Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft
File:                     YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft (raw, json)
Hash identifier:          7si2uDCqN6X1JoeIuWk5n3K62Wg1kbgydE6ALGJIAxY=
Subject key identifier:   3C:05:2A:49:61:3E:F8:D2:75:6D:DE:FA:EF:DD:F5:1F:1B:14:B5:02
Authority key identifier: 60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04
Certificate issuer:       /CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204
Certificate serial:       0201
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft
Manifest number:          01FA
Signing time:             Tue 07 Jul 2026 04:08:26 +0000
Manifest this update:     Tue 07 Jul 2026 04:08:26 +0000
Manifest next update:     Tue 14 Jul 2026 04:08:26 +0000
Files and hashes:         1: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl (hash: H/y1omrRKDBEjZipBF0zvETMHSlaJBvFUuLdoJiZ4a8=)
                          2: 2BA240AC994111F096074C40C4F9AE02.roa (hash: BaVQtlGks/nXODj3nVj6X8TPxl0CNzfAzBCFqERU/qA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl
                          rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 04:08:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 513 (0x201)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BBED0, serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204
        Validity
            Not Before: Jul  7 04:08:26 2026 GMT
            Not After : Jul 14 04:08:26 2026 GMT
        Subject: CN=6a4c7bba-4196
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:8f:03:bf:6f:24:26:2f:57:f5:cc:d9:6a:88:
                    af:90:0e:c1:56:ca:85:d8:95:df:d1:63:08:e5:51:
                    f4:ee:70:35:3c:72:33:2f:fe:73:0e:5d:4e:fb:52:
                    61:86:9a:05:33:3f:4b:9f:14:74:7b:e0:a2:f2:6d:
                    cc:d8:fc:13:59:4c:73:a2:ad:ac:03:d2:ae:cd:4e:
                    74:1a:72:e8:23:b0:2c:b8:e5:55:bf:88:02:5e:66:
                    8b:31:23:37:03:6b:b4:21:b8:b6:a4:35:94:67:52:
                    04:b1:5f:3c:ae:0f:fa:4a:02:ff:15:67:4f:ab:62:
                    ca:60:4f:f5:cf:fb:c1:cb:cc:c1:eb:49:28:60:17:
                    ab:79:26:23:0d:d1:de:05:86:b8:94:7d:b3:f5:ec:
                    32:c7:ee:16:69:df:0b:b1:61:1e:f1:87:45:ed:10:
                    31:cc:1f:4b:8b:a4:0e:8d:01:d5:40:63:a2:6e:9b:
                    f0:b4:36:96:43:59:d9:43:5d:f2:55:b6:e1:1d:04:
                    75:e1:5a:8d:34:52:b4:5f:14:cb:00:57:ac:8f:d2:
                    61:63:41:2b:86:6c:ba:ef:96:6a:f2:ac:5d:69:52:
                    f2:0e:7d:21:48:33:76:cc:60:e7:9b:68:2a:06:c2:
                    4f:9a:a8:33:27:c6:e3:9b:84:a0:cd:99:cd:8f:52:
                    e1:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:05:2A:49:61:3E:F8:D2:75:6D:DE:FA:EF:DD:F5:1F:1B:14:B5:02
            X509v3 Authority Key Identifier:
                keyid:60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:3a:c0:fd:38:48:0b:ee:62:d4:e0:ca:aa:62:43:6f:4f:6f:
         aa:6f:b0:46:ae:68:66:1d:0e:37:db:e5:f9:1d:e9:4b:b2:7a:
         2f:24:8b:c6:8b:be:0d:83:1b:a2:c7:af:ed:3c:32:ec:49:62:
         c4:c4:fe:3f:f2:0c:b9:63:02:bc:fd:3d:6c:d7:6e:1b:75:ee:
         6a:f3:16:e7:ef:c2:62:a9:c0:1a:a8:77:bc:d3:31:ac:64:f6:
         2b:a8:58:dd:5f:10:4e:66:df:69:c3:52:71:51:a6:b5:33:22:
         90:34:05:0a:2c:80:00:6e:91:7b:3d:ad:ef:76:51:8a:3b:dd:
         d5:b8:e3:ab:3c:50:27:c9:d2:8a:7a:9c:cb:c2:2d:e1:7b:42:
         bb:49:9f:e7:e7:1f:1a:0b:38:ea:6c:40:00:8e:fc:59:87:95:
         c6:b0:93:b2:f7:3f:a9:2a:3d:6f:94:39:75:fb:f7:0f:ec:d9:
         2f:9e:44:3f:ab:b2:34:4f:9c:bc:06:2c:fb:ae:3f:81:c6:d1:
         68:6e:e8:42:74:89:1f:00:bd:fe:81:5a:11:16:7b:f5:d1:3a:
         28:00:0b:37:8f:15:b9:a9:15:ed:c5:53:f1:4b:cd:2c:03:be:
         ef:7e:90:5e:61:f2:e0:e0:06:39:6c:ab:5b:7c:53:a4:b4:eb:
         de:04:5e:68
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkJFRDAxMTAvBgNVBAUTKDYwOUZFQzI1OTQzODBGQzc2Mzk2OTQxNzNDM0NGRTVG
MkI1OTYyMDQwHhcNMjYwNzA3MDQwODI2WhcNMjYwNzE0MDQwODI2WjAYMRYwFAYD
VQQDEw02YTRjN2JiYS00MTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAmY8Dv28kJi9X9czZaoivkA7BVsqF2JXf0WMI5VH07nA1PHIzL/5zDl1O+1Jh
hpoFMz9LnxR0e+Ci8m3M2PwTWUxzoq2sA9KuzU50GnLoI7AsuOVVv4gCXmaLMSM3
A2u0Ibi2pDWUZ1IEsV88rg/6SgL/FWdPq2LKYE/1z/vBy8zB60koYBereSYjDdHe
BYa4lH2z9ewyx+4Wad8LsWEe8YdF7RAxzB9Li6QOjQHVQGOibpvwtDaWQ1nZQ13y
VbbhHQR14VqNNFK0XxTLAFesj9JhY0Erhmy675Zq8qxdaVLyDn0hSDN2zGDnm2gq
BsJPmqgzJ8bjm4SgzZnNj1Lh+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDwFKklh
PvjSdW3e+u/d9R8bFLUCMB8GA1UdIwQYMBaAFGCf7CWUOA/HY5aUFzw8/l8rWWIE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkVEMC80QzE3QTA0RTc3
RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4ZGpscFFYUER6LVh5dFpZ
Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1lKX3NKWlE0RDhkamxwUVhQRHotWHl0WllnUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
QkVEMC80QzE3QTA0RTc3RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4
ZGpscFFYUER6LVh5dFpZZ1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAazrA/ThIC+5i1ODKqmJDb09vqm+wRq5oZh0ON9vl+R3pS7J6LySLxou+DYMb
osev7Twy7ElixMT+P/IMuWMCvP09bNduG3XuavMW5+/CYqnAGqh3vNMxrGT2K6hY
3V8QTmbfacNScVGmtTMikDQFCiyAAG6Rez2t73ZRijvd1bjjqzxQJ8nSinqcy8It
4XtCu0mf5+cfGgs46mxAAI78WYeVxrCTsvc/qSo9b5Q5dfv3D+zZL55EP6uyNE+c
vAYs+64/gcbRaG7oQnSJHwC9/oFaERZ79dE6KAALN48VuakV7cVT8UvNLAO+736Q
XmHy4OAGOWyrW3xTpLTr3gReaA==
-----END CERTIFICATE-----
Generated at Wed Jul 8 07:13:26 2026 by rpki-client