Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
File:                     CUyLxdrczZwvs89F0UZN7s86HGA.mft (raw, json)
Hash identifier:          5/YEipELGBcO74PtnBgH6m0dM0h9s8DCdeHgXFlXAyg=
Subject key identifier:   09:EF:75:AD:35:26:4D:8C:E7:59:29:C8:D4:B4:01:AF:5B:18:AF:30
Authority key identifier: 09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60
Certificate issuer:       /CN=A9164164/serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60
Certificate serial:       81
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
Manifest number:          80
Signing time:             Mon 21 Jul 2025 06:49:35 +0000
Manifest this update:     Mon 21 Jul 2025 06:49:34 +0000
Manifest next update:     Mon 28 Jul 2025 06:49:34 +0000
Files and hashes:         1: CUyLxdrczZwvs89F0UZN7s86HGA.crl (hash: 0BWaHObuZWqbEi8trHSNfhluZTPojfbdzioz/o8bhzI=)
                          2: F1B3D754A18211EFA2B7E923C4F9AE02.roa (hash: ZgB4/zOUlrbnr+66F7inM4U41pNR0yS6V1N2ZkRjXXY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl
                          rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 06:49:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 129 (0x81)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9164164, serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60
        Validity
            Not Before: Jul 21 06:49:34 2025 GMT
            Not After : Jul 28 06:49:34 2025 GMT
        Subject: CN=687de2fe-f9c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:6f:bb:a6:19:b6:4e:45:c7:e4:3e:39:cd:dd:
                    7b:98:9b:35:78:a3:71:df:48:96:f8:f7:54:a7:43:
                    32:56:59:ff:0e:be:d6:1f:15:63:14:15:f6:03:65:
                    96:6b:52:da:81:32:f5:12:64:41:20:15:87:59:cf:
                    46:a0:16:21:da:99:37:bc:03:50:2a:80:43:de:70:
                    50:be:49:68:4f:d4:03:c7:b3:2e:80:8a:98:e7:e6:
                    2f:d4:ce:1a:9b:12:66:9b:5f:e0:5d:a9:fb:5a:c5:
                    ae:8d:90:4e:12:81:af:0c:b3:35:2c:ca:94:9f:4d:
                    af:70:9d:5a:aa:fc:e3:b6:a9:f1:4c:23:10:ea:98:
                    7c:45:95:0a:a7:67:01:62:c0:7f:6c:c4:29:15:2a:
                    32:b6:85:51:af:fd:56:de:60:1c:03:c0:b8:b2:5e:
                    4c:c0:a5:f0:ae:17:82:4f:fa:d9:73:23:11:58:e0:
                    83:a5:43:8d:3a:0a:a4:fe:3d:82:91:e3:79:b3:e3:
                    0b:0e:f1:7b:7d:f2:42:54:3c:02:5f:a8:a6:c4:e6:
                    3f:d7:6d:4d:68:6f:28:97:9e:e0:5e:a5:d2:5b:50:
                    87:94:f9:27:89:82:55:83:38:92:ab:59:65:e7:ed:
                    16:bf:15:1a:07:a4:0b:1c:6d:50:63:fe:00:00:6d:
                    e1:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:EF:75:AD:35:26:4D:8C:E7:59:29:C8:D4:B4:01:AF:5B:18:AF:30
            X509v3 Authority Key Identifier:
                keyid:09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:04:b7:2d:c5:67:86:cf:64:b7:23:22:70:8e:9e:1b:f2:b9:
         f8:84:e1:64:79:06:8a:1c:37:fe:0b:30:f7:2c:86:11:3a:88:
         49:70:b1:6e:75:f3:e0:de:70:5d:2a:2c:77:ae:40:3b:ef:53:
         d3:66:0a:60:58:1a:81:55:a5:f8:0e:0b:b0:58:4b:e4:0e:d4:
         6c:38:35:88:66:b7:46:fc:d0:95:14:0c:ed:41:a7:3e:56:8d:
         7e:12:e0:e3:64:84:34:a2:12:d6:e6:36:a7:6b:ca:30:33:2e:
         a8:97:bf:88:13:b0:0d:b3:e9:93:0f:15:07:0c:7e:d6:76:e2:
         8d:fd:84:85:b9:2e:14:79:43:d8:18:77:1a:ce:cb:e4:5f:dc:
         8a:2a:1c:52:e4:44:17:98:1e:14:81:e7:e6:30:0a:b5:29:b9:
         c8:1c:26:7c:3b:72:b7:6e:c2:cb:ef:61:60:de:f9:d3:43:23:
         95:6a:c7:6f:a7:27:a7:52:20:86:37:1b:6b:6d:b6:b3:ef:6b:
         77:b3:9a:0b:66:e9:91:02:25:6f:d0:f3:04:83:8a:ea:cb:d3:
         a2:cd:37:e8:d5:92:66:fc:96:aa:22:2b:7c:8c:cb:f0:05:0d:
         8a:11:05:15:90:f8:63:1f:eb:50:1b:fc:b6:e9:9d:78:f7:27:
         f5:5f:1c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:25:12 2025 by rpki-client