Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft
File:                     1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft (raw, json)
Hash identifier:          24Qt+zoPlEHIk58Aw3yBiprx2QPBOrGtYu+Q79kShAQ=
Subject key identifier:   98:90:8B:84:35:43:4B:9E:0D:29:BE:8D:8D:89:69:96:91:98:39:9A
Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02
Certificate issuer:       /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802
Certificate serial:       01A2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft
Manifest number:          0C76
Signing time:             Sun 20 Jul 2025 19:31:45 +0000
Manifest this update:     Sun 20 Jul 2025 19:31:45 +0000
Manifest next update:     Sun 27 Jul 2025 19:31:45 +0000
Files and hashes:         1: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl (hash: V5Md9JQLpCgknZAoa/ZH4BcsoC4P/rO43hyx87BhfMY=)
                          2: 751E90665BAB11EFB9769A80C4F9AE02.roa (hash: eILOAPk7hEfHA4Xc/eZDuicer6q0kZbC4fsjNG1XiFo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl
                          rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 19:31:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 418 (0x1a2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802
        Validity
            Not Before: Jul 20 19:31:45 2025 GMT
            Not After : Jul 27 19:31:45 2025 GMT
        Subject: CN=687d4421-0963
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:ef:8b:53:b9:84:ff:8f:8f:e2:2c:a3:1d:93:
                    42:87:37:01:14:af:da:82:4f:9e:60:ef:8f:1b:40:
                    cf:d0:b1:5a:c1:74:33:0c:0a:86:e4:50:c8:25:db:
                    9a:9d:fe:a0:c2:c1:f2:cb:70:9b:ed:a9:0e:c9:65:
                    12:2b:48:bf:c2:ad:4c:00:cb:96:d0:71:03:10:1d:
                    75:e4:eb:83:77:d4:51:ac:13:5e:40:d2:b1:79:3a:
                    7c:11:01:dc:e8:e0:17:7e:4d:5e:5b:0f:10:e3:3d:
                    68:06:32:f8:b8:45:a9:06:0a:83:93:2d:85:2b:65:
                    d7:73:c6:6f:d5:e8:24:0c:da:c9:4c:23:f6:6d:8c:
                    7a:b7:f6:93:95:7d:1c:6e:51:36:25:c9:aa:cc:36:
                    75:46:d7:2e:42:5b:c3:51:2b:dc:7a:c9:44:68:b8:
                    bc:e6:96:76:01:b6:1e:fc:9d:34:9a:74:3f:e9:97:
                    f5:c2:92:3a:13:8a:a5:cc:ff:78:84:07:e7:91:66:
                    bb:f1:03:6b:01:8f:fb:8f:48:c4:de:de:9f:a4:76:
                    a1:f7:fa:70:71:1d:b1:f6:1c:e2:f8:d3:60:59:05:
                    6f:25:83:34:a5:b1:ad:e9:e5:19:a8:54:e4:74:b3:
                    1a:9c:42:52:73:be:26:66:e1:42:b6:14:64:b7:57:
                    74:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:90:8B:84:35:43:4B:9E:0D:29:BE:8D:8D:89:69:96:91:98:39:9A
            X509v3 Authority Key Identifier:
                keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:b8:4b:cc:59:13:81:c4:58:44:5c:28:18:43:08:7e:f0:12:
         d8:99:45:98:47:ec:e8:12:b4:21:df:88:04:e8:85:bc:95:87:
         ca:e1:b9:46:89:5e:39:a4:8e:f0:5f:08:36:39:b2:65:7a:93:
         b3:8f:91:bf:bd:65:38:4e:fb:b3:61:98:b6:cf:9d:88:99:a8:
         85:6d:bf:15:4f:70:2e:83:f1:08:2f:b1:30:06:0c:48:85:fb:
         2d:8d:ce:61:f0:3d:8c:4a:58:93:57:06:82:87:74:3a:a8:9d:
         3e:dd:67:9b:ed:d9:82:5f:82:38:3a:7b:f4:ff:2e:a1:80:6a:
         64:b1:0f:9b:f9:99:e6:de:ca:ec:0b:bd:2c:32:95:43:a9:80:
         bf:99:b0:1f:b3:f5:a2:dd:0b:5e:ac:f2:a1:df:9e:9b:30:9c:
         f4:c6:aa:c1:fc:79:31:e8:1c:1f:55:8d:24:7a:15:e6:56:29:
         80:8d:fe:b1:58:ad:ea:49:16:7b:e2:af:e6:9f:04:8c:bb:05:
         d7:50:f9:c0:36:ae:d8:ae:2a:65:e3:c8:3b:24:33:44:a6:d0:
         5f:2c:bd:5b:af:05:a4:7d:47:4f:6c:cf:bb:62:13:cd:13:7e:
         98:81:b0:e2:9d:27:cd:c3:f8:7a:de:79:49:65:ae:ca:4c:71:
         36:fc:64:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 12:17:36 2025 by rpki-client