Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft
File:                     t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft (raw, json)
Hash identifier:          8KYhaZrA63pNEml9lCsd6P6ODqQYCqo/bJs2K0Lkk+k=
Subject key identifier:   10:9E:3D:AB:CF:51:14:AB:D9:73:7E:CC:10:86:D3:0A:96:34:34:F6
Authority key identifier: B7:C9:79:5F:FF:7F:69:CF:33:B7:65:1C:6B:99:26:A7:30:D9:75:9C
Certificate issuer:       /CN=A9142DB4/serialNumber=B7C9795FFF7F69CF33B7651C6B9926A730D9759C
Certificate serial:       0158
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8l5X_9_ac8zt2Uca5kmpzDZdZw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft
Manifest number:          0155
Signing time:             Wed 23 Jul 2025 04:20:53 +0000
Manifest this update:     Wed 23 Jul 2025 04:20:53 +0000
Manifest next update:     Wed 30 Jul 2025 04:20:53 +0000
Files and hashes:         1: t8l5X_9_ac8zt2Uca5kmpzDZdZw.crl (hash: KeV6T+CR+cnMlKDGW0cwJrfxdD26Fo5hlMWgMEIrJGg=)
                          2: 9ADC9C8A5CE211EEBA4DBD15C4F9AE02.roa (hash: icEjBAvtyS7bBSn0NXrfM0VKf/GFl7OVPnJ58XOd/T8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.crl
                          rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8l5X_9_ac8zt2Uca5kmpzDZdZw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 04:20:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 344 (0x158)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9142DB4, serialNumber=B7C9795FFF7F69CF33B7651C6B9926A730D9759C
        Validity
            Not Before: Jul 23 04:20:53 2025 GMT
            Not After : Jul 30 04:20:53 2025 GMT
        Subject: CN=68806325-521a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:b2:1d:25:2d:2a:65:25:d0:0e:0c:17:7a:4d:
                    25:da:49:4f:eb:a9:8c:45:a2:6f:f9:40:b2:8e:69:
                    15:ae:16:66:43:32:76:6f:f8:be:4a:a2:dc:64:c3:
                    61:53:c5:8b:ec:35:3e:d4:df:b5:26:f5:3b:e3:c7:
                    8b:4b:1f:9e:1e:9c:55:d4:2b:53:3c:8f:6c:9b:da:
                    0b:e7:16:16:bf:2e:3c:2e:25:01:bd:7d:50:97:e5:
                    51:9a:c4:ad:85:94:52:e5:47:27:66:be:40:34:dd:
                    28:c9:52:ca:a2:ee:96:eb:65:f9:cc:62:2e:46:e2:
                    c3:92:7d:5b:ec:87:f3:d7:70:42:99:ca:f4:85:4f:
                    90:15:7f:6a:f2:14:55:b6:27:1a:86:6d:af:7b:5f:
                    b9:1d:73:8c:24:1f:ab:f8:70:a7:5b:eb:ac:09:14:
                    64:4d:60:0b:e4:bf:83:2d:0a:6c:e9:29:59:6e:23:
                    3d:1a:b8:1f:ce:ad:ee:d8:e6:cb:5c:39:ec:52:77:
                    3b:9c:f3:30:4c:57:32:56:9b:73:d5:65:81:50:0a:
                    7d:51:66:5b:24:81:c6:5c:b4:79:dc:50:cd:cc:ce:
                    ed:b7:d7:71:24:65:44:5d:c7:64:4b:ff:1d:4e:ec:
                    81:cc:25:9b:bf:eb:3b:0f:61:41:69:ca:06:19:2b:
                    2f:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:9E:3D:AB:CF:51:14:AB:D9:73:7E:CC:10:86:D3:0A:96:34:34:F6
            X509v3 Authority Key Identifier:
                keyid:B7:C9:79:5F:FF:7F:69:CF:33:B7:65:1C:6B:99:26:A7:30:D9:75:9C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8l5X_9_ac8zt2Uca5kmpzDZdZw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:44:b9:6c:6e:60:3d:00:35:20:77:a8:cc:8f:12:84:38:a9:
         f0:b6:43:ab:11:8a:57:7c:ab:1c:7b:49:b9:34:f8:33:88:0c:
         cc:02:d9:69:19:eb:9b:4f:6e:05:60:b1:e8:c3:00:84:68:a2:
         1a:6b:d8:87:cc:40:c2:23:fa:82:6e:0a:4e:80:44:7b:4e:61:
         3c:99:82:51:5b:78:7f:5d:67:b4:70:e5:30:00:87:12:cc:a0:
         1d:c8:6c:5f:48:3b:be:11:be:63:aa:2f:83:37:b0:12:3f:94:
         55:a2:24:08:41:31:64:b1:0b:a2:f4:0e:42:12:82:de:8f:46:
         94:cb:f5:71:68:61:f8:3d:9b:5f:b5:fa:b6:26:dd:7c:59:98:
         cb:9d:e2:ee:13:59:6b:77:d5:dc:58:75:03:80:23:d9:5a:a6:
         d7:71:37:d6:4a:75:5a:14:b1:65:09:28:fe:b4:93:56:50:2a:
         bd:77:b0:fd:71:42:a7:54:3a:ac:ff:21:62:2b:a2:02:d4:f0:
         77:89:7e:64:1e:35:56:5a:d6:c7:a3:63:aa:fb:77:8b:c6:c1:
         d1:40:12:14:14:b5:14:98:0e:9b:d4:b6:0c:aa:c7:eb:0a:73:
         6c:59:3d:ab:7e:3a:ab:ce:f7:cc:d3:e4:4c:de:99:4b:6f:d5:
         13:84:c0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 12:10:37 2025 by rpki-client