Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
File:                     C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json)
Hash identifier:          RwxpiDCehc1P68M7fDSK2SbuUfJ8tZH8V7E481IZz5k=
Subject key identifier:   97:8E:5A:89:70:77:9B:4D:2B:09:23:2A:41:8A:C0:50:62:27:7E:60
Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA
Certificate issuer:       /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA
Certificate serial:       0AE5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
Manifest number:          0AD5
Signing time:             Thu 24 Jul 2025 19:38:47 +0000
Manifest this update:     Thu 24 Jul 2025 19:38:46 +0000
Manifest next update:     Thu 31 Jul 2025 19:38:46 +0000
Files and hashes:         1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: 4UDwtm+ILh79nhERPL7Iy4K48dkHRdVgIgEfTBSYr5I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl
                          rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 19:38:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2789 (0xae5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA
        Validity
            Not Before: Jul 24 19:38:46 2025 GMT
            Not After : Jul 31 19:38:46 2025 GMT
        Subject: CN=68828bc7-a4fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:60:ec:61:01:f5:22:78:4d:e6:35:a9:cb:1e:
                    ce:f5:64:eb:29:89:05:4b:56:f7:cd:ab:bf:a4:c2:
                    e6:2a:ed:0a:09:70:49:7f:ba:10:88:fd:6f:eb:38:
                    ed:8b:d1:97:ce:21:5c:b8:92:f8:9f:ec:19:4e:d4:
                    e2:e7:a3:e5:29:5a:27:74:22:87:3d:55:a5:8e:c4:
                    fa:19:50:1f:b7:c3:ef:89:14:67:04:e4:d6:c8:65:
                    70:84:2b:eb:0a:31:3c:e1:6f:ea:37:b9:69:01:bf:
                    28:ef:87:1b:00:eb:54:24:5e:5d:12:06:a9:b4:56:
                    d0:4e:48:f2:da:47:0e:f5:b1:53:52:d2:4f:a8:37:
                    77:07:72:72:ca:35:a5:d7:62:8b:1d:f1:fb:6d:39:
                    80:d9:e5:f5:66:4d:bf:52:23:4c:9f:d5:ab:35:2d:
                    18:81:c8:0b:9d:ab:c1:a0:d6:6e:bf:3b:71:3c:7c:
                    5d:46:96:15:bd:0a:43:ee:82:77:84:33:2f:da:13:
                    41:6c:f0:b9:c1:ce:57:26:b2:bf:23:80:25:c0:96:
                    2b:1a:eb:29:56:62:76:43:8d:f5:92:5a:50:f0:7b:
                    ce:24:9a:61:d1:16:aa:56:40:f9:35:af:77:e9:74:
                    61:8f:48:43:12:88:99:5c:fc:4f:82:ab:a4:f4:5f:
                    6b:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:8E:5A:89:70:77:9B:4D:2B:09:23:2A:41:8A:C0:50:62:27:7E:60
            X509v3 Authority Key Identifier:
                keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:cc:dd:c9:c9:6a:ef:7f:fc:51:c2:0e:77:79:35:bf:c3:b1:
         d1:72:f5:c5:c6:d8:4c:36:98:21:3e:0d:75:06:80:9b:2c:8a:
         f3:ab:bd:95:ef:b4:b6:37:fc:c0:90:0f:60:44:5a:f9:6e:14:
         9e:40:e6:c9:29:92:c4:cd:f9:5e:dc:7b:f8:01:ac:dc:b6:70:
         6a:ed:e5:c7:0a:bd:cc:44:e7:b8:1d:45:af:d5:49:fc:2b:56:
         5c:81:86:86:39:3a:40:2e:53:a3:be:4a:5b:98:26:02:80:aa:
         62:f2:d9:d9:87:bd:2f:6b:b5:1a:53:3d:5c:c2:54:40:33:c6:
         23:37:00:6c:81:96:c9:4a:b3:fe:87:eb:75:e0:9e:69:c5:19:
         bf:fd:bf:b6:d1:20:17:4f:8d:d8:67:77:58:2a:80:af:18:c2:
         33:e8:ee:a0:73:b3:4b:37:a8:b7:00:a9:81:e9:44:24:ee:af:
         2c:70:47:58:d0:c2:a5:a2:2f:2f:35:64:13:02:a3:09:f9:d7:
         71:f0:b5:73:a7:28:87:85:ed:66:8f:a7:35:70:2b:45:d8:34:
         32:a5:1e:22:e3:c0:85:29:0d:e1:8e:6b:9f:b7:03:84:ea:8f:
         51:ce:90:d1:01:b1:5b:c2:01:79:c4:1a:a6:de:fe:e4:24:19:
         9b:25:40:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 04:06:36 2025 by rpki-client