Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
File:                     jhahBq30E6__xY8QEZJ09wDPpZM.mft (raw, json)
Hash identifier:          JkqiF0mHgPIJNAj8FBR6jYRXMy1iE8g/oSybZZ3TecA=
Subject key identifier:   C9:B8:48:E6:6F:40:4F:9C:4D:5D:29:39:E9:84:10:DB:7E:99:D4:AE
Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93
Certificate issuer:       /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593
Certificate serial:       027F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
Manifest number:          027B
Signing time:             Wed 23 Jul 2025 02:11:47 +0000
Manifest this update:     Wed 23 Jul 2025 02:11:47 +0000
Manifest next update:     Wed 30 Jul 2025 02:11:47 +0000
Files and hashes:         1: jhahBq30E6__xY8QEZJ09wDPpZM.crl (hash: jSvjTGh03KNNhYJRPcOnV+QJDGW62QItpysA8UhYPYo=)
                          2: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (hash: dftYADdFFUc1O011GFzDE5h9w7SMkc25c1t2QDLUX6k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl
                          rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 02:11:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 639 (0x27f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913EF8E, serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593
        Validity
            Not Before: Jul 23 02:11:47 2025 GMT
            Not After : Jul 30 02:11:47 2025 GMT
        Subject: CN=688044e3-7b00
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:53:02:e8:14:d3:6a:90:74:57:f9:95:22:28:
                    b4:31:a5:50:d3:27:98:09:68:45:88:e5:22:e9:c1:
                    af:35:6b:3c:bd:80:f1:80:7d:aa:c3:8d:ba:db:95:
                    e4:77:ae:8d:9d:2b:6b:da:24:81:91:2f:8c:d7:d4:
                    be:64:7d:f5:1c:cc:3d:bf:0f:28:fe:19:cb:12:dd:
                    8b:ad:8a:ce:51:7c:5a:d9:cc:73:9f:34:3f:15:7b:
                    d3:47:c0:82:61:dc:b7:fa:d8:72:2f:3b:08:a7:23:
                    b7:77:37:2c:a4:a5:09:63:ff:b1:0f:58:f4:c9:e8:
                    96:97:30:61:59:69:2b:01:84:3b:a8:07:38:fc:7d:
                    d3:af:e8:bf:0b:fb:42:2a:84:43:a0:a0:2e:49:c5:
                    d5:62:5a:07:e6:07:f0:56:8b:87:b0:24:40:da:39:
                    0e:66:92:d8:22:02:9f:e4:d8:40:f9:64:ad:08:4b:
                    b5:65:3f:4d:f9:3f:4f:9f:94:d0:2f:6f:37:8e:df:
                    ff:e2:29:c9:dd:8a:5c:68:02:21:cb:c0:70:7e:6a:
                    6e:05:ff:05:fa:73:b7:8c:74:6a:70:3d:25:f9:89:
                    42:40:2b:b1:6d:34:4e:51:d2:1f:b9:c2:1b:38:c9:
                    53:85:56:13:8a:bb:15:d8:5e:44:33:a6:d3:c2:ac:
                    45:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:B8:48:E6:6F:40:4F:9C:4D:5D:29:39:E9:84:10:DB:7E:99:D4:AE
            X509v3 Authority Key Identifier:
                keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:e4:be:10:bc:a9:47:23:c7:22:79:a0:a8:f6:4c:48:25:3d:
         e9:79:45:bc:4c:48:df:79:99:a3:3a:52:c7:98:19:a4:a4:e4:
         35:d4:e9:5f:ca:e1:75:fc:c3:27:35:73:39:02:4e:fe:8c:0d:
         1e:0c:4f:7f:b1:ba:35:5f:f6:a0:f9:14:66:40:71:0c:fa:4f:
         3b:c9:ba:fd:58:e0:33:25:ee:41:b8:38:73:9e:0a:b8:69:bc:
         dc:9b:fe:3b:a1:f1:09:92:1f:7a:ee:03:2b:10:8f:8d:9b:4f:
         30:7b:d1:a1:78:da:77:fd:b2:9b:0b:6f:b6:35:29:9d:44:38:
         7f:61:42:b0:d7:f3:da:1d:7a:f3:39:f6:02:59:f3:5e:80:bb:
         b7:00:ad:47:24:6b:23:7e:cd:0b:17:10:99:61:f1:09:8d:ce:
         52:26:6b:f3:7b:87:d6:75:e8:88:35:b3:f2:d5:6e:80:a3:01:
         8b:b1:84:bf:d4:ce:03:e1:3e:b4:34:13:19:2a:bb:5c:b4:26:
         4b:bc:b6:c7:96:cb:a7:2f:06:a0:b0:35:4c:23:b0:7e:2d:3c:
         25:39:e6:0f:a4:4c:0e:62:37:4a:d4:52:6e:a6:78:d5:37:19:
         c6:1c:31:e9:e0:b3:1f:5a:26:c0:f8:37:4a:26:d0:0b:d0:2e:
         d0:21:4b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 12:24:13 2025 by rpki-client