bd:9a:3f:7d:cb:19:7b:6e:29:f1:2d:47:e5:1c:60:09:
         93:95:a5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:10:39 2026 by rpki-client