Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
File:                     Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json)
Hash identifier:          velo5J4KPCcud0uM66NocufuyFpm/D055NvrB2jdMfk=
Subject key identifier:   0B:9B:73:AD:30:89:D7:8A:76:D1:F3:89:BD:FA:AE:E6:9C:B7:1A:36
Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86
Certificate issuer:       /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286
Certificate serial:       0224
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
Manifest number:          0218
Signing time:             Fri 17 Jul 2026 03:53:12 +0000
Manifest this update:     Fri 17 Jul 2026 03:53:12 +0000
Manifest next update:     Fri 24 Jul 2026 03:53:12 +0000
Files and hashes:         1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: VOS97VyAarCWD/s/f5yYaf+iiJQClddcYk6MfSqUmnk=)
                          2: FFD36784600111F19064A2768247A888.roa (hash: V3bllZSRhm3+TX1SYEI07qXQ37w5NHGT/3GcjZvebcg=)
                          3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: tza7lo1L0/WRLtMV4iTseTv38sI/dLZO8/zwvwzsN6Y=)
                          4: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: b0f2l7SFJ4lf6D8dKmqlQhXFnbZKoG40QcikDdNJbvM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl
                          rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 03:53:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 548 (0x224)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286
        Validity
            Not Before: Jul 17 03:53:12 2026 GMT
            Not After : Jul 24 03:53:12 2026 GMT
        Subject: CN=6a59a728-d4bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:b5:7b:06:2d:94:58:f4:0b:1d:6b:40:a4:ba:
                    fb:2c:0d:58:79:46:82:f4:fb:aa:be:fa:cb:18:0b:
                    8f:03:bd:34:24:52:ad:3a:e1:d6:ae:d7:1e:b5:c3:
                    c6:ad:5d:f8:9d:b3:66:dc:02:5a:d1:b8:d8:3d:d5:
                    70:16:7e:d6:63:a8:af:15:66:c4:08:99:35:8d:cf:
                    71:63:c7:97:53:79:41:78:14:95:7a:cf:1d:64:ac:
                    41:5a:d5:18:1d:75:e1:18:06:b7:0f:cd:d9:a3:8a:
                    8f:93:bb:8b:74:cf:b1:88:99:e7:fc:96:8a:df:1b:
                    82:0b:30:e2:29:82:2b:34:c6:98:4d:4d:f8:62:58:
                    11:7f:c6:0c:77:94:e3:2c:7d:6f:c7:f4:ae:50:bc:
                    62:ae:cd:59:0d:32:63:17:f0:03:37:1e:97:d0:bf:
                    e1:c4:80:b1:52:49:04:39:b7:37:e9:96:0f:74:f6:
                    23:74:e9:b7:ba:61:90:2d:cf:3a:c1:a0:81:57:c8:
                    73:b6:d3:39:30:81:e7:66:0e:26:a9:68:ac:c3:3f:
                    dc:e8:4d:33:3b:91:65:a5:e5:4c:9d:85:76:dc:08:
                    6c:48:a0:80:dc:d8:13:78:1b:84:41:d2:d1:24:a5:
                    21:a9:30:4b:15:ff:e3:74:65:44:ed:0b:e6:fe:da:
                    fc:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:9B:73:AD:30:89:D7:8A:76:D1:F3:89:BD:FA:AE:E6:9C:B7:1A:36
            X509v3 Authority Key Identifier:
                keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:60:09:36:f3:59:39:ea:bc:e4:8d:00:97:a4:dd:aa:e3:66:
         55:83:84:c0:81:16:b2:85:8a:74:d5:7d:21:e8:5f:cc:de:a7:
         78:5b:03:a1:3f:38:f7:84:67:1f:31:e7:7d:0f:31:86:1f:68:
         78:e6:f9:e3:23:a2:08:d2:18:58:11:59:c7:92:35:66:77:1a:
         6a:b4:1b:79:39:f3:ba:c8:8d:3f:69:7a:bf:f8:61:5f:d1:43:
         36:d7:b2:5b:62:d2:bf:c1:17:80:4d:56:a7:d5:cf:17:db:67:
         27:f7:0d:83:0b:b2:ab:f5:1b:b9:98:5c:ca:19:78:76:26:ff:
         ba:1d:53:5d:ea:c9:02:fe:81:ed:c4:e1:84:bf:70:e8:e3:65:
         83:10:55:97:68:85:fa:5a:d2:e8:e8:07:d1:e4:6c:b3:bf:48:
         75:25:03:e4:5e:07:c6:f3:f6:3e:57:b3:e7:8b:cc:e3:e3:59:
         66:5f:ed:3e:ae:43:f1:68:61:d6:fc:b1:30:7e:7a:43:62:3e:
         da:3c:8d:10:4b:bb:36:d8:48:fd:c2:ec:7c:8b:a4:af:9c:64:
         0d:2f:79:91:80:96:e4:ce:29:ca:e5:53:e1:d0:14:1d:a3:d4:
         af:59:d6:16:34:f2:a4:fc:4e:15:57:a0:9a:55:4e:12:43:4f:
         1e:75:89:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:11 2026 by rpki-client