Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft
File:                     i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft (raw, json)
Hash identifier:          DcDdZPlHkWvEh60T4H+9eq2YNB/wTVdT5QNvtMXi/gc=
Subject key identifier:   7C:31:AB:AC:38:3A:EE:14:CF:05:38:8F:E7:8A:C3:9F:FA:E5:ED:91
Authority key identifier: 8B:7F:DE:E4:6A:98:0C:04:33:98:FB:7B:23:9B:05:4D:CF:23:7C:D7
Certificate issuer:       /CN=A914ECD7/serialNumber=8B7FDEE46A980C043398FB7B239B054DCF237CD7
Certificate serial:       0205
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft
Manifest number:          0201
Signing time:             Fri 25 Jul 2025 02:31:01 +0000
Manifest this update:     Fri 25 Jul 2025 02:31:01 +0000
Manifest next update:     Fri 01 Aug 2025 02:31:01 +0000
Files and hashes:         1: i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl (hash: OW9k12AvDrudz5EoXEOcJD6QEgi6iwT1QYWtnqArWYk=)
                          2: FC589960568411EDAE93DA7FC4F9AE02.roa (hash: RxZVoTNoSPk+sPPkKG/4HF99n9loOp00db2bHVAlJ14=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl
                          rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 02:31:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 517 (0x205)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914ECD7, serialNumber=8B7FDEE46A980C043398FB7B239B054DCF237CD7
        Validity
            Not Before: Jul 25 02:31:01 2025 GMT
            Not After : Aug  1 02:31:01 2025 GMT
        Subject: CN=6882ec65-30ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:02:97:26:df:99:e6:9c:4e:42:3e:87:71:e1:
                    69:1a:9d:fe:53:3b:98:87:73:70:b6:cd:f7:01:36:
                    4b:8c:f1:79:63:55:ec:6d:5d:a7:e8:b0:b6:51:94:
                    36:a8:48:73:1a:0d:d9:e6:49:e2:86:e0:0a:ce:b2:
                    70:7e:c1:c8:2e:39:5a:7c:29:4a:c5:0d:76:7c:f8:
                    f0:0a:25:b2:ee:d1:64:2a:69:9f:20:b4:f5:80:7b:
                    32:fd:da:ed:37:b1:3c:b9:80:50:57:39:74:c2:4e:
                    fa:a3:13:ae:90:88:ad:ed:6d:d8:17:65:e4:ba:1d:
                    26:96:e2:da:ee:99:2f:3c:0f:d2:bb:64:e5:da:37:
                    fd:f6:57:75:dc:ab:1f:da:c5:7a:9f:bb:1c:95:e2:
                    6e:33:df:fb:d5:03:e3:40:35:7e:ac:31:a4:53:67:
                    6f:50:fa:8c:63:6d:41:e6:14:13:d9:f6:f2:ac:f1:
                    fc:40:a3:23:10:56:9e:3f:a5:3e:4a:aa:bd:e3:37:
                    80:4e:15:5d:a7:f7:a5:2a:35:30:87:df:ce:59:27:
                    ea:43:fd:59:44:db:82:8b:53:c0:0c:95:0b:ce:55:
                    40:5e:04:4e:4a:2a:66:50:15:d4:3a:57:f2:54:73:
                    78:21:01:89:a7:7a:f1:94:18:e9:0b:fd:eb:16:43:
                    0f:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:31:AB:AC:38:3A:EE:14:CF:05:38:8F:E7:8A:C3:9F:FA:E5:ED:91
            X509v3 Authority Key Identifier:
                keyid:8B:7F:DE:E4:6A:98:0C:04:33:98:FB:7B:23:9B:05:4D:CF:23:7C:D7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:cb:cd:c6:a5:ce:a2:27:bf:04:fe:61:12:a9:63:a5:18:0a:
         6e:b4:ec:ee:f9:53:61:df:e4:ff:6d:3d:7a:d6:01:03:d2:c8:
         b2:3a:ec:8f:14:a6:e8:c2:b9:d5:1f:6a:3a:ee:9f:7b:3b:03:
         52:ec:a4:dd:5c:54:b3:f5:24:09:09:cd:9c:37:69:0a:d5:6c:
         aa:33:bf:7d:85:ee:fa:da:02:c8:77:8f:34:8e:58:d3:14:58:
         f0:35:4a:e5:6c:d9:c5:77:f5:5c:dc:bc:2e:ce:09:84:24:21:
         dc:1e:2d:6f:66:04:3e:49:e8:66:b5:69:1e:e0:92:30:8a:e6:
         cd:0d:47:37:92:98:6f:90:5d:84:94:31:49:41:35:7b:e6:9e:
         eb:f1:a1:54:ea:cc:8c:41:14:82:a4:76:99:50:e2:10:a9:30:
         dc:9d:9d:11:5b:cd:b1:e8:2d:6b:c9:bb:ff:f6:23:05:1c:ac:
         35:86:6c:27:13:0c:52:f2:b7:88:ca:d6:54:b9:5a:8e:67:93:
         ef:47:77:25:c6:be:15:a6:05:40:69:6b:7c:0f:99:1a:92:b2:
         e8:0f:d9:f2:8f:cc:6f:90:9c:9e:44:9b:d4:0c:4e:9d:f0:d1:
         19:c7:a6:8b:d9:ab:cb:ea:d0:bb:4f:f8:92:7d:56:eb:bf:f3:
         4e:fd:9f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 01:59:33 2025 by rpki-client