Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft
File:                     y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json)
Hash identifier:          mpfH9waWvQ5/VHwW2kFGY6JaweboRSgkMvmvdMgtgCs=
Subject key identifier:   34:1F:3D:B3:A9:82:D6:46:19:F8:77:7F:20:97:9C:8C:F5:C2:E7:2D
Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2
Certificate issuer:       /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2
Certificate serial:       DA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft
Manifest number:          D6
Signing time:             Fri 17 Jul 2026 07:55:56 +0000
Manifest this update:     Fri 17 Jul 2026 07:55:56 +0000
Manifest next update:     Fri 24 Jul 2026 07:55:56 +0000
Files and hashes:         1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: J/1nU9GqHHiMyHj55DHBqFiJrht3pbLg4wzGA3h/wFM=)
                          2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: 54rNaHs3BHHyTMIFPvOgY9u0ai10wJmM8WXV532IDWg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl
                          rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:55:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 218 (0xda)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2
        Validity
            Not Before: Jul 17 07:55:56 2026 GMT
            Not After : Jul 24 07:55:56 2026 GMT
        Subject: CN=6a59e00c-bc6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:cd:13:fd:5b:cc:01:c1:a0:cc:33:0f:78:a9:
                    e6:58:e8:9f:f2:f0:ff:2c:9b:fd:8e:91:36:41:fb:
                    59:f2:bf:30:a6:bd:b7:e5:4f:20:df:1d:02:e5:b8:
                    4a:ec:bf:f0:c1:a6:85:d9:d0:5c:56:c9:f2:84:fb:
                    a2:50:00:f0:78:fc:5f:2b:ca:d0:eb:75:89:4e:f2:
                    a1:07:7d:27:c0:30:34:4a:c8:19:b1:75:fd:13:b6:
                    35:9c:c7:29:47:bb:8d:19:dc:e9:bf:4c:4a:f0:75:
                    fb:7c:73:53:d5:66:3b:ba:28:19:a2:17:71:cc:f6:
                    c9:eb:09:f6:73:04:41:27:7b:e8:20:88:06:76:81:
                    62:77:7e:10:13:5b:87:7b:db:fb:55:84:6a:21:80:
                    b9:fb:ee:8e:f6:7d:1e:5f:4c:9a:9f:8a:51:4b:a0:
                    88:56:2f:1e:d7:63:fa:56:e5:48:dc:21:8b:a0:b5:
                    44:9c:2a:96:c5:ad:a6:dd:30:2c:c7:bc:75:83:28:
                    24:48:bd:bc:ae:b1:b9:9c:9d:03:84:1b:43:7b:36:
                    50:7e:5e:1e:4d:18:68:3a:b8:11:d0:a5:b9:5e:60:
                    c1:96:77:96:ea:70:17:f3:85:3e:2b:13:19:ec:f4:
                    ad:5d:83:73:32:76:9f:29:e5:b8:91:31:bf:3e:b2:
                    0c:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:1F:3D:B3:A9:82:D6:46:19:F8:77:7F:20:97:9C:8C:F5:C2:E7:2D
            X509v3 Authority Key Identifier:
                keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:bf:ee:0a:45:13:cd:df:89:f8:9b:ab:66:31:4d:67:43:cc:
         29:9b:5f:36:01:3e:12:ef:2d:5b:49:5a:9e:55:d9:6d:9f:10:
         b1:f8:d5:fe:95:5a:ee:08:16:88:51:bc:66:22:76:b0:e8:1a:
         ce:36:86:1b:3c:b9:77:4f:d8:7f:1a:94:d6:b2:88:a3:c8:d9:
         6e:84:d3:08:da:b3:2f:ab:c3:27:f8:64:ba:19:00:e2:83:42:
         7b:4b:75:cc:58:3c:c6:ff:2e:30:1a:9c:ee:53:52:1f:00:50:
         0b:49:30:d8:e3:4b:c1:85:bf:3f:a0:c6:bb:a3:7a:67:a8:a5:
         06:99:69:5f:a1:e7:c3:93:fb:1b:12:0b:b2:01:ed:e9:f5:0c:
         7d:a2:ab:da:80:14:4a:4c:8b:88:c3:9b:7d:44:51:da:9b:f9:
         b0:5b:c4:25:0b:8f:0d:ea:89:59:fe:0a:a1:df:ea:95:52:2a:
         a6:73:ab:47:ed:0b:0c:84:12:2e:a1:39:02:9a:00:cc:cc:4e:
         43:da:5a:e0:5d:51:b8:a2:08:0d:bd:d3:8b:24:71:58:e7:77:
         82:dd:06:67:6d:10:14:16:15:d9:dd:6e:ff:24:12:0c:d8:f2:
         0d:70:21:15:5a:60:7f:10:16:85:40:c8:94:70:ad:ff:ca:80:
         59:69:ed:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:14:28 2026 by rpki-client