Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
File:                     jhahBq30E6__xY8QEZJ09wDPpZM.mft (raw, json)
Hash identifier:          Yu6C5ZGhGJDAabCcJryZYR+OeITDsNEJ21E7K/I+dLY=
Subject key identifier:   AE:6F:06:06:35:85:97:9D:8B:A8:E7:AA:4E:1E:F4:2E:04:C1:2B:6B
Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93
Certificate issuer:       /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593
Certificate serial:       0280
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
Manifest number:          027C
Signing time:             Fri 25 Jul 2025 02:07:07 +0000
Manifest this update:     Fri 25 Jul 2025 02:07:07 +0000
Manifest next update:     Fri 01 Aug 2025 02:07:07 +0000
Files and hashes:         1: jhahBq30E6__xY8QEZJ09wDPpZM.crl (hash: LGJXujyproMKrfFOKMLhX8ogzL227oNVYNbLGW56UQU=)
                          2: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (hash: dftYADdFFUc1O011GFzDE5h9w7SMkc25c1t2QDLUX6k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl
                          rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 02:07:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 640 (0x280)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913EF8E, serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593
        Validity
            Not Before: Jul 25 02:07:07 2025 GMT
            Not After : Aug  1 02:07:07 2025 GMT
        Subject: CN=6882e6cb-71fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:18:68:81:f6:61:a2:1b:b6:c0:43:b7:c3:22:
                    11:2d:53:e7:3c:de:1b:56:e1:b8:84:1f:5c:eb:38:
                    28:2d:d2:ed:87:fa:6a:75:67:ae:87:35:d7:e0:92:
                    61:f8:74:20:02:29:2a:b9:fd:29:32:f5:44:ee:0d:
                    96:10:4f:24:d0:3e:7b:86:e3:f8:d3:9e:8b:0d:4b:
                    2f:ad:95:d0:cd:08:b6:09:60:37:e3:23:eb:ef:2b:
                    f5:de:24:d1:c7:32:84:e4:7e:30:c5:e8:8d:66:e1:
                    17:03:35:d2:a3:ba:8d:98:b9:8b:67:49:7d:84:26:
                    25:c2:82:b3:b6:20:69:a8:6b:cf:98:d8:8c:52:f8:
                    46:c2:9a:d8:94:ea:5a:08:07:fb:be:8a:99:92:cf:
                    94:e0:14:de:74:80:ff:89:52:98:6e:45:05:8f:69:
                    11:06:6d:f7:f8:17:c9:4e:3f:2d:fd:6c:d9:94:94:
                    1a:af:0b:c8:45:23:cd:9f:94:e3:f5:d9:a7:bc:60:
                    96:68:85:93:89:3e:f1:13:01:2f:96:9d:eb:bb:94:
                    6c:84:22:97:7a:31:72:28:d6:dd:be:82:b8:bd:e4:
                    15:5f:87:fe:de:6d:fe:5a:ba:87:84:7a:67:00:66:
                    dc:30:8e:3f:22:b1:8d:1c:57:fa:1a:65:94:5f:62:
                    11:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:6F:06:06:35:85:97:9D:8B:A8:E7:AA:4E:1E:F4:2E:04:C1:2B:6B
            X509v3 Authority Key Identifier:
                keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:cf:22:c4:dd:b9:d8:a5:18:77:b1:cf:18:0b:5c:fc:f5:5a:
         7c:ce:1b:28:16:89:21:40:5e:25:59:0a:d9:ad:53:db:e8:df:
         51:2b:61:90:01:04:e3:16:35:e9:5c:ac:95:4a:2e:15:c0:d8:
         01:ec:95:9f:02:d3:7c:93:cd:37:ae:bc:2d:7d:3c:93:d3:eb:
         40:18:f9:14:5f:08:03:19:c0:22:98:7b:b0:d8:c4:64:03:1b:
         0a:41:71:f9:53:be:e4:17:b3:3c:8b:60:aa:60:ee:99:09:6a:
         03:72:ea:1d:75:34:46:0b:57:07:3f:b3:8a:0a:74:e2:2b:06:
         32:b8:98:df:9d:47:a3:c0:ba:55:7d:1c:a8:f0:b0:38:f3:7b:
         87:42:03:b3:a9:45:9d:83:cc:7d:65:cc:36:2e:38:5f:fe:3b:
         4b:76:7e:bf:a3:27:bc:a7:b2:ea:f0:c1:07:d2:2a:ec:b4:a9:
         e2:35:d5:63:95:4d:a9:8c:52:d7:10:50:67:7d:8d:ce:43:c7:
         9a:8b:a3:aa:7e:60:ec:aa:8b:35:e4:c2:f0:2b:56:2d:36:44:
         eb:87:ec:40:e5:1b:9a:47:15:f7:ed:8e:23:31:84:04:3b:bb:
         46:08:0f:5e:b3:c1:18:8f:5d:2b:1d:a8:0a:22:3c:b8:7e:3d:
         7d:8f:41:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 05:27:21 2025 by rpki-client