Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft
File:                     y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json)
Hash identifier:          wTuC9Hc6De5VYACfQXAJjpzvxbo2M8Jq0L0e8QaFbbw=
Subject key identifier:   4F:CB:DC:20:CB:16:28:4D:8A:DE:F5:CA:A1:A2:80:07:94:39:3C:5F
Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1
Certificate issuer:       /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1
Certificate serial:       012B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft
Manifest number:          011D
Signing time:             Fri 17 Jul 2026 07:10:06 +0000
Manifest this update:     Fri 17 Jul 2026 07:10:06 +0000
Manifest next update:     Fri 24 Jul 2026 07:10:06 +0000
Files and hashes:         1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: sjhRYxHbW9ycZP7eOpClCjVF9G9zJIH9T7kr6M0e4NU=)
                          2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: scPqVoYPhM9N9nt8I3yfdS2nCVlGwPE0LU2L+VLMObQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl
                          rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:10:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 299 (0x12b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1
        Validity
            Not Before: Jul 17 07:10:06 2026 GMT
            Not After : Jul 24 07:10:06 2026 GMT
        Subject: CN=6a59d54e-2a4c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:61:34:7f:dd:a6:a0:ba:1f:9b:a1:1d:0f:a1:
                    9e:a1:34:1b:43:37:7f:f8:83:76:30:8c:8c:06:86:
                    2b:00:d2:6a:80:95:6d:5c:f5:5d:2d:a4:97:d4:51:
                    6c:07:50:5e:54:55:91:6c:fa:e7:13:92:97:8d:f5:
                    21:67:24:47:4b:fc:11:97:4b:d7:db:23:e6:dd:5a:
                    36:b3:7b:77:fb:c1:c1:d1:21:b6:9a:41:db:ee:47:
                    c4:12:9e:54:fe:ff:57:33:6e:bf:a2:a8:ea:63:1a:
                    28:82:b4:c7:53:2c:dc:dc:e5:0b:eb:12:aa:21:10:
                    50:d9:53:e7:2e:14:8c:87:3a:2b:52:bc:05:71:fd:
                    73:b1:b3:6d:77:a2:22:66:e1:eb:56:23:31:94:e7:
                    1b:8c:cc:eb:f5:1a:82:98:e9:95:6f:91:b1:15:3e:
                    ed:e4:d2:75:55:5d:8d:5c:bc:dc:2e:96:9c:14:54:
                    58:ff:3d:b4:a0:9e:38:8b:7c:f9:56:14:55:35:b8:
                    3b:d6:e3:21:a7:c7:b7:97:8f:12:12:e4:2f:d5:d8:
                    4f:5f:57:db:f2:33:62:79:15:08:9e:21:96:3f:0b:
                    f0:ed:17:d4:3a:ed:cf:85:4c:07:5b:d3:2e:cb:e8:
                    b0:1a:83:7c:c0:ea:0d:6b:65:74:19:e7:d3:65:b7:
                    3f:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:CB:DC:20:CB:16:28:4D:8A:DE:F5:CA:A1:A2:80:07:94:39:3C:5F
            X509v3 Authority Key Identifier:
                keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:bd:c9:9e:75:fd:60:d8:ac:25:2f:d8:53:77:9e:3a:9d:4f:
         1c:f8:91:1e:53:6f:f6:3d:11:e0:9b:65:41:ae:00:cf:ee:95:
         80:55:e9:b2:1f:ae:54:fd:9c:e6:b1:44:1f:7b:ad:19:ac:98:
         73:79:13:1f:06:81:27:c8:92:e3:f9:dc:4e:3c:75:ce:0e:7d:
         03:06:c8:06:f6:35:0a:fe:79:46:51:9e:12:a6:8c:ab:3d:88:
         a5:07:4e:b2:52:02:a9:65:e1:5b:79:8f:0a:90:d8:67:88:31:
         cd:1b:6a:a6:5b:9e:28:02:3e:e1:40:b6:a4:ba:b1:ea:a7:16:
         15:f6:a3:f0:ca:cd:3e:43:40:0a:e8:1d:18:a5:6f:30:ab:e0:
         de:b2:d9:5b:b5:67:16:a0:62:a0:a2:a7:b9:08:66:2f:f5:7d:
         dc:b9:6e:35:3e:8f:0e:cc:8f:26:e7:12:e2:02:42:2e:b1:e8:
         34:c0:ae:55:f3:10:63:22:3b:b9:a6:da:3d:e6:fa:29:29:97:
         6f:2e:02:a6:78:ed:db:a7:c9:5f:c6:9b:2f:df:2c:b8:5b:38:
         7f:a5:c9:32:46:ca:59:2d:71:f1:db:26:da:52:7c:e9:da:55:
         d0:75:2d:a1:48:f4:6a:a6:3a:6c:14:91:18:2e:2c:98:3e:bb:
         56:87:d1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:39 2026 by rpki-client