Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft
File:                     1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft (raw, json)
Hash identifier:          N21cTiHGWTbq1NgovxoBc+Cbd4Qp1XZf/1dxeuY2YHA=
Subject key identifier:   B5:CC:A9:7C:25:2E:29:39:4A:89:29:D2:AE:78:18:87:D2:A7:EE:6E
Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02
Certificate issuer:       /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802
Certificate serial:       01A3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft
Manifest number:          0C78
Signing time:             Tue 22 Jul 2025 19:40:44 +0000
Manifest this update:     Tue 22 Jul 2025 19:40:43 +0000
Manifest next update:     Tue 29 Jul 2025 19:40:43 +0000
Files and hashes:         1: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl (hash: I+eyxm6SrLoRQKeOEfWUKlfTK5MqLYtiI3jZIl3DXwI=)
                          2: 751E90665BAB11EFB9769A80C4F9AE02.roa (hash: eILOAPk7hEfHA4Xc/eZDuicer6q0kZbC4fsjNG1XiFo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl
                          rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 19:40:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 419 (0x1a3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802
        Validity
            Not Before: Jul 22 19:40:43 2025 GMT
            Not After : Jul 29 19:40:43 2025 GMT
        Subject: CN=687fe93b-9c7d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:e3:3f:08:c9:3a:8d:95:84:73:18:da:82:f1:
                    79:86:34:bf:3a:a2:87:cc:6f:49:d4:dd:85:94:1a:
                    fc:ae:5f:9e:63:59:bc:cd:c0:9a:5e:bc:18:2e:d6:
                    38:d8:b7:ae:78:51:a7:7c:08:9b:e1:42:aa:8e:a4:
                    8e:eb:49:24:6f:0c:3a:bb:4f:4b:dd:2a:56:95:70:
                    c7:68:e9:f4:14:5c:18:84:bd:ae:8f:49:a4:3d:c8:
                    3b:26:c1:0e:5a:dd:ad:5d:0e:30:57:af:c9:c2:4f:
                    b2:b8:90:b6:27:6b:0b:ba:68:ba:db:3e:8b:e2:0a:
                    1b:e1:00:52:b1:4e:f2:96:b7:47:37:6b:06:ce:8e:
                    23:74:73:f2:55:10:94:62:f9:9a:66:27:71:64:8e:
                    04:1f:2c:2a:49:34:3b:4c:44:a0:7b:16:e9:2f:49:
                    b1:70:b5:29:bf:f9:cb:17:9e:11:3f:83:c5:6f:02:
                    89:d1:74:95:e7:53:df:db:88:04:c0:ef:1e:f2:2c:
                    d2:85:2d:c0:01:1a:8f:77:a2:a2:7a:88:1a:5b:58:
                    f2:09:87:cd:39:8c:ff:65:0a:01:33:da:f9:eb:48:
                    b7:39:51:0e:c2:60:a3:55:0a:de:84:dd:17:13:5c:
                    b6:bd:73:9d:5d:9f:7f:8f:63:b9:ca:8d:30:80:3d:
                    7f:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:CC:A9:7C:25:2E:29:39:4A:89:29:D2:AE:78:18:87:D2:A7:EE:6E
            X509v3 Authority Key Identifier:
                keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:da:b5:58:2e:b2:b9:b3:18:44:26:1e:db:28:a4:03:2c:eb:
         12:7a:42:3f:7f:9f:a6:a8:14:c4:c9:52:8f:a6:7f:3f:18:32:
         f5:63:85:c4:44:28:26:6f:ab:4b:a0:d2:fb:e3:cd:17:30:11:
         07:29:81:71:96:a7:18:f1:65:6e:4c:8d:15:27:36:6a:97:18:
         cd:16:de:ad:6e:41:d8:c7:5b:1b:e8:20:8f:31:bf:00:ae:cf:
         b4:b0:25:44:96:80:3a:94:c3:27:bd:fc:fb:01:78:cd:4e:21:
         a9:47:12:c2:53:14:f7:85:6c:45:a3:94:4d:d2:dc:cd:3d:1b:
         85:35:2f:28:95:c5:2b:65:05:16:10:e1:4d:82:52:26:64:32:
         a0:84:4a:32:93:0e:1b:ba:d7:75:28:76:85:bb:07:a8:e5:a1:
         7e:b5:fe:46:07:b9:1a:91:7f:0c:83:9c:05:99:79:71:76:dc:
         2e:1b:9e:1f:d8:92:8a:2e:53:83:f6:f5:4e:8e:f4:c7:a4:8c:
         37:c3:a6:4d:4b:03:0d:83:eb:14:be:21:0a:c9:f2:82:70:67:
         16:7a:e1:ad:3c:a0:86:fa:02:27:04:dc:c9:25:67:f8:9b:d2:
         a9:a5:a1:08:ba:4b:07:39:5b:07:a0:2f:c1:38:8c:3d:8e:37:
         7c:d9:97:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:04:20 2025 by rpki-client