Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft
File:                     i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft (raw, json)
Hash identifier:          6MVN9Auz/9I30bmBzyt8Lwqz7d812Mous/4hb6bQtUo=
Subject key identifier:   6C:B1:43:08:A9:18:80:33:43:86:B2:DE:16:74:1F:EF:71:BE:98:8C
Authority key identifier: 8B:7F:DE:E4:6A:98:0C:04:33:98:FB:7B:23:9B:05:4D:CF:23:7C:D7
Certificate issuer:       /CN=A914ECD7/serialNumber=8B7FDEE46A980C043398FB7B239B054DCF237CD7
Certificate serial:       0204
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft
Manifest number:          0200
Signing time:             Wed 23 Jul 2025 02:35:34 +0000
Manifest this update:     Wed 23 Jul 2025 02:35:34 +0000
Manifest next update:     Wed 30 Jul 2025 02:35:34 +0000
Files and hashes:         1: i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl (hash: eowaevfUV5mAfFjfpLcp7KuigTOVcfA/vWAdvWgRIK0=)
                          2: FC589960568411EDAE93DA7FC4F9AE02.roa (hash: RxZVoTNoSPk+sPPkKG/4HF99n9loOp00db2bHVAlJ14=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl
                          rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 02:35:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 516 (0x204)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914ECD7, serialNumber=8B7FDEE46A980C043398FB7B239B054DCF237CD7
        Validity
            Not Before: Jul 23 02:35:34 2025 GMT
            Not After : Jul 30 02:35:34 2025 GMT
        Subject: CN=68804a76-0674
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:b5:ca:7d:dc:9b:79:9e:0b:d0:6b:c0:e8:31:
                    19:ce:48:c8:10:b0:c4:09:60:cc:01:cf:f1:65:31:
                    18:f3:53:dd:87:4f:34:f2:d8:55:d5:0e:a1:1b:98:
                    cd:6b:ec:c2:81:de:fb:de:f1:c8:32:8c:4c:a6:cb:
                    e7:43:20:50:07:9a:27:ce:fe:fb:5c:4f:0f:fd:9c:
                    f5:f2:6d:a2:9e:03:ed:5e:a4:de:8e:1b:be:8d:91:
                    44:48:e8:45:70:9a:52:f2:d2:31:a0:83:4e:68:67:
                    57:af:7d:4d:38:06:1d:c3:33:da:cc:0e:70:a1:e5:
                    28:bc:2b:e9:18:72:a4:64:bd:00:fe:c2:e6:38:df:
                    fa:0a:1d:b8:a6:9b:33:6b:22:66:57:3f:89:a8:e2:
                    ba:24:62:89:eb:fa:2b:70:91:0c:c0:b7:47:c9:00:
                    fa:da:8e:66:95:2d:fe:e4:0f:71:67:40:e4:0b:a9:
                    20:d7:4b:3b:1c:15:e5:ff:47:92:cd:3d:c4:80:31:
                    f8:44:2e:84:b2:fe:67:a9:7b:19:92:38:c9:eb:af:
                    c2:ea:a8:15:d5:26:71:ab:3b:d0:9a:4d:4f:70:6c:
                    04:17:78:77:70:24:62:26:e8:b3:e5:e6:53:48:47:
                    ab:b5:6c:a6:4a:de:4e:be:e2:bc:67:ce:a7:5f:d3:
                    40:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:B1:43:08:A9:18:80:33:43:86:B2:DE:16:74:1F:EF:71:BE:98:8C
            X509v3 Authority Key Identifier:
                keyid:8B:7F:DE:E4:6A:98:0C:04:33:98:FB:7B:23:9B:05:4D:CF:23:7C:D7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:5a:fb:f9:b1:33:64:de:0e:94:f7:a2:0a:02:f8:e7:ce:20:
         2c:88:73:53:4e:31:ff:49:71:e6:9a:34:49:8a:c6:21:1b:55:
         3c:89:5b:0f:97:2d:2c:60:de:cd:91:83:27:fd:c2:dc:e9:b9:
         73:89:3c:24:c8:a4:dd:cb:4f:32:21:0c:98:49:1a:ec:ee:78:
         44:f9:55:80:6d:de:cd:52:ac:b8:5b:97:67:08:ef:69:a6:e7:
         fb:45:64:c1:67:4c:67:c8:67:16:f5:92:46:aa:f6:e2:d1:22:
         ce:04:8a:4b:f4:7a:4f:5f:04:b7:d2:2d:d1:d6:43:bf:31:86:
         73:f8:27:91:c0:13:c2:e3:07:2f:64:e3:f2:4c:5f:9f:a4:be:
         c3:a2:43:fa:84:35:83:8b:e9:46:39:8b:e7:3a:33:74:a4:cc:
         df:9b:df:b1:df:4f:c8:9c:d4:a3:41:b6:41:0f:60:b2:0e:1f:
         dc:89:4e:29:c1:01:41:9f:20:d8:9e:fe:fd:d9:06:12:50:e9:
         98:44:80:52:7f:d4:98:42:7c:d0:8b:c5:3c:c6:f9:70:bd:4b:
         60:61:1c:11:dc:9e:ac:a7:f3:0a:54:76:0a:93:43:28:04:93:
         8a:45:69:49:9b:c1:ca:4e:21:01:fa:5e:1d:0c:d9:39:1e:ae:
         82:d5:05:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:02:56 2025 by rpki-client