Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
File:                     065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json)
Hash identifier:          BOKBaDOSwXkjU9lzejcIY5FgmRWmKPkmIRGe5uKD5vg=
Subject key identifier:   98:21:A2:14:FD:01:EA:9E:BA:E5:47:5D:8F:82:90:0C:14:C1:7C:01
Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF
Certificate issuer:       /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF
Certificate serial:       01A0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
Manifest number:          019B
Signing time:             Wed 23 Jul 2025 03:39:28 +0000
Manifest this update:     Wed 23 Jul 2025 03:39:28 +0000
Manifest next update:     Wed 30 Jul 2025 03:39:28 +0000
Files and hashes:         1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: SZMRrRFD95PWGQexuMfj1u4mFM5eKdekzeouaqx4wbo=)
                          2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: hdoIBFcsKBcfu2ieIGwj6SsbqU4NXl1pTKHhFjI1OAE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl
                          rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 03:39:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 416 (0x1a0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9163B62, serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF
        Validity
            Not Before: Jul 23 03:39:28 2025 GMT
            Not After : Jul 30 03:39:28 2025 GMT
        Subject: CN=68805970-8820
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:84:83:fd:6f:52:ce:0d:8a:7a:c5:98:35:d8:
                    be:93:a4:f0:0f:97:6e:97:0c:49:6b:19:e6:42:3c:
                    2c:a2:64:2b:75:d1:63:29:d1:e3:f5:80:46:6d:6e:
                    b9:de:b8:cd:dc:db:70:42:5e:89:bd:8c:44:b4:f5:
                    bd:1f:80:b0:57:19:06:c2:ed:a9:47:10:e3:65:8d:
                    ec:0d:3b:9c:7a:04:22:0c:bf:ed:b3:50:1e:64:91:
                    ed:a5:c9:75:f2:28:79:31:bf:ab:61:23:07:c2:bd:
                    11:13:c3:36:22:78:72:26:1b:73:e4:b6:db:32:c5:
                    84:21:b4:6e:d0:15:5f:cb:f9:bf:a4:b8:05:1b:02:
                    f3:05:08:aa:11:25:0a:8e:4a:03:d2:41:b9:3f:28:
                    b9:ae:6c:7e:6a:1d:4a:55:ba:db:04:01:26:f5:07:
                    49:e2:f2:78:50:06:b0:bb:fd:19:ea:1e:ca:62:75:
                    49:42:88:7c:56:48:67:c0:8c:81:66:39:39:40:d3:
                    7f:a4:43:2c:3a:17:e9:f1:5e:74:7e:51:5d:db:c8:
                    14:8f:44:65:f1:2e:cf:8c:a4:9f:8a:03:58:3b:6a:
                    36:0b:92:ea:fd:45:60:f0:24:22:5c:b9:79:54:f4:
                    5b:d4:81:93:63:75:88:2d:9b:de:8f:b9:da:29:a0:
                    91:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:21:A2:14:FD:01:EA:9E:BA:E5:47:5D:8F:82:90:0C:14:C1:7C:01
            X509v3 Authority Key Identifier:
                keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:f7:60:18:1c:71:b2:b4:fb:b8:f3:12:f9:79:cb:24:42:c3:
         59:c0:f0:f7:d3:d1:19:92:5a:5a:1c:e6:31:49:f3:ca:d2:b1:
         f1:6b:48:32:ca:5e:3d:4f:f2:e6:53:36:71:16:bc:38:4f:ae:
         d5:ba:b4:e1:7b:61:88:05:9c:7e:d1:1d:6f:37:34:27:e4:2c:
         bd:3c:c8:d2:4e:7e:42:f3:3d:6f:58:89:12:bc:3e:74:3b:9d:
         ae:c3:bf:81:99:7b:4b:3e:57:4c:69:f6:c8:90:af:89:c2:93:
         4b:e7:ee:2a:40:ce:71:aa:07:50:4a:29:40:38:82:1b:99:51:
         e3:7d:8a:bc:08:c2:d3:19:ee:09:57:a3:63:5c:18:c3:79:49:
         80:a7:25:3c:f2:44:f2:b4:1c:f9:4e:d3:d6:a4:1f:94:39:95:
         2b:4a:25:c2:99:ef:f1:34:72:33:e6:7e:9f:f3:ab:ff:10:ec:
         7a:b4:35:06:2f:a1:26:43:09:c3:58:c0:19:38:90:22:20:2b:
         99:64:80:cd:4c:3d:94:05:3d:c0:c3:90:d9:be:6e:c9:4f:75:
         ed:34:c5:ac:c7:32:90:4d:cf:d3:6f:70:17:7f:f7:24:ef:ce:
         aa:f2:ec:9c:d9:f9:6a:3a:5e:a5:3e:36:f8:08:4d:01:45:ce:
         79:11:bb:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:04:23 2025 by rpki-client