Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
File:                     -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json)
Hash identifier:          3Ng8JszeRtmQpfK5+kprsJFXGwLJp/lMQuyrxiaY2sM=
Subject key identifier:   8D:4B:A6:10:FD:38:23:13:BC:00:AE:C5:97:B1:36:C5:06:7F:A8:A5
Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41
Certificate issuer:       /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441
Certificate serial:       027C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
Manifest number:          0278
Signing time:             Wed 23 Jul 2025 02:39:25 +0000
Manifest this update:     Wed 23 Jul 2025 02:39:24 +0000
Manifest next update:     Wed 30 Jul 2025 02:39:24 +0000
Files and hashes:         1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: RDJIhsaqxpf7r90eEWPkEXqdqByjI+ZGPsuI+Uig+fo=)
                          2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl
                          rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 02:39:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 636 (0x27c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441
        Validity
            Not Before: Jul 23 02:39:24 2025 GMT
            Not After : Jul 30 02:39:24 2025 GMT
        Subject: CN=68804b5c-6d36
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:ee:02:c3:68:48:fd:0a:11:cb:09:37:40:af:
                    44:00:b8:cc:db:1c:5b:ba:f0:54:4d:58:26:4a:79:
                    45:fb:af:f4:26:a7:94:ef:c3:f9:b4:04:56:4e:b0:
                    de:d1:8c:93:51:40:5f:45:75:1c:a4:55:35:87:ae:
                    0f:84:8a:f7:96:7f:4c:3f:14:36:5a:d3:33:3a:5c:
                    7c:cd:39:b7:02:42:b1:47:db:e8:9a:dc:f3:b3:fa:
                    fe:92:18:bb:6a:2f:c3:bc:dc:17:12:82:07:00:5f:
                    c3:b8:e9:5b:4e:2d:b8:75:60:c4:ac:fd:48:3e:be:
                    c2:ae:ac:ff:b8:3c:87:ae:ac:36:4f:ce:58:7a:4f:
                    47:39:ce:86:a4:9b:37:bd:11:e5:a6:52:46:75:f3:
                    fe:45:11:e9:4b:48:f1:35:8b:72:c2:03:a9:5f:24:
                    46:69:b8:3f:89:f2:ce:ae:e6:e2:06:61:67:6d:9b:
                    a8:ad:a1:5f:d5:76:8b:c2:b1:06:dd:56:71:30:cc:
                    90:42:ad:66:4e:05:66:53:03:70:58:3b:79:81:80:
                    e5:19:bc:3a:ab:23:3e:b5:d8:89:32:3e:8c:4e:f0:
                    ca:98:e2:9a:73:73:0b:9e:52:f6:3f:f1:e6:53:f7:
                    f1:90:db:fa:34:0a:bf:f8:17:b0:45:ab:95:84:a4:
                    f0:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:4B:A6:10:FD:38:23:13:BC:00:AE:C5:97:B1:36:C5:06:7F:A8:A5
            X509v3 Authority Key Identifier:
                keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ca:ce:d0:84:ad:99:37:8a:9a:4d:21:89:42:21:1a:70:f7:bb:
         e5:e8:52:23:93:40:fe:60:1c:87:11:9c:44:78:c5:6c:1b:61:
         6e:4b:4d:3f:64:28:c9:6a:e1:d8:e5:27:7f:df:64:7d:5f:42:
         1a:e9:d9:ba:ef:14:5e:89:1f:84:d2:a4:d2:5c:8c:7b:b1:f0:
         b1:a3:8d:21:6e:0b:5b:b7:38:03:77:76:07:0b:54:34:7e:35:
         92:59:e9:35:3d:1a:21:d6:a2:fe:0b:33:f2:7e:65:51:16:01:
         2d:7f:11:46:5e:f7:10:3c:73:06:9a:f3:88:92:bf:6e:69:32:
         e0:8b:6f:19:8b:0d:3b:01:d7:28:d3:80:9b:ae:ee:5f:2d:73:
         3f:88:8b:f7:d5:ab:c0:5e:fe:5f:00:77:32:4b:a0:55:bf:32:
         fb:51:f9:9a:8b:f1:fc:9e:56:8f:84:0f:3d:dc:19:04:36:a8:
         e8:96:5d:1f:75:85:4c:4a:6b:4a:07:89:67:99:99:8a:45:10:
         ff:44:81:8d:6c:1c:59:bb:3a:08:e7:eb:ab:00:cd:0e:62:0a:
         b9:03:bc:57:d6:10:8d:86:5a:7a:2e:3b:85:81:35:db:c4:1b:
         55:17:f1:65:59:66:e4:dd:07:37:75:73:40:ea:0e:8c:83:e3:
         c3:3c:3a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 04:59:37 2025 by rpki-client