Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft
File:                     Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json)
Hash identifier:          +Wu5ZO+xHf+Gjx5TK+5pdUG9LntdJjmySHljSalIfuc=
Subject key identifier:   CE:42:AF:30:DF:D5:8D:1E:8E:2F:A7:35:E1:9B:B7:B2:8C:A0:6C:6F
Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0
Certificate issuer:       /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0
Certificate serial:       017F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft
Manifest number:          017A
Signing time:             Fri 17 Jul 2026 05:45:46 +0000
Manifest this update:     Fri 17 Jul 2026 05:45:46 +0000
Manifest next update:     Fri 24 Jul 2026 05:45:46 +0000
Files and hashes:         1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: fISe/a5/ZUQ3W8oBAiEGtt8WDNHg1hjCNlzeIxOq81k=)
                          2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: y32dMEUN6YUCKolUe/uVA0r0aXZ6vWR2Ez2nh841QQQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl
                          rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:45:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 383 (0x17f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0
        Validity
            Not Before: Jul 17 05:45:46 2026 GMT
            Not After : Jul 24 05:45:46 2026 GMT
        Subject: CN=6a59c18a-a2e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:27:8a:b1:1f:fd:8c:33:05:4c:a4:ba:16:22:
                    6f:e9:a5:8e:93:fd:65:b8:c9:47:e3:23:d4:dd:70:
                    ef:71:d6:15:61:c4:c7:a3:fa:13:c6:b3:fd:17:08:
                    51:60:23:52:83:7e:5f:ba:cd:2e:71:fa:da:ab:b0:
                    8d:e4:48:22:6c:b7:39:36:5a:54:25:62:74:10:f3:
                    9f:73:5c:6d:0c:e4:95:ab:5b:f1:cd:f5:be:15:09:
                    5f:90:ca:98:c8:6f:2e:03:1a:9a:cf:4d:1a:2e:90:
                    9a:2e:23:e3:ae:aa:e0:f1:af:47:df:38:31:15:e2:
                    e1:a9:3a:20:10:cc:b4:6b:94:5d:d4:41:23:1a:eb:
                    79:61:5b:2b:90:2d:35:51:e7:17:d6:86:c4:b7:d9:
                    90:ec:6f:a1:5d:3a:b4:65:37:6e:9f:5e:91:b5:2f:
                    b5:1e:b1:bc:fb:6e:15:a0:18:19:72:52:5a:63:06:
                    3e:f0:39:fc:95:72:89:af:a1:26:0c:89:a2:93:dd:
                    d9:65:82:17:2e:38:d1:0a:36:f3:2a:c2:fb:dc:c3:
                    5b:1a:26:7b:66:61:c9:7a:9b:82:22:50:72:d1:59:
                    9a:25:f8:e6:f8:3b:e1:b0:d0:3c:b8:16:d4:cf:ed:
                    f1:f2:89:16:de:b3:5a:47:6c:bb:b9:aa:7e:f7:8a:
                    97:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:42:AF:30:DF:D5:8D:1E:8E:2F:A7:35:E1:9B:B7:B2:8C:A0:6C:6F
            X509v3 Authority Key Identifier:
                keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:1b:d8:91:a4:0f:d6:9e:54:12:cb:fd:e7:a4:a6:4b:88:32:
         67:9f:ad:98:49:24:29:05:bc:7a:41:f3:40:ea:9e:2c:f4:84:
         83:7f:d6:a5:30:3f:63:38:f9:bc:b3:8f:15:1a:81:fe:a3:b2:
         fb:9b:43:d2:34:27:66:66:33:b5:c3:17:e9:cb:be:c0:3f:99:
         f1:72:82:df:b4:53:a7:7d:ec:f1:0b:20:7e:17:90:07:6a:51:
         75:d4:23:db:bd:6c:d3:51:67:d4:25:cb:26:49:59:79:aa:8a:
         e1:f1:44:ce:05:6c:1b:40:15:f4:1d:1f:3f:09:9b:f3:11:ea:
         48:ee:ed:3d:e1:b4:4d:d5:c9:b5:88:03:86:d9:f8:a9:9a:45:
         2c:f3:5d:d6:3c:6e:16:f4:22:4a:82:3d:f9:b9:04:bb:9e:1d:
         6b:fb:a0:fb:41:8c:91:70:d3:05:d7:27:49:85:68:4c:c1:d9:
         a1:80:54:b8:1a:b5:53:93:f0:79:44:08:52:90:cc:40:f9:bd:
         b6:7d:c4:7e:9a:2b:9f:e5:d9:cf:67:c0:0f:a3:c4:c9:52:2e:
         e6:70:cc:84:20:dd:30:9d:45:de:f6:ec:1b:cd:1b:2e:15:1b:
         1c:02:6e:ec:0d:c7:d1:2a:10:d2:5b:87:fd:e7:20:18:ba:67:
         46:62:d9:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:26 2026 by rpki-client