Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft
File:                     4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft (raw, json)
Hash identifier:          duxL9qOLyPdBm70qHqpkYQjif2KuDlLlEUJfGTH18HU=
Subject key identifier:   61:51:94:27:80:EC:B5:5A:CE:BC:93:08:C0:3B:63:DA:B3:71:12:1A
Authority key identifier: E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1
Certificate issuer:       /CN=A91536B7/serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1
Certificate serial:       68
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft
Manifest number:          5060
Signing time:             Fri 18 Jul 2025 16:31:14 +0000
Manifest this update:     Fri 18 Jul 2025 16:31:14 +0000
Manifest next update:     Fri 25 Jul 2025 16:31:14 +0000
Files and hashes:         1: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl (hash: CjWdD6AaHY2EblS/Lx4x6eLwoJ3AC/tjHiYws1L0TZE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl
                          rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 25 Jul 2025 16:31:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 104 (0x68)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91536B7, serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1
        Validity
            Not Before: Jul 18 16:31:14 2025 GMT
            Not After : Jul 25 16:31:14 2025 GMT
        Subject: CN=687a76d2-77ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:a6:c9:10:04:ce:7f:e7:32:ed:12:ea:64:63:
                    f3:c6:d6:8d:75:f2:67:cf:d8:b6:5a:f4:93:9a:fe:
                    25:f7:3c:97:27:5e:e8:b9:20:d0:c4:bb:11:22:76:
                    45:92:12:55:12:c6:e2:f5:c8:2a:bf:a8:73:1b:b5:
                    c4:47:38:35:a6:3c:24:42:c1:46:39:0e:c9:f9:a9:
                    a0:78:f0:b9:ee:1d:42:d1:90:9c:47:ae:9e:4f:02:
                    e5:f4:10:1e:57:fb:46:b9:55:83:88:18:e6:04:0c:
                    7c:88:c4:a5:cc:fe:0f:04:e4:61:96:91:00:b8:7e:
                    aa:f6:7b:6d:e3:27:a0:f5:10:c6:e8:43:ca:53:6f:
                    0c:a6:2e:a7:49:82:b7:15:f3:14:d7:9c:a6:91:30:
                    f2:00:6f:72:ce:a7:45:a2:98:72:b0:cc:9a:46:4b:
                    b4:dd:d2:71:1a:ac:8a:d0:6d:bc:d1:4e:de:8a:63:
                    68:ff:a2:75:b6:74:58:4e:2c:7f:09:94:9d:be:2a:
                    2d:82:ae:f2:0b:04:22:6c:91:9c:bb:86:84:97:e9:
                    5b:d1:df:61:45:a3:81:79:3f:95:82:0b:45:2e:e4:
                    54:26:0f:49:25:4e:0b:d0:80:ff:98:48:f1:8d:e5:
                    3b:42:73:39:b5:4e:5b:bb:70:07:ab:4c:23:27:82:
                    7c:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:51:94:27:80:EC:B5:5A:CE:BC:93:08:C0:3B:63:DA:B3:71:12:1A
            X509v3 Authority Key Identifier:
                keyid:E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:91:9e:92:4c:a6:9d:15:2e:af:32:fe:4e:9e:2c:c0:01:6e:
         da:7d:87:2f:fe:fa:16:2e:ec:6b:30:13:4b:34:c6:4e:ba:05:
         9c:2f:26:49:05:0e:b9:9a:f0:0b:97:ed:1b:96:d3:d0:cd:5f:
         c2:94:6e:35:4e:59:8b:91:8c:35:47:c7:39:01:f6:39:6b:12:
         6b:7b:eb:94:76:44:ab:d5:36:7a:5e:ab:27:40:fd:c9:c8:dd:
         0c:76:cf:e8:0b:98:88:3c:c2:2f:71:70:ac:a5:d0:64:38:05:
         73:49:e0:b6:a8:94:9a:43:25:6d:5e:95:68:0d:a4:e4:24:da:
         23:70:3e:dd:16:a1:d9:15:3d:a5:2e:b7:3f:5c:19:95:ba:93:
         2a:af:d0:7f:ce:1b:85:4e:ed:36:a0:e4:74:0c:0d:bd:c9:cf:
         6e:9d:ce:49:d1:5e:f0:62:62:41:72:a9:a3:63:44:68:46:ed:
         b2:11:12:d1:45:12:c2:0c:8e:3f:0e:88:2e:95:49:99:8b:17:
         e7:33:5f:5a:8e:52:5d:95:d8:3b:ba:be:3b:35:b7:d3:9f:d1:
         43:16:44:85:52:20:4f:4a:fd:3b:90:ed:49:b8:d0:46:be:50:
         c8:02:26:66:5e:e1:88:4f:05:e8:bf:94:96:b9:db:80:c5:ef:
         e6:1a:12:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 07:30:07 2025 by rpki-client