Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
File:                     PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json)
Hash identifier:          SibcxYxIili9YFJecH85FjPFJWQ8Zj1pv0wi+WWE818=
Subject key identifier:   F1:A9:16:FF:5C:5D:37:6C:7C:63:48:FC:45:B6:A8:08:C3:92:8B:54
Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F
Certificate issuer:       /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F
Certificate serial:       036B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
Manifest number:          035B
Signing time:             Fri 17 Jul 2026 01:36:11 +0000
Manifest this update:     Fri 17 Jul 2026 01:36:11 +0000
Manifest next update:     Fri 24 Jul 2026 01:36:11 +0000
Files and hashes:         1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: E4z/yqXIw7/LhEyCYNMgif37E0JX7yGjJLZb4W53+Ss=)
                          2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: O3Ls+9YBYFMKkyDDzAoAnYOjitWoJ58mnyLKpWOVBLM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl
                          rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:36:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 875 (0x36b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F
        Validity
            Not Before: Jul 17 01:36:11 2026 GMT
            Not After : Jul 24 01:36:11 2026 GMT
        Subject: CN=6a59870b-34c0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:fc:86:02:a8:b1:51:5d:4e:54:51:bf:71:d3:
                    26:63:8b:1c:c3:c9:dd:a1:37:7d:72:77:db:c1:8f:
                    e3:07:18:d4:89:82:a8:66:84:89:31:11:6d:02:c9:
                    7c:94:c0:62:46:e9:a4:db:5d:75:da:ad:1c:7b:d4:
                    69:a8:df:a5:72:ab:df:d8:1a:49:a7:ae:42:1c:c9:
                    48:22:0b:22:0f:a4:41:80:79:a3:45:2a:3a:b1:e8:
                    fb:ad:ad:79:32:e0:af:9e:f4:d6:b2:a0:c2:c3:01:
                    dc:78:b5:28:60:73:ea:46:5d:82:47:0b:7a:50:8c:
                    40:ed:78:88:65:11:b8:48:f1:22:0e:16:4e:2c:48:
                    26:7a:8b:8d:0d:69:13:f0:08:9b:33:7f:97:73:b7:
                    cb:43:26:22:33:b0:7b:c7:75:bc:4b:0c:3d:f0:b5:
                    71:f9:e4:fc:37:c7:2e:1a:3a:d6:a6:7c:1a:7b:38:
                    81:c8:9f:7e:b5:f7:e5:f6:02:03:97:af:32:8e:bc:
                    1a:3b:ac:d6:97:ca:0e:9b:e7:43:69:f1:4d:2f:e1:
                    7f:73:98:98:c4:2b:20:d5:4c:ac:98:35:5d:d2:89:
                    3d:23:d1:85:d5:e8:ab:50:78:37:ed:fe:d5:6a:d8:
                    77:80:f0:e4:94:85:62:54:7d:23:ae:6c:cf:2b:5a:
                    9c:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:A9:16:FF:5C:5D:37:6C:7C:63:48:FC:45:B6:A8:08:C3:92:8B:54
            X509v3 Authority Key Identifier:
                keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:61:15:93:b8:46:78:7a:d4:34:82:73:37:14:c8:ee:70:d0:
         c4:f6:c9:72:b1:36:ae:25:d3:e4:65:0c:d8:45:78:7f:49:94:
         01:fa:0c:90:95:b9:e5:99:78:32:d9:a6:97:51:5e:02:1e:88:
         f7:c4:52:e6:c1:3d:97:d4:03:e6:eb:4d:83:e3:3c:5e:28:47:
         58:8e:4c:a9:55:41:f1:8c:61:f1:f3:36:1b:39:02:98:1e:4a:
         74:9d:b3:92:3c:ae:5f:ec:66:24:3f:10:18:60:2c:d8:0f:f6:
         3a:e3:ff:4f:30:54:81:d2:81:0a:23:2d:d3:33:7a:a5:7a:55:
         9c:f2:08:b0:e1:e0:d2:3f:19:b8:92:ce:0d:a9:94:7d:d0:66:
         cb:67:85:b3:84:cc:0a:3f:04:31:e8:65:ea:63:0e:10:3e:96:
         5a:9d:40:4f:22:69:3b:17:6c:87:3b:48:66:47:47:20:91:b0:
         8c:2f:f5:fb:34:94:8c:47:c7:8f:45:ea:c4:c3:e2:90:b4:5e:
         7b:a5:eb:cb:43:f2:0f:d7:4d:ec:76:22:dd:b3:d6:de:78:b7:
         9c:2b:3c:90:33:55:71:38:cb:01:b9:40:54:d3:a3:f4:2a:35:
         61:e8:af:30:1e:22:d8:5d:c6:c5:d6:3b:e7:a9:a5:e4:9c:e6:
         05:d9:28:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:26:36 2026 by rpki-client