Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft
File:                     g4n9Rv74flk96Bz_3N8guiynYB4.mft (raw, json)
Hash identifier:          TxXxTmW46xAw7/yIPfn3GlzKo4DIrXYbynHCF94Wbdo=
Subject key identifier:   CE:F2:48:42:A6:78:AA:D7:8A:62:1C:9C:C6:DC:85:C2:90:01:59:AF
Authority key identifier: 83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E
Certificate issuer:       /CN=A91475BA/serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E
Certificate serial:       082E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft
Manifest number:          0829
Signing time:             Tue 22 Jul 2025 21:01:09 +0000
Manifest this update:     Tue 22 Jul 2025 21:01:08 +0000
Manifest next update:     Tue 29 Jul 2025 21:01:08 +0000
Files and hashes:         1: g4n9Rv74flk96Bz_3N8guiynYB4.crl (hash: aryBaS0rSO9p1D6KsuVf0MmIcUHv/N6I6PIFRi0SKnk=)
                          2: 1E1D32C22FF311EC9220256BC4F9AE02.roa (hash: pTjj2b7GgJwyDNJuxZHgCMBFpwcbCF/p1EbBwHpmEQ8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl
                          rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 21:01:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2094 (0x82e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91475BA, serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E
        Validity
            Not Before: Jul 22 21:01:08 2025 GMT
            Not After : Jul 29 21:01:08 2025 GMT
        Subject: CN=687ffc14-c6a4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:c3:c8:27:75:1b:2a:b1:0d:66:75:52:21:5e:
                    f3:b4:a0:b9:0a:77:f2:19:f2:90:b4:a2:cc:d7:a2:
                    cf:b4:bd:ec:a1:a2:dc:5a:2d:07:2e:f5:e2:ad:36:
                    2e:eb:00:30:01:6f:14:09:f9:24:d6:5e:ac:5a:e9:
                    ec:fb:fd:d5:55:cf:d4:d9:79:b8:b3:5e:55:42:ac:
                    68:3a:4f:66:8f:3d:82:d6:14:64:0f:55:e1:af:19:
                    2d:12:bf:6a:94:45:10:51:40:e2:5c:e9:6a:76:d4:
                    94:bd:bd:d6:85:0f:80:3d:f8:e9:eb:2a:5d:bf:24:
                    99:84:85:a1:6d:fa:34:f6:9e:0f:75:ae:0d:9d:ba:
                    6b:86:4a:0b:26:79:c4:be:14:a4:d6:e2:13:e4:77:
                    77:fb:63:b5:30:58:e0:31:55:41:3b:5f:90:19:ec:
                    4d:34:5c:40:00:9f:81:0c:f9:a2:1a:d4:ef:60:79:
                    89:d5:48:86:74:5e:76:ad:f9:28:74:f9:cd:0d:80:
                    d2:61:f4:0e:78:4e:f4:c9:5e:f2:ce:aa:8d:ef:e2:
                    a5:46:cc:fd:21:6b:18:4c:c0:83:1d:c1:c0:a6:42:
                    5b:32:50:f4:d1:63:19:e3:7f:e3:8b:fa:9f:cb:74:
                    1a:f3:66:48:db:31:91:ef:e4:36:dd:2b:d7:63:5e:
                    03:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:F2:48:42:A6:78:AA:D7:8A:62:1C:9C:C6:DC:85:C2:90:01:59:AF
            X509v3 Authority Key Identifier:
                keyid:83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:2f:5c:d8:9a:7e:d4:f0:6a:6e:2a:ca:5e:95:c6:7c:15:33:
         12:ba:57:25:7b:2b:99:11:18:38:0e:09:8f:fa:37:71:39:79:
         97:f7:13:5b:37:c5:c6:6b:eb:b8:cd:3d:fe:52:ee:b7:5b:9c:
         3a:54:57:ef:19:49:ff:82:6d:d6:d8:0a:db:99:d5:d0:2e:a2:
         de:86:39:f1:00:20:88:19:73:65:9d:c9:06:4a:0c:62:d1:20:
         07:10:a6:3e:f9:01:ad:b7:0c:7d:1b:ae:7c:8f:43:a1:19:cf:
         49:c1:dc:5b:bb:72:5b:f9:3c:36:27:04:4b:f4:c0:1a:cf:32:
         70:33:b1:78:06:de:3d:53:67:b3:5b:f9:71:fa:a0:49:c8:be:
         5d:0f:b2:07:9a:e6:e8:22:74:b3:4e:fa:f1:82:1c:1e:6b:96:
         ae:21:01:42:ca:2b:73:5b:b4:97:d9:0b:2b:12:29:1a:f8:95:
         8f:b9:60:99:d1:e2:44:e8:7a:10:64:74:71:5e:52:f1:2b:20:
         a2:b3:0c:cb:d8:40:44:95:19:fb:3c:9d:b4:6e:71:04:f9:0f:
         95:d1:b9:cb:7d:24:b2:a7:e2:99:50:92:82:60:75:ba:1e:41:
         98:e5:95:b8:a0:f6:3e:6d:bf:23:d2:e1:ac:aa:cf:38:46:45:
         e8:17:af:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:06:11 2025 by rpki-client