Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
File:                     SihlGpSsY59qsTJHTTHrDfzm3Hk.mft (raw, json)
Hash identifier:          4jUV7OLwZtIrxPnl5p4iR8f5+SmpuliUU67BuAuo9M4=
Subject key identifier:   D8:9B:DC:F2:1B:FB:70:87:24:EF:BC:AD:2A:0E:99:D8:38:82:04:8D
Authority key identifier: 4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79
Certificate issuer:       /CN=A9122373/serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79
Certificate serial:       04EC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
Manifest number:          04DB
Signing time:             Wed 23 Jul 2025 00:08:55 +0000
Manifest this update:     Wed 23 Jul 2025 00:08:55 +0000
Manifest next update:     Wed 30 Jul 2025 00:08:55 +0000
Files and hashes:         1: SihlGpSsY59qsTJHTTHrDfzm3Hk.crl (hash: s9lD5G3CrnfBREyHGZFRS0cN6pArKmr3y50uffjPpiM=)
                          2: A64296622BAA11EC9618D864C4F9AE02.roa (hash: OMr4Dz07a9K+JRAHryD2B9Vl/J9RaoHPdVjAOTh62ZI=)
                          3: C420EBE06EC911EC8A5A940AC4F9AE02.roa (hash: t0Udbj/BMaf/sH0WctEk56jZ3TVW9akvyOH3KkeFZWA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl
                          rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 00:08:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1260 (0x4ec)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9122373, serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79
        Validity
            Not Before: Jul 23 00:08:55 2025 GMT
            Not After : Jul 30 00:08:55 2025 GMT
        Subject: CN=68802817-7cc4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:38:00:24:27:29:f1:78:a3:a1:f1:cc:d4:12:
                    df:9e:3c:90:36:59:c5:67:66:1e:9c:41:1c:1a:f8:
                    4c:7d:0b:eb:d9:4c:52:63:2f:48:9c:3f:51:23:60:
                    9c:f8:5d:6e:e8:d6:3f:9f:4c:d2:3c:0f:e7:a4:0b:
                    d7:2b:f7:0c:fb:15:d3:90:0f:f9:e8:bc:fd:ef:09:
                    37:c9:2f:a3:ed:eb:97:4a:f3:29:93:ff:67:44:09:
                    de:73:b1:56:ea:2e:a3:be:64:1a:68:1f:38:93:f5:
                    c0:d1:5e:91:a0:c2:16:e9:02:23:d9:ca:1b:a3:01:
                    c4:02:0d:3f:b9:9e:51:56:48:63:8a:f5:9a:12:60:
                    06:43:d8:cf:82:15:4b:83:b8:45:77:0f:5b:cd:b8:
                    d6:c9:e5:a0:df:68:f6:2b:01:05:bd:84:fc:07:59:
                    d8:dc:3e:c5:7b:7f:49:30:1c:ba:ac:be:b2:41:80:
                    e7:ba:56:fe:40:d2:14:ce:91:1d:85:11:33:1a:3c:
                    9e:d1:13:76:ee:d2:00:f0:a1:e9:a1:55:2e:e0:05:
                    77:cc:4f:eb:9c:f6:9a:d9:a8:20:29:d0:2e:a7:45:
                    20:c6:f3:ff:5e:02:67:aa:30:7f:6d:05:cb:d1:d7:
                    ed:7c:58:1e:14:e4:6e:2d:f9:36:b7:05:3f:d4:71:
                    c4:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:9B:DC:F2:1B:FB:70:87:24:EF:BC:AD:2A:0E:99:D8:38:82:04:8D
            X509v3 Authority Key Identifier:
                keyid:4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:66:d4:81:82:de:c9:70:10:97:a1:6e:d5:f3:ee:fb:14:54:
         d7:31:14:c4:49:ea:9a:f8:e2:98:54:93:53:28:93:cd:b7:67:
         0a:a7:91:3f:fb:a0:8b:e2:95:e5:de:84:e8:df:19:ab:9a:cb:
         d8:4c:1e:77:8a:61:52:9c:c9:6e:57:70:dd:1e:49:61:77:99:
         f2:11:c8:bf:de:d8:de:82:75:4d:99:a0:af:77:52:5b:72:35:
         bd:1c:03:66:cc:8e:8b:fc:16:62:4f:84:46:7c:76:bb:f2:5c:
         92:a4:bb:3c:74:38:07:eb:f0:ed:f0:0c:25:b4:20:6c:2c:7f:
         fd:c5:0d:3f:fd:80:23:64:74:f3:f6:34:8c:0c:43:81:8f:c2:
         95:11:c8:af:ff:ee:f7:2c:61:8a:ec:ee:7d:eb:2b:f8:e1:36:
         5a:b4:39:8e:75:7d:34:1f:72:06:85:f2:a7:f6:33:a2:1c:ae:
         93:85:c0:4d:06:b0:22:bf:31:6a:ec:11:e3:73:67:9b:00:d9:
         83:5b:07:1d:b3:4a:cc:10:46:74:bc:5b:c2:d3:7a:bd:7f:31:
         cd:c2:1f:d3:c9:77:db:35:5a:f7:ad:9f:da:45:6c:61:6c:68:
         e3:4c:85:8f:42:45:ea:58:a3:cb:a4:4e:07:f4:4d:08:79:b0:
         5e:e6:7c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:07:01 2025 by rpki-client