Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft
File:                     F61gXQbH7QoUSFwCoS8AFwmiLWI.mft (raw, json)
Hash identifier:          oGdRbI3gUQZ4Oi0WEWbxsJm4Xh8C9k4NiKb4zHVZt7U=
Subject key identifier:   7A:45:E2:38:E4:0B:5C:90:09:66:DD:97:02:01:16:C9:7D:43:CA:FE
Authority key identifier: 17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62
Certificate issuer:       /CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62
Certificate serial:       0167
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft
Manifest number:          0164
Signing time:             Sat 19 Jul 2025 04:08:01 +0000
Manifest this update:     Sat 19 Jul 2025 04:08:00 +0000
Manifest next update:     Sat 26 Jul 2025 04:08:00 +0000
Files and hashes:         1: F61gXQbH7QoUSFwCoS8AFwmiLWI.crl (hash: so2FfOPtF/ytM5lGBsyFhINyoIGNrBNehaTSZt7EIMQ=)
                          2: 0294C902459511EE982FBC6DC4F9AE02.roa (hash: ImURD0YXIXR8XStDPLYGz5z7015ogkyNT0YFkxGE7dU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl
                          rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 04:07:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 359 (0x167)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911BEA7, serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62
        Validity
            Not Before: Jul 19 04:08:00 2025 GMT
            Not After : Jul 26 04:08:00 2025 GMT
        Subject: CN=687b1a20-d8a5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:c6:2d:3f:1f:50:af:86:1a:41:f7:c8:fe:c1:
                    a6:da:56:8b:22:ad:11:6c:78:e9:63:04:ef:fb:3e:
                    5e:d3:1a:04:db:59:cf:8b:c6:ef:e9:4a:80:0e:5e:
                    a1:fe:3a:4a:b2:4e:ed:19:7d:7a:a4:00:88:e1:dd:
                    3e:9d:fb:ec:7b:80:f2:db:15:58:12:7e:b5:29:95:
                    b4:22:b1:9b:70:50:b3:ca:2c:49:51:9c:d6:88:7a:
                    d8:09:8a:8a:ca:2a:06:e7:a0:11:d1:50:21:6e:22:
                    6b:08:5f:52:43:34:dc:80:d6:c0:dc:d1:49:f5:c8:
                    7a:37:e6:3c:a7:e0:39:78:cf:fc:a9:67:de:fe:e8:
                    62:82:39:5e:5b:7d:2d:3e:c5:8d:ec:4e:ee:65:34:
                    9f:0c:47:47:c5:ab:42:5a:2e:95:f9:cb:3a:d7:dd:
                    03:e3:1f:7e:ae:93:78:aa:82:0a:09:9c:ba:8b:00:
                    5a:01:ff:6e:5d:0b:f7:b5:ae:6e:bf:c6:61:85:63:
                    03:24:e7:f9:24:9c:64:b3:1c:d3:3a:6f:cb:b5:06:
                    35:63:e5:b2:4b:e3:2d:95:b6:10:50:71:ab:e9:65:
                    78:05:2a:91:84:2f:77:a0:30:5c:71:af:f1:a1:76:
                    72:2e:d0:47:c4:d0:00:c2:d8:8d:d2:1d:1c:7a:d9:
                    d5:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:45:E2:38:E4:0B:5C:90:09:66:DD:97:02:01:16:C9:7D:43:CA:FE
            X509v3 Authority Key Identifier:
                keyid:17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:02:01:b1:20:ab:4a:51:ec:78:74:7b:a9:d6:13:3b:4a:91:
         01:07:33:c6:1e:84:ea:a4:f6:df:e9:c3:d7:8f:4e:90:a2:f0:
         f2:d3:f4:f0:c6:73:94:c6:b7:4c:80:0d:e2:59:72:2c:0a:94:
         46:3c:50:c8:fb:3d:3a:a0:23:0c:17:44:fd:d1:01:09:9d:23:
         92:14:7f:32:5b:81:1d:18:9f:ed:ce:ac:cd:23:99:7d:a2:83:
         e0:4f:24:ca:43:ce:81:39:5b:b3:e4:91:02:52:6d:bf:28:f2:
         be:20:38:0b:b5:3c:55:f4:6e:92:de:f1:d6:51:f6:6b:0f:f2:
         28:6a:ed:f1:aa:30:f1:9e:51:7d:93:d1:00:f9:32:63:47:c3:
         aa:ce:07:ef:1b:fc:94:6e:44:4b:d7:29:45:08:84:48:ff:30:
         a0:1a:85:31:44:03:cd:c5:c2:4f:1a:32:59:ce:a3:99:8f:a0:
         ba:ac:03:95:f4:52:38:81:72:88:96:41:50:22:ec:e3:ee:39:
         1e:b3:96:d1:1f:6f:52:bc:c2:7d:d1:23:57:68:25:24:12:ec:
         1e:f5:f9:3a:10:a1:c0:c4:d5:83:c6:09:87:f8:29:40:b7:fa:
         ce:80:48:ca:97:db:5f:fc:c3:fa:60:9c:e0:c6:e2:f9:6e:4a:
         10:e7:d7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 07:30:09 2025 by rpki-client