Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft
File:                     TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json)
Hash identifier:          /s4LyveDylD923pvJHj0VK32xbZ5Odq3Qo3mYuClN3U=
Subject key identifier:   85:BA:8A:86:EA:CE:94:FF:27:19:9A:BE:4E:0B:4A:7B:5B:49:AC:F6
Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B
Certificate issuer:       /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B
Certificate serial:       03A6
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft
Manifest number:          03A1
Signing time:             Sat 19 Jul 2025 01:13:07 +0000
Manifest this update:     Sat 19 Jul 2025 01:13:06 +0000
Manifest next update:     Sat 26 Jul 2025 01:13:06 +0000
Files and hashes:         1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: Q1EZA/ZKn3EYP4Hiy2sbFPpp8LGFdQRzjhzuA4sBvFo=)
                          2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl
                          rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 01:13:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 934 (0x3a6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B
        Validity
            Not Before: Jul 19 01:13:06 2025 GMT
            Not After : Jul 26 01:13:06 2025 GMT
        Subject: CN=687af122-4443
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:e1:19:7e:45:ed:c4:c0:42:0f:53:72:1a:ae:
                    05:19:66:7b:ee:dc:f2:1d:1e:67:b8:c1:02:63:c8:
                    9e:fa:70:6d:45:5f:a0:b5:9c:27:ad:10:0d:80:1e:
                    9c:82:ba:a1:d7:fe:4d:19:57:ad:08:2a:d3:a6:e8:
                    c1:e7:ad:19:be:e1:b2:02:4d:2e:27:ac:2a:f8:d6:
                    2c:82:bd:96:98:31:ca:68:92:4d:2d:91:71:75:5d:
                    c8:e8:c7:3f:a2:8a:12:a9:51:fe:96:ac:a9:59:a3:
                    e8:0c:41:05:a1:dd:6e:45:46:b2:5c:94:40:fb:54:
                    40:e0:41:f6:a5:29:8e:13:0b:78:e4:a5:3c:78:46:
                    35:c4:41:db:ee:6e:41:76:52:50:f2:0c:18:52:c4:
                    9d:96:6e:bc:08:1d:db:2c:b9:03:b8:e4:41:e6:a9:
                    2d:8b:d6:34:d7:99:b7:39:ef:5c:c1:5e:7f:8f:14:
                    35:45:ed:8c:13:e4:9d:6a:57:b4:54:02:cc:3a:1f:
                    8c:2f:89:e2:7f:66:2a:0e:24:c1:75:ed:df:32:2f:
                    d7:d4:63:71:4d:35:6a:25:de:7e:95:aa:1e:5e:67:
                    b3:7e:5a:c2:28:3a:ce:80:90:5a:dd:23:71:2e:b1:
                    65:3f:99:e2:d5:6a:47:19:e2:1b:05:40:da:6d:ea:
                    32:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:BA:8A:86:EA:CE:94:FF:27:19:9A:BE:4E:0B:4A:7B:5B:49:AC:F6
            X509v3 Authority Key Identifier:
                keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bf:21:55:67:9d:c3:d2:95:6c:d3:00:2d:ac:c7:c1:4f:37:05:
         b6:80:56:19:a3:09:e6:70:f8:d7:e6:30:0f:be:b1:48:35:82:
         54:fb:4c:af:1d:13:92:fc:61:08:27:0d:cc:05:bf:8d:2b:29:
         e3:d4:cc:03:03:fd:4a:01:4c:1d:63:7b:c0:37:61:04:03:5f:
         fc:12:80:b1:e4:e0:7a:c8:2c:bf:bb:ef:f8:db:3e:7f:95:65:
         c9:60:04:0e:be:e4:67:ac:11:4f:1a:0a:f1:19:0e:6e:0a:60:
         f7:15:42:3a:7a:6d:af:61:41:fd:52:01:2b:43:c9:51:6e:22:
         59:bf:73:bc:50:36:f3:3c:dc:07:c9:1f:a0:f9:74:28:58:7b:
         03:5a:26:43:71:d6:6b:c9:54:4b:2c:cc:67:36:76:9d:d5:cd:
         91:42:39:41:d9:61:c9:b7:f2:66:5b:b7:ae:69:e9:9c:20:cd:
         50:83:3c:5a:a2:f1:49:e4:61:35:2e:46:8d:1e:b2:0c:1d:04:
         e0:da:c6:16:7e:08:76:3c:43:fe:6c:c1:40:9b:1e:54:8d:49:
         fe:ce:e9:7e:3e:7e:0e:f3:1d:06:01:7d:52:bc:ee:25:86:d9:
         84:1c:3f:a3:61:53:32:76:1a:18:67:89:1e:01:06:94:51:1a:
         39:e7:d1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 07:30:16 2025 by rpki-client