Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft
File:                     mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft (raw, json)
Hash identifier:          1F1aKSXu1gJtYSufccyyweD7bQttMmN7vugUPywCgkg=
Subject key identifier:   3A:2C:12:3E:91:15:B8:69:4B:50:B2:25:E7:D5:64:0C:99:97:ED:82
Authority key identifier: 9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4
Certificate issuer:       /CN=A9147CBE/serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4
Certificate serial:       5F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft
Manifest number:          5E
Signing time:             Mon 21 Jul 2025 07:18:15 +0000
Manifest this update:     Mon 21 Jul 2025 07:18:14 +0000
Manifest next update:     Mon 28 Jul 2025 07:18:14 +0000
Files and hashes:         1: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl (hash: aewiEh0houupeyqEoFyYGxdKIhBGOcr7tPEKTiQTJk0=)
                          2: 6D66CE8017BA11F094861F7DC4F9AE02.roa (hash: +D4BVGFKWyg9Pr75Q40/ty5hMk4DuavCG4i3TGDDyg0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl
                          rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 07:18:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 95 (0x5f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9147CBE, serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4
        Validity
            Not Before: Jul 21 07:18:14 2025 GMT
            Not After : Jul 28 07:18:14 2025 GMT
        Subject: CN=687de9b7-7b61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:7d:e4:25:33:85:c4:b6:87:f3:3c:94:d3:8f:
                    40:ce:1e:1c:ef:93:94:d9:94:2b:0f:24:a3:a1:b6:
                    cf:82:9a:39:6b:c3:6d:a9:69:1d:5d:c2:0e:d7:6e:
                    47:bc:78:da:aa:2e:37:d6:a8:8e:41:5b:62:87:6c:
                    75:eb:ed:df:80:05:17:84:55:8b:3e:2f:4b:6b:1c:
                    f4:c0:c1:25:b0:bb:4e:b5:23:1c:0b:67:f5:2b:7a:
                    7c:49:6d:6a:e6:1e:12:f0:18:e4:76:e4:d2:08:f3:
                    67:66:f2:41:51:7c:0a:0d:c5:45:47:36:73:6c:36:
                    81:bd:50:ef:55:e7:1e:6a:39:c8:12:3c:93:c0:83:
                    dc:f1:64:a5:ff:8c:47:7c:1b:1d:91:68:b1:d4:c0:
                    f4:0b:cd:d4:b9:cf:2e:eb:d7:a7:5e:04:81:7a:f1:
                    5f:74:c4:39:05:ea:06:bd:df:82:9c:2b:70:0a:41:
                    00:50:84:55:c4:b3:01:d4:1e:61:2a:4b:74:21:ac:
                    b9:b4:42:3f:24:b5:26:db:0b:8f:44:ad:7e:22:b5:
                    ec:89:09:2d:81:6f:e7:96:79:16:86:58:ed:4f:ca:
                    70:a1:19:ec:d1:c9:fc:93:26:4b:f9:06:51:6c:e2:
                    80:bb:c1:86:77:1f:de:f9:c5:de:1c:b0:b0:07:71:
                    39:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:2C:12:3E:91:15:B8:69:4B:50:B2:25:E7:D5:64:0C:99:97:ED:82
            X509v3 Authority Key Identifier:
                keyid:9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:8a:0c:f7:27:bd:b8:64:7e:42:08:2d:e6:80:ed:2b:6e:d9:
         c5:86:ff:df:4d:ac:a0:0b:1c:21:81:47:4e:fa:b2:44:8d:02:
         67:b0:e5:25:11:15:1a:d8:64:b9:9c:2d:9a:ce:22:85:23:07:
         97:d2:ae:83:4b:42:76:db:dc:40:74:23:4c:e5:66:66:12:0e:
         39:b7:a3:19:17:ab:e2:9a:7c:64:31:d6:e2:53:93:ad:74:b8:
         3c:6e:1d:6a:b6:cd:29:ca:fb:a9:d4:0f:52:58:30:3b:a8:ad:
         1d:2d:0e:1e:bb:20:55:1e:3b:ca:85:58:ba:15:07:a0:d6:5b:
         07:67:3e:67:45:39:9e:0f:b0:a8:ed:f2:3f:30:ba:fd:a7:c8:
         aa:e0:b3:5a:59:1f:15:07:26:0f:74:84:91:b8:7f:e7:c3:d7:
         3b:93:97:32:a8:36:44:e1:90:cf:88:fe:09:08:ec:70:3b:ca:
         74:db:ca:c5:80:41:6f:9b:38:82:58:20:dc:80:91:0f:e9:70:
         76:9f:83:87:32:0e:0f:50:40:f4:c2:e1:53:58:a4:4b:15:59:
         a1:8e:79:f0:e0:81:3d:f9:fd:c4:02:12:8a:a8:e8:a8:2f:71:
         f6:db:65:2d:42:51:ac:3e:6a:4f:2a:60:2d:2b:8a:e5:d5:a5:
         51:48:29:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:27:13 2025 by rpki-client