Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
File:                     C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json)
Hash identifier:          fsM+KSOIaIPcM2PlqlCFrHymRERaCvOMUicU0nV6e9Q=
Subject key identifier:   08:5E:8E:6E:98:42:3A:55:B2:63:21:70:A4:30:34:19:8A:90:37:EE
Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA
Certificate issuer:       /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA
Certificate serial:       0AE4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
Manifest number:          0AD4
Signing time:             Tue 22 Jul 2025 19:44:50 +0000
Manifest this update:     Tue 22 Jul 2025 19:44:49 +0000
Manifest next update:     Tue 29 Jul 2025 19:44:49 +0000
Files and hashes:         1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: e1rh34QlkWArBb3Ug9BLSpQXVP1v2sFjZokJh9dHIpk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl
                          rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 19:44:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2788 (0xae4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA
        Validity
            Not Before: Jul 22 19:44:49 2025 GMT
            Not After : Jul 29 19:44:49 2025 GMT
        Subject: CN=687fea31-2485
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:bc:59:81:88:d4:c6:a9:1c:78:50:4e:c9:5c:
                    04:1b:ff:86:f0:41:5b:28:8b:3f:f0:b6:5f:fc:9e:
                    21:8b:a7:f2:c2:12:95:b2:fb:85:14:8a:1d:18:71:
                    48:93:03:07:65:5e:55:98:22:45:c0:49:d8:68:b4:
                    94:a4:ea:9c:05:e1:b6:61:6f:29:b9:07:94:84:ff:
                    b0:9b:cd:e2:e2:26:bf:bd:72:90:ae:21:cd:9f:37:
                    6b:3b:7f:d3:44:1d:17:d8:56:f4:36:b7:5e:ed:ca:
                    3c:fe:9c:f8:67:6f:3b:ed:8e:c2:56:3c:5d:ae:07:
                    01:68:ab:01:9e:c7:8f:32:d3:23:e8:9e:13:40:e3:
                    cf:90:03:ef:63:f4:17:8e:a2:d9:72:93:fa:6f:db:
                    35:ce:03:79:35:86:ee:48:41:46:af:1d:31:c1:a8:
                    4d:b5:6f:b7:ca:ed:e8:0b:da:61:ad:19:a1:77:5f:
                    da:4a:b9:7e:b6:27:ed:9a:36:c3:8f:c8:6e:ee:c7:
                    8f:a0:fc:89:25:ff:a0:a8:1b:dc:e7:2c:80:38:df:
                    a6:45:0e:4a:2c:01:58:96:25:2a:58:a2:b9:b2:ee:
                    65:95:bc:6c:90:34:a9:19:91:20:bd:05:af:dc:7b:
                    b1:b8:6a:1f:e4:14:0c:1e:ca:42:ee:bc:af:f7:5d:
                    2b:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:5E:8E:6E:98:42:3A:55:B2:63:21:70:A4:30:34:19:8A:90:37:EE
            X509v3 Authority Key Identifier:
                keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c6:de:16:5a:4b:62:7c:7c:2c:40:36:3a:35:e4:2a:b8:e3:2e:
         00:44:16:8b:0a:fa:4b:97:9c:91:1f:27:73:75:e3:94:1e:f7:
         15:71:e7:3b:43:20:3b:d7:51:a5:ed:c3:e7:34:d4:11:56:68:
         fc:16:e6:95:d7:05:b3:11:df:29:95:0b:08:67:58:bd:4f:c2:
         e7:e9:9d:ea:52:4c:b0:7b:65:88:94:48:f4:a5:7c:59:5d:89:
         41:83:b2:6c:f1:b8:8e:a7:48:ea:2a:0c:af:7b:be:22:eb:65:
         c4:c4:a4:74:60:ad:72:3a:81:e4:8d:be:d5:d3:61:2f:27:87:
         fa:84:d2:5c:92:fa:1d:ce:73:c8:58:96:a6:91:75:71:26:4e:
         d9:b8:b8:99:bc:62:87:be:7b:70:f1:a1:39:8e:00:ad:b2:ee:
         61:49:80:7a:bc:5a:c9:48:f6:48:ce:22:1d:1f:9f:ec:2c:af:
         53:fe:57:fc:c7:b3:15:c3:8e:4a:8b:13:6f:b1:e7:b0:84:4a:
         3d:cd:7b:b5:3a:59:ab:e2:96:63:f2:1d:d6:e5:60:15:0c:d9:
         60:31:4d:c8:11:85:89:df:2a:fb:06:a3:02:f4:a9:c2:6f:15:
         37:a8:64:bf:8c:2c:a1:75:2f:1d:ae:d4:a8:d6:03:17:e5:99:
         59:57:a3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 04:00:41 2025 by rpki-client