Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft
File:                     ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json)
Hash identifier:          yvxes83pBlitiJcG9neHpGcrM8GiiNgsiTwUJIwZFdU=
Subject key identifier:   FF:0F:9D:5D:70:40:C3:7B:20:11:B5:C8:89:8B:0F:47:E3:96:E9:50
Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0
Certificate issuer:       /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0
Certificate serial:       03E6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft
Manifest number:          12FB
Signing time:             Sat 04 Jul 2026 17:38:43 +0000
Manifest this update:     Sat 04 Jul 2026 17:38:42 +0000
Manifest next update:     Sat 11 Jul 2026 17:38:42 +0000
Files and hashes:         1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: 1lpEWqIRBZ1vDw39pCJR8Xi6AkNIsBCwmV9nQT+0Agg=)
                          2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: +CMTAtAhA5A3bcW+qweztRhJOEGADprPEZzn/dd78sw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl
                          rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 17:38:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998 (0x3e6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0
        Validity
            Not Before: Jul  4 17:38:42 2026 GMT
            Not After : Jul 11 17:38:42 2026 GMT
        Subject: CN=6a494523-61b3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:98:f2:1b:f2:9c:47:89:d6:0d:61:d4:e1:13:
                    af:53:47:eb:23:52:20:03:2d:b5:ff:3f:b0:34:9c:
                    12:3d:6d:27:c8:23:0c:9f:e3:7c:1b:3b:01:1c:f1:
                    85:28:8d:b7:05:c0:71:64:7a:0d:4a:7e:57:b3:e6:
                    2e:a1:03:23:13:bd:71:2b:44:92:1d:13:79:09:a1:
                    d0:5b:e0:43:50:8c:64:25:80:a0:55:4c:e7:ed:f0:
                    81:26:db:85:4e:1b:07:5d:27:9f:31:1b:4e:a0:0a:
                    7a:ba:df:50:37:3a:99:5d:9a:89:cb:93:ef:9e:c4:
                    a9:19:cc:aa:91:96:ba:3b:c4:c3:8a:40:f5:b1:a3:
                    26:31:8a:24:f7:86:08:e4:b6:33:75:af:54:59:cc:
                    bf:f1:c3:8b:ea:5c:65:cd:6a:04:8f:fb:e7:9f:57:
                    62:f9:87:65:7a:d7:19:64:2b:67:f2:d5:f4:3d:f5:
                    72:8d:91:35:04:b4:89:80:2d:9a:d0:ce:93:58:c2:
                    45:08:ca:e6:4f:15:ea:72:f2:f0:67:99:54:4d:54:
                    4a:98:b8:3a:47:6a:83:64:8d:d1:3d:03:54:00:e4:
                    8e:99:00:9a:0a:a6:ed:9e:85:c9:3b:b5:b9:e2:e2:
                    e2:07:30:5f:71:35:be:b3:f9:5a:83:78:e5:67:5b:
                    12:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:0F:9D:5D:70:40:C3:7B:20:11:B5:C8:89:8B:0F:47:E3:96:E9:50
            X509v3 Authority Key Identifier:
                keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:d2:b3:29:73:b1:3a:67:4d:99:85:67:14:5f:f3:76:d0:b6:
         e7:88:a9:d0:a7:6f:f0:2d:f1:9b:c1:97:61:c6:54:50:cc:8a:
         db:61:77:68:8a:5e:f2:53:7a:a5:c2:c2:7b:b7:45:af:08:73:
         90:2c:a9:1e:65:f5:5c:5a:b9:b8:4b:3a:a8:6d:3b:98:b4:5c:
         42:7d:2b:10:a4:b2:18:1b:23:61:3a:31:2f:0d:d2:d4:a3:07:
         cf:61:f5:05:81:ee:e7:7a:4b:67:61:90:58:f6:a7:d5:e8:69:
         ce:ff:82:cd:4a:d6:32:75:05:5d:da:0b:27:44:87:52:1f:4e:
         70:1b:96:50:0e:1f:ac:46:94:fb:e6:26:e6:7e:07:68:15:cb:
         3a:8b:96:20:6c:16:2e:10:83:61:84:04:5e:a2:04:f8:fd:6b:
         6f:a1:39:ca:e8:b7:43:5d:2a:87:e6:22:ed:a1:4b:87:13:2c:
         16:66:21:5f:32:d8:45:7a:b7:4e:fa:3a:8f:01:3c:ca:63:a1:
         79:eb:d2:68:7f:17:8c:1a:42:f5:7d:69:27:4a:7a:2c:e9:ca:
         2f:6e:fa:b5:66:ac:ec:89:18:0e:e1:d7:f5:2f:8c:ea:aa:c6:
         22:14:54:66:d3:7e:91:15:b7:b5:cb:48:6e:ed:98:fa:ab:a0:
         16:e7:79:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:55 2026 by rpki-client