Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft
File:                     y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft (raw, json)
Hash identifier:          GHClALflDJjpXn7aafOWADaZYq9rm6n1bjDQHw0RpWA=
Subject key identifier:   A3:A7:64:96:B0:0F:21:08:6B:44:AB:7C:D3:44:A4:7B:0D:0F:53:F5
Authority key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79
Certificate issuer:       /CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479
Certificate serial:       01D7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft
Manifest number:          01C8
Signing time:             Sun 01 Mar 2026 04:38:17 +0000
Manifest this update:     Sun 01 Mar 2026 04:38:17 +0000
Manifest next update:     Sun 08 Mar 2026 04:38:17 +0000
Files and hashes:         1: y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl (hash: rvV5FcLgxt77PZBJ1pK32EfZQjoujhIZQOLuxqxtldc=)
                          2: A910F37297CE11F0885B0A30C4F9AE02.roa (hash: uh2P47IBcHMM0L8oBBKfgghiw2YLRwDywND7UD5FXBE=)
                          3: B752E03A97CE11F0ADE43030C4F9AE02.roa (hash: QABA7r3c5bhYEoxOIKS37tG5+qLaZHIwuiYwF2+lVog=)
                          4: 6A0C1182CA9D11F084B0E810C4F9AE02.roa (hash: JajtVxpbHZnBdHiaM28AkvH5E922BJLDjWvD5zvNQn0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl
                          rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 08 Mar 2026 04:38:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 471 (0x1d7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479
        Validity
            Not Before: Mar  1 04:38:17 2026 GMT
            Not After : Mar  8 04:38:17 2026 GMT
        Subject: CN=69a3c2b9-5acf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:7f:41:48:b8:f9:be:aa:4d:72:eb:23:81:7d:
                    20:69:7a:a9:d8:6e:8f:84:8d:00:82:41:ee:50:96:
                    8a:8a:e5:69:bc:a3:e4:63:d9:09:cf:de:2a:51:b4:
                    df:ad:cc:6d:6c:05:f3:9a:68:b8:c0:e0:97:e3:2b:
                    ea:57:ff:6b:53:23:e6:bb:d3:ee:62:46:02:09:f8:
                    7c:22:50:58:a4:10:a4:f7:0a:d7:25:72:96:02:4a:
                    4f:03:8e:a3:53:03:4e:ee:eb:f3:c8:34:50:7c:7c:
                    5a:93:7d:e9:e0:8f:e8:19:1a:45:9c:c0:e8:b5:bf:
                    2e:8f:4d:c6:60:41:c6:2a:41:cf:42:11:a5:b4:7e:
                    53:a2:e2:c5:c1:0f:91:a0:1e:ca:83:14:1f:fc:7a:
                    02:81:3a:6b:2a:d8:72:fd:89:44:e0:cc:ce:ba:4d:
                    56:c4:17:f0:4c:03:6d:45:4b:e5:81:6d:11:8a:4f:
                    33:82:ac:2c:97:cd:f3:55:6f:b1:61:e0:c8:57:94:
                    82:a6:89:51:d5:66:cf:0e:ad:e4:cf:ce:6a:64:a7:
                    ff:52:b1:a6:fd:02:07:98:b1:98:72:4e:9c:c1:e3:
                    45:c2:ec:b5:b0:5f:1d:67:1e:d8:c4:20:41:46:d7:
                    4d:36:79:23:51:41:5e:d9:a7:06:2a:9c:08:93:4e:
                    d7:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:A7:64:96:B0:0F:21:08:6B:44:AB:7C:D3:44:A4:7B:0D:0F:53:F5
            X509v3 Authority Key Identifier:
                keyid:CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:ed:74:a6:21:c0:8b:eb:5d:90:de:c5:94:bf:89:03:7a:dc:
         d3:9e:34:81:37:dc:8d:12:93:44:33:94:cb:56:a1:86:26:47:
         11:e6:df:00:fe:88:de:59:81:8f:7c:ec:7b:e2:47:22:ec:34:
         40:27:27:84:70:4a:df:87:55:bc:9c:e1:d5:6f:cd:56:ce:74:
         85:38:09:6f:a1:69:9a:97:b6:dc:34:b5:84:29:56:0b:7c:29:
         76:58:36:40:58:8a:c7:77:7a:b1:b7:be:0d:1c:4c:25:c9:2f:
         3b:a9:7f:5c:48:a8:f7:26:36:ed:2f:e6:b8:50:9f:b6:a6:28:
         b7:b2:4e:25:34:ef:f3:c1:9d:26:8e:a8:25:ea:e1:70:5f:e7:
         6d:42:46:0b:e1:77:e1:5f:9f:b1:be:36:43:35:ae:a9:87:4a:
         39:2d:7b:df:b9:c3:3f:98:99:f7:4e:2a:43:fd:8e:e1:09:b4:
         08:d9:36:ec:4f:c1:45:fa:fe:02:71:50:9f:f3:7c:7c:6b:95:
         25:b6:a0:d6:15:42:13:00:d7:78:0c:89:78:49:12:6c:f5:95:
         c5:7b:ca:9b:7a:81:78:a7:ee:c2:d2:88:e5:3d:a6:4a:fc:10:
         bf:8f:6b:2a:8c:94:54:62:ab:03:01:ab:e2:24:ff:d6:1e:f3:
         0c:6d:4f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:19:21 2026 by rpki-client