Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft
File:                     rUMyA4JywtsyFd2jrfsBU1QVaRM.mft (raw, json)
Hash identifier:          5SEnBy78XiLarIIW1NOnP+6/0wq3QlklQYPipuXiaYc=
Subject key identifier:   3F:66:F9:A7:91:F4:90:2B:2B:A6:A9:1F:CC:E6:CD:3A:17:BB:E5:D7
Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13
Certificate issuer:       /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913
Certificate serial:       0185
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft
Manifest number:          017D
Signing time:             Fri 17 Jul 2026 05:44:21 +0000
Manifest this update:     Fri 17 Jul 2026 05:44:21 +0000
Manifest next update:     Fri 24 Jul 2026 05:44:21 +0000
Files and hashes:         1: rUMyA4JywtsyFd2jrfsBU1QVaRM.crl (hash: cAovAH79tboh47R9/FNmteUGNgrzNrN2uVQMNmQ1hWc=)
                          2: F74324B0464511EFA4CCFA6DC4F9AE02.roa (hash: jiOqsOopgHWdylNJvQ56lnPS2twkZ7rplvNHVmhQWj4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl
                          rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:44:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 389 (0x185)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CF064, serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913
        Validity
            Not Before: Jul 17 05:44:21 2026 GMT
            Not After : Jul 24 05:44:21 2026 GMT
        Subject: CN=6a59c135-6a37
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:b9:b0:e5:27:a9:e4:fd:43:3b:63:98:ac:42:
                    7c:91:25:a3:33:7e:15:86:32:a8:a0:ca:05:48:3e:
                    7d:88:fc:6e:46:c7:16:06:f6:f9:85:d4:24:75:e2:
                    eb:9f:5e:b6:35:1d:3f:88:e9:71:40:83:0d:70:83:
                    56:2d:92:f3:c8:6b:93:2d:b8:47:6c:05:b9:43:0f:
                    ea:37:e5:d8:48:eb:79:58:2b:88:10:00:45:0e:e1:
                    86:4c:c2:93:14:be:c5:11:88:66:88:d3:87:c8:a3:
                    12:d6:9d:4f:96:2b:7b:e0:17:d0:86:99:54:f4:58:
                    5b:a8:4e:4d:33:d6:32:ab:51:05:32:b4:2c:2c:fa:
                    a6:89:30:1c:da:6a:03:83:a3:ff:79:ac:ae:d1:d5:
                    3a:c0:12:27:e3:42:d2:e4:d5:10:07:69:d1:66:a8:
                    e5:b3:bb:34:0b:36:0b:c0:ba:4f:40:55:dc:0a:d6:
                    47:f8:5d:b8:d6:3f:b6:57:b6:28:1b:5d:9c:51:ae:
                    a7:15:66:38:a8:e8:00:10:64:13:7c:3e:88:c9:59:
                    2f:5d:2d:be:29:63:f7:7f:79:c7:f8:8d:f6:46:ba:
                    fb:65:a5:39:fd:81:ff:e6:50:0f:16:6e:58:30:07:
                    81:7c:8d:11:59:e1:22:34:c7:69:e6:a4:6c:b4:0a:
                    7a:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:66:F9:A7:91:F4:90:2B:2B:A6:A9:1F:CC:E6:CD:3A:17:BB:E5:D7
            X509v3 Authority Key Identifier:
                keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         df:cc:a3:ee:3b:8a:2a:ab:ef:8d:95:c4:9e:36:03:8f:c0:05:
         a6:fe:5c:a2:fe:d2:8c:e0:f7:1d:3a:80:a5:50:32:03:56:4a:
         08:1f:61:1f:d0:88:9a:e4:af:7c:67:6f:92:64:09:b8:18:ec:
         08:9c:01:97:84:5a:7e:e3:d8:db:0b:68:c4:e3:21:f2:89:7b:
         c0:5c:2f:1b:6b:4a:d2:01:a6:e8:a5:df:03:9f:ca:8f:ec:64:
         e7:39:7c:07:7b:d5:83:71:8e:0a:71:a7:af:16:0f:cd:29:27:
         ad:28:f4:58:c5:7f:b2:38:be:7c:7e:17:d5:a5:21:34:b5:86:
         f1:f8:79:73:f1:05:7c:69:7e:7a:36:23:62:09:70:28:36:df:
         f3:1b:e0:36:a5:65:17:f2:c6:ef:ff:06:e2:60:61:70:10:f4:
         39:12:bf:8c:b7:cc:f7:8b:97:86:73:7d:77:db:f2:ad:15:f5:
         15:5f:37:2a:b5:a8:3d:ce:95:84:ad:37:82:2b:43:9b:86:3a:
         77:7e:fe:8d:37:e7:fd:d9:bf:02:34:82:31:6a:51:fe:b9:d3:
         8d:9c:37:ef:d2:fb:e8:84:c6:41:ee:09:95:b1:d4:dd:12:94:
         87:e5:d2:7a:18:9e:7d:22:38:15:f2:b3:2d:b2:4b:55:58:57:
         e6:94:2c:a8
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0YwNjQxMTAvBgNVBAUTKEFENDMzMjAzODI3MkMyREIzMjE1RERBM0FERkIwMTUz
NTQxNTY5MTMwHhcNMjYwNzE3MDU0NDIxWhcNMjYwNzI0MDU0NDIxWjAYMRYwFAYD
VQQDEw02YTU5YzEzNS02YTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArrmw5Sep5P1DO2OYrEJ8kSWjM34VhjKooMoFSD59iPxuRscWBvb5hdQkdeLr
n162NR0/iOlxQIMNcINWLZLzyGuTLbhHbAW5Qw/qN+XYSOt5WCuIEABFDuGGTMKT
FL7FEYhmiNOHyKMS1p1Plit74BfQhplU9FhbqE5NM9Yyq1EFMrQsLPqmiTAc2moD
g6P/eayu0dU6wBIn40LS5NUQB2nRZqjls7s0CzYLwLpPQFXcCtZH+F241j+2V7Yo
G12cUa6nFWY4qOgAEGQTfD6IyVkvXS2+KWP3f3nH+I32Rrr7ZaU5/YH/5lAPFm5Y
MAeBfI0RWeEiNMdp5qRstAp6VwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD9m+aeR
9JArK6apH8zmzToXu+XXMB8GA1UdIwQYMBaAFK1DMgOCcsLbMhXdo637AVNUFWkT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GM0NBNjE3MjQ0
RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0c3lGZDJqcmZzQlUxUVZh
Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFSTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
RjA2NC9GM0NBNjE3MjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0
c3lGZDJqcmZzQlUxUVZhUk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEA38yj7juKKqvvjZXEnjYDj8AFpv5cov7SjOD3HTqApVAyA1ZKCB9hH9CImuSv
fGdvkmQJuBjsCJwBl4RafuPY2wtoxOMh8ol7wFwvG2tK0gGm6KXfA5/Kj+xk5zl8
B3vVg3GOCnGnrxYPzSknrSj0WMV/sji+fH4X1aUhNLWG8fh5c/EFfGl+ejYjYglw
KDbf8xvgNqVlF/LG7/8G4mBhcBD0ORK/jLfM94uXhnN9d9vyrRX1FV83KrWoPc6V
hK03gitDm4Y6d37+jTfn/dm/AjSCMWpR/rnTjZw379L76ITGQe4JlbHU3RKUh+XS
ehiefSI4FfKzLbJLVVhX5pQsqA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:12 2026 by rpki-client