Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
File:                     SihlGpSsY59qsTJHTTHrDfzm3Hk.mft (raw, json)
Hash identifier:          KULh+8RpFh20fEpMWo/ES00KDVE/nynF68bqKms7x6w=
Subject key identifier:   18:89:30:B9:1A:1F:77:99:5D:37:9C:51:DC:07:7A:80:FA:2C:57:CE
Authority key identifier: 4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79
Certificate issuer:       /CN=A9122373/serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79
Certificate serial:       04ED
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
Manifest number:          04DC
Signing time:             Fri 25 Jul 2025 00:07:38 +0000
Manifest this update:     Fri 25 Jul 2025 00:07:37 +0000
Manifest next update:     Fri 01 Aug 2025 00:07:37 +0000
Files and hashes:         1: SihlGpSsY59qsTJHTTHrDfzm3Hk.crl (hash: n5SYWuboV118I0ODU+FyWyTLFrIeVSex/Q/YICnNfIc=)
                          2: A64296622BAA11EC9618D864C4F9AE02.roa (hash: OMr4Dz07a9K+JRAHryD2B9Vl/J9RaoHPdVjAOTh62ZI=)
                          3: C420EBE06EC911EC8A5A940AC4F9AE02.roa (hash: t0Udbj/BMaf/sH0WctEk56jZ3TVW9akvyOH3KkeFZWA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl
                          rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 00:07:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1261 (0x4ed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9122373, serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79
        Validity
            Not Before: Jul 25 00:07:37 2025 GMT
            Not After : Aug  1 00:07:37 2025 GMT
        Subject: CN=6882cac9-7347
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:a4:05:21:d1:32:9e:bf:15:7b:2b:13:c6:cf:
                    0a:e0:c5:c6:22:14:7f:7e:7e:2d:82:ff:02:8b:64:
                    7d:a6:23:45:eb:90:f1:38:e9:9d:f8:90:b2:c1:98:
                    9d:df:55:d8:44:97:bc:e7:71:7e:c2:13:77:2a:6e:
                    d4:fc:55:19:61:50:dd:08:b1:7f:28:36:c0:18:41:
                    cc:9b:ec:64:ba:de:eb:23:fd:b2:20:09:14:7b:2f:
                    51:74:d9:be:76:a0:f8:5f:34:5b:84:ed:b1:f5:cd:
                    61:44:14:13:b4:cb:bd:31:ee:3f:57:36:d8:26:64:
                    e9:b4:64:b2:ba:13:8b:92:cc:72:40:f1:71:b2:7c:
                    b6:55:71:83:dc:b5:71:b4:bb:87:5a:5f:9c:44:cb:
                    16:f3:97:73:bc:fd:96:05:33:a4:7d:93:95:b7:19:
                    6a:80:6f:4d:4a:9d:ea:a5:93:ee:21:13:79:1c:36:
                    e3:1f:07:94:9f:9a:b3:c5:b3:32:ab:62:3e:72:20:
                    f0:1b:aa:da:ab:53:d2:24:19:15:73:5f:f3:19:d0:
                    bb:8e:39:60:c9:83:dd:d1:5b:50:66:08:10:78:4f:
                    d9:91:61:62:ab:c3:a6:61:d7:c6:b2:3b:d2:a2:91:
                    6a:83:cd:8c:87:45:c8:dc:2e:6b:a8:d7:16:ea:56:
                    74:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:89:30:B9:1A:1F:77:99:5D:37:9C:51:DC:07:7A:80:FA:2C:57:CE
            X509v3 Authority Key Identifier:
                keyid:4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d4:15:0a:37:9b:c6:49:9a:d0:05:9c:97:ca:73:b5:ab:a9:14:
         18:57:12:2a:65:e7:a2:22:33:5f:aa:ba:88:be:c9:f4:b7:66:
         ac:1f:8c:ed:e9:57:51:4e:dd:ec:4f:71:a6:02:bb:bb:83:5a:
         1a:ca:44:38:57:17:bd:dc:3d:35:dd:12:61:13:84:55:0f:26:
         e2:b6:68:84:3e:83:54:cc:c1:ca:b4:9d:a7:87:cd:d4:25:a2:
         ad:8c:bf:fe:74:db:c7:35:54:49:d8:88:59:37:a4:ac:11:8e:
         41:af:f9:d5:1b:d0:87:36:2e:af:b3:a9:63:8e:24:a5:a9:cb:
         fc:75:a6:3f:45:20:22:bd:d5:58:6e:13:a5:6c:2c:c2:4a:04:
         7d:94:84:3a:c3:e9:a4:de:dd:25:d2:8b:01:6a:1c:29:01:78:
         bb:28:d0:fa:9a:82:55:41:d4:40:b8:fe:8e:a4:33:45:77:a1:
         ce:68:99:63:1a:12:91:10:ab:c9:0d:6d:b5:49:c4:ee:59:b3:
         1e:f5:5a:7a:2c:11:ed:37:e1:69:c5:2b:25:45:53:cd:08:00:
         09:f1:a7:b9:88:55:44:0e:a4:d6:df:f8:fa:2a:f4:ea:e5:c5:
         12:4e:8f:c5:33:25:f2:e7:e6:0d:a4:ba:f2:79:1d:b5:bc:87:
         b3:72:74:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:05:29 2025 by rpki-client