Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
File:                     -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json)
Hash identifier:          yVCuR1sePt3b8SW8Ctim2TnT2NX1sCIsoIOvyOhe0o4=
Subject key identifier:   08:F2:14:D5:ED:02:6D:5A:47:55:A3:FB:6A:BE:DF:9D:21:45:71:D4
Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41
Certificate issuer:       /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441
Certificate serial:       0278
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
Manifest number:          0275
Signing time:             Mon 21 Jul 2025 02:02:08 +0000
Manifest this update:     Mon 21 Jul 2025 02:02:07 +0000
Manifest next update:     Mon 28 Jul 2025 02:02:07 +0000
Files and hashes:         1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: 4NMKp8VprbRppKBadopjia4SjihJbspxHENUhjjfwg4=)
                          2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl
                          rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 02:02:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 632 (0x278)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441
        Validity
            Not Before: Jul 21 02:02:07 2025 GMT
            Not After : Jul 28 02:02:07 2025 GMT
        Subject: CN=687d9f9f-45a5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:78:bc:dc:51:74:0a:a8:9a:77:f3:fb:95:3f:
                    2d:35:ff:5e:53:cd:be:d2:38:65:fe:d2:e0:b2:53:
                    f8:9b:5d:1e:8c:76:71:ca:92:88:90:ff:80:4a:33:
                    5e:43:67:4c:c4:2d:90:a5:de:1f:f0:d2:a8:d5:3c:
                    be:72:fe:37:0c:65:f7:6f:c8:3b:ab:9b:cd:9a:5c:
                    61:d2:0f:48:96:ec:03:db:17:39:2a:01:07:83:40:
                    83:bb:d6:2f:04:f4:d2:96:8a:35:23:32:c7:a4:b1:
                    d7:4c:d7:03:a8:8d:59:56:c7:d4:66:24:39:97:ee:
                    67:10:fe:15:03:9c:6b:ac:2f:9b:fc:c9:dc:ac:dd:
                    c9:2a:c3:12:f5:f6:c4:71:55:e8:36:e9:cb:72:3a:
                    a0:c5:0f:21:d4:78:68:8d:7f:f1:2d:84:97:1c:2b:
                    3d:36:aa:38:ca:7e:c4:80:51:c1:e9:7f:2a:bb:da:
                    28:ff:91:4f:2a:f6:b1:fc:60:f2:9d:4b:7f:28:58:
                    21:0f:f7:30:2a:dd:62:b8:04:d1:53:4a:d9:e7:74:
                    83:09:ae:8c:ef:f9:10:e3:84:bf:78:52:61:b7:f3:
                    4d:11:5d:70:89:85:f5:88:d7:75:23:04:6d:6c:4c:
                    c2:9e:10:1f:49:3f:ae:29:d4:4f:1f:1d:56:69:bc:
                    13:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:F2:14:D5:ED:02:6D:5A:47:55:A3:FB:6A:BE:DF:9D:21:45:71:D4
            X509v3 Authority Key Identifier:
                keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:59:e3:5e:f8:ff:f8:79:a8:eb:94:dc:e4:15:4a:a9:f2:56:
         db:d6:c5:ea:93:d0:cf:11:16:14:cf:2e:17:5c:ef:60:55:72:
         6e:a6:d5:91:0f:4f:f2:a7:71:cd:52:8c:68:b9:1e:af:60:17:
         fb:29:f6:c8:8a:eb:8c:0d:62:49:5c:6a:89:25:8b:29:25:7e:
         f2:a2:8e:12:47:20:c4:05:ca:68:c3:9c:3a:6a:27:b3:1d:72:
         a7:25:19:b3:b5:c9:8d:eb:9c:98:35:21:ed:8e:14:1c:c5:01:
         54:10:a5:3d:8b:a9:9a:11:7f:c9:50:23:68:fe:ac:c5:d0:c4:
         52:ac:55:76:64:09:44:be:06:b2:11:76:67:89:ec:cc:55:0f:
         b3:04:30:76:2a:dd:a1:09:17:32:a4:31:a1:4f:a6:43:f6:a8:
         63:ae:98:83:5f:7a:51:ae:5f:0c:27:33:97:7d:71:76:01:ad:
         2c:c5:35:f4:4b:2c:7f:ea:88:12:6e:89:58:2e:58:fb:52:14:
         d4:6c:77:44:05:1d:f7:64:13:88:12:c1:d9:be:cc:01:26:54:
         39:b6:bc:d1:c7:05:c2:68:ac:5b:51:11:d4:df:91:e2:ad:0e:
         3d:ca:66:d0:71:17:4a:04:c2:10:94:3b:b7:3a:9a:7e:ae:ec:
         e9:eb:00:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:30:17 2025 by rpki-client