Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft
File:                     MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft (raw, json)
Hash identifier:          rD1EReUwHAjAxMBcOvBa99eidQjOMXjwtEHW2KhnhVw=
Subject key identifier:   B1:A0:34:B8:F5:E3:44:E1:B1:42:7F:CE:B7:85:22:77:30:01:78:2C
Authority key identifier: 31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF
Certificate issuer:       /CN=A91222CD/serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF
Certificate serial:       1B43
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft
Manifest number:          1B42
Signing time:             Sun 20 Jul 2025 16:18:35 +0000
Manifest this update:     Sun 20 Jul 2025 16:18:35 +0000
Manifest next update:     Sun 27 Jul 2025 16:18:35 +0000
Files and hashes:         1: MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl (hash: kbfY51KMHmuXRrfmfHSWTVCNkVDFs1Y+2nT3j4YcYuQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl
                          rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 16:18:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6979 (0x1b43)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91222CD, serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF
        Validity
            Not Before: Jul 20 16:18:35 2025 GMT
            Not After : Jul 27 16:18:35 2025 GMT
        Subject: CN=687d16db-5a89
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:6e:f7:06:f0:3d:a4:19:23:00:63:ae:30:11:
                    04:0f:7a:fe:42:65:aa:35:9e:c0:e3:4c:2b:40:6d:
                    71:8c:91:a9:29:26:cc:d0:3d:ed:a0:c8:37:86:7d:
                    34:67:0c:2c:ad:ec:87:08:d5:35:a5:3d:c2:66:6d:
                    03:f5:df:31:22:b3:e3:9b:d1:1d:75:c8:7d:84:1b:
                    85:4b:fb:42:bc:48:07:72:a4:cc:b8:43:b2:b8:7f:
                    70:e1:35:33:fd:25:83:b9:45:80:fa:5e:69:e5:3c:
                    6b:bb:c5:76:3e:2d:56:20:0c:fc:ac:d8:4e:8a:e1:
                    29:79:34:e3:8c:15:8b:a4:a0:f0:9e:de:37:7e:6c:
                    80:4b:08:16:9c:b1:3a:d2:b9:91:79:03:a6:56:3c:
                    e4:10:04:f5:d4:9a:b2:5a:02:b6:88:74:c5:1f:12:
                    bd:fc:18:f8:5a:16:c0:ee:82:57:1b:7a:18:04:3e:
                    21:11:6c:2a:15:97:7e:e8:56:a7:16:1b:08:da:ef:
                    e6:e9:ef:5e:65:9b:26:3e:c8:2d:48:39:c4:fd:21:
                    73:fb:9a:3c:31:80:db:47:92:da:a4:ea:a6:c3:cc:
                    1b:c8:90:07:36:28:9f:20:54:b9:b9:00:0d:27:1f:
                    5f:98:21:b9:a0:33:d1:fb:d7:48:51:d3:ed:36:40:
                    7c:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:A0:34:B8:F5:E3:44:E1:B1:42:7F:CE:B7:85:22:77:30:01:78:2C
            X509v3 Authority Key Identifier:
                keyid:31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:d7:98:82:e3:59:1d:6c:c1:53:29:67:6d:d5:b9:9c:71:d3:
         ca:2d:8f:ad:13:ea:02:85:4b:e7:a1:72:20:71:7c:7e:a2:4c:
         eb:e2:4a:45:da:dc:6d:15:b4:af:da:f2:29:dc:39:70:12:9d:
         af:d8:ac:a7:df:48:f8:7b:e2:37:66:a0:07:1b:7e:91:94:52:
         c9:34:92:a2:bb:9e:7d:a1:c5:f7:94:f9:29:85:62:91:ad:f0:
         e2:63:d4:76:23:b3:62:2c:15:28:bc:f5:3c:cd:df:37:f9:7d:
         7b:7a:b9:a2:90:85:b6:db:08:7d:15:68:9d:67:fc:03:9d:1c:
         8b:28:c0:cc:40:a0:c3:f4:1c:0f:f2:0a:f3:f8:31:57:9d:9a:
         9c:7d:0c:ed:b5:bd:56:a0:1a:d6:33:b6:8b:5b:ac:41:28:95:
         a3:87:f7:85:90:92:02:02:7e:4f:e2:36:c8:35:6e:67:64:f2:
         c3:41:d9:f1:7e:cc:23:f2:3c:ac:92:3d:0b:d4:c4:1c:3e:b8:
         bf:10:e9:57:e6:13:ab:d1:db:45:bf:68:d1:82:a6:13:c5:7f:
         b6:29:f0:2d:ed:ac:13:c6:eb:72:45:80:bd:2d:a8:68:e9:e7:
         3e:e1:49:60:3d:67:28:8c:f2:8d:a1:2d:86:db:d0:bf:d4:4f:
         3f:b4:0e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:05:32 2025 by rpki-client