Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft
File:                     y78mA3JNeFZrHBLDLVxIH10w8fI.mft (raw, json)
Hash identifier:          14BkWeNz9ckdsQJ4B0E1dTEY4xaU+Vy6hta29LFDqyo=
Subject key identifier:   34:19:F5:CA:A6:5D:95:91:D5:5D:3B:05:3F:8E:99:9D:A4:C6:03:14
Authority key identifier: CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2
Certificate issuer:       /CN=A91B7700/serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2
Certificate serial:       0442
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft
Manifest number:          043B
Signing time:             Thu 09 Jul 2026 01:28:34 +0000
Manifest this update:     Thu 09 Jul 2026 01:28:34 +0000
Manifest next update:     Thu 16 Jul 2026 01:28:34 +0000
Files and hashes:         1: y78mA3JNeFZrHBLDLVxIH10w8fI.crl (hash: nvvEgJkQB6wXauwbBC29hmz4UfSi4Uq1SBVCS8knWXY=)
                          2: 93D60566AE5B11ECB19C1569C4F9AE02.roa (hash: Wrx7+0yyE0y6mHBZKupTJpJMKjJY9lireuqMWBGxSlg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl
                          rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 01:28:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1090 (0x442)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B7700, serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2
        Validity
            Not Before: Jul  9 01:28:34 2026 GMT
            Not After : Jul 16 01:28:34 2026 GMT
        Subject: CN=6a4ef942-509d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:4d:a8:3e:3c:2c:e0:d0:8c:ca:28:88:3f:a3:
                    3a:68:0d:cf:33:0c:de:31:cd:a8:c0:e9:a1:00:0a:
                    5f:52:f8:84:f5:47:a8:1b:d4:18:9a:30:f5:54:c7:
                    42:60:d7:3f:05:cf:e1:87:69:94:2a:14:89:11:e9:
                    76:3d:ef:71:99:e6:b4:87:89:4c:0d:ea:b4:5f:16:
                    36:e5:b7:00:c5:0f:4d:8d:b1:34:58:38:4a:4d:a7:
                    51:62:52:86:21:94:77:58:c6:4e:03:b5:84:58:ba:
                    02:02:8b:03:91:c1:af:96:b0:f8:98:51:78:b6:f3:
                    cd:4c:09:5a:99:66:43:b8:67:91:e9:a6:21:db:c6:
                    cc:a3:33:69:f4:96:b8:48:ce:aa:90:1f:eb:11:1e:
                    d8:ec:f2:bc:26:9e:f5:ae:0b:15:af:a1:59:b0:df:
                    a4:06:47:ba:6a:f2:68:4b:98:8c:6e:cf:77:08:b1:
                    a9:fd:96:f6:60:33:09:a7:97:a9:2f:53:e5:f4:f3:
                    e6:27:84:e2:ba:94:36:6e:6a:29:f0:d2:ae:14:fa:
                    12:79:b0:2e:5d:ae:2e:ce:bc:bf:0c:b1:46:53:ad:
                    b2:80:40:6b:eb:2e:d2:ea:25:9f:c1:59:28:6b:a5:
                    c9:f0:f8:ca:1b:06:84:9a:56:ed:c0:50:1b:22:8c:
                    af:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:19:F5:CA:A6:5D:95:91:D5:5D:3B:05:3F:8E:99:9D:A4:C6:03:14
            X509v3 Authority Key Identifier:
                keyid:CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:f4:cb:f6:bd:33:8f:c8:a6:45:b6:70:32:87:25:d1:db:3b:
         13:23:07:52:b5:d7:cc:c8:55:bc:e3:b2:af:9c:4e:ab:de:32:
         ca:84:28:3d:e3:79:4d:fb:fc:99:01:77:f5:ee:b7:27:5f:9f:
         54:07:80:7e:03:4e:49:12:e3:23:2d:da:9f:3b:28:1d:da:22:
         17:4c:4e:71:c2:87:b2:9b:95:8f:76:15:aa:24:14:e4:c9:10:
         b3:49:2f:7c:8a:a1:5a:25:16:a0:bd:89:8a:c4:9b:b1:b6:04:
         60:ca:20:df:40:9f:7f:ba:8b:10:95:1f:00:a6:6d:4c:ea:f5:
         2d:f0:81:ee:b6:9b:12:56:6b:14:ff:0b:72:f8:34:0b:99:a6:
         ff:ea:b7:33:02:24:cd:74:d2:2b:a3:70:a0:a3:7f:23:72:ed:
         a3:ea:79:cf:83:73:95:1d:6e:23:41:fc:38:95:a5:71:a5:a1:
         29:14:2f:4e:a9:ba:9d:80:49:3a:a7:a7:fe:90:39:03:55:8e:
         53:7c:dc:59:08:2d:fc:e0:48:d3:d6:87:f5:a2:38:66:be:68:
         8b:48:12:ec:fe:25:09:31:4f:83:ac:a2:fe:aa:b1:5b:24:eb:
         bc:87:84:26:1a:27:36:29:09:b2:18:96:a4:5a:dd:7a:5b:06:
         d5:c8:73:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 14:29:55 2026 by rpki-client