Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
File:                     CUyLxdrczZwvs89F0UZN7s86HGA.mft (raw, json)
Hash identifier:          Fu87l6G4SyhAgzdWAsCOnnPYnqnKRDaTYBhrf97SI0w=
Subject key identifier:   FE:63:24:DF:51:55:92:86:54:0F:C5:DB:1E:B7:D6:CE:91:18:87:8C
Authority key identifier: 09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60
Certificate issuer:       /CN=A9164164/serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60
Certificate serial:       82
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
Manifest number:          81
Signing time:             Wed 23 Jul 2025 06:59:12 +0000
Manifest this update:     Wed 23 Jul 2025 06:59:11 +0000
Manifest next update:     Wed 30 Jul 2025 06:59:11 +0000
Files and hashes:         1: CUyLxdrczZwvs89F0UZN7s86HGA.crl (hash: P+F/OvL9hZMJhekVaTzYeXDsyrC54gHuIaqmls2bMfM=)
                          2: F1B3D754A18211EFA2B7E923C4F9AE02.roa (hash: ZgB4/zOUlrbnr+66F7inM4U41pNR0yS6V1N2ZkRjXXY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl
                          rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 06:59:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 130 (0x82)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9164164, serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60
        Validity
            Not Before: Jul 23 06:59:11 2025 GMT
            Not After : Jul 30 06:59:11 2025 GMT
        Subject: CN=68808840-a056
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:35:1a:c0:14:42:c9:7e:52:31:22:79:ff:16:
                    dc:a8:3f:c7:16:e0:99:f3:f2:78:0b:68:1d:1e:95:
                    ba:4a:e0:98:21:fb:40:d3:0d:81:d0:6b:7e:3c:b9:
                    d8:0d:0a:b9:5f:68:3f:1b:01:f4:37:8d:80:95:d9:
                    00:ed:75:c7:78:29:d0:85:b4:0a:da:18:c0:c3:c3:
                    a6:80:e0:a1:6e:d9:f7:47:74:de:a5:14:a5:77:02:
                    67:cb:52:05:60:50:af:91:55:41:78:32:c5:7c:f1:
                    4a:43:fb:b0:f1:b3:b5:a0:75:86:66:74:d4:3f:95:
                    dc:8d:28:e7:54:4e:2f:98:ce:e3:cd:66:e2:1e:1c:
                    e3:82:df:11:ce:8b:a2:fc:0c:ab:7d:54:65:1c:46:
                    95:42:18:f3:63:42:31:64:a4:a0:90:7f:78:c7:2a:
                    d2:84:c5:bd:c6:56:17:3e:38:c7:dc:b1:b2:11:66:
                    50:a3:6b:c0:78:8a:71:07:e7:39:d3:45:9e:75:6d:
                    ab:82:9e:75:f1:49:94:62:c3:03:d1:cb:56:43:a3:
                    bf:51:7d:14:a3:f1:b5:ab:67:cd:57:dc:4a:14:0d:
                    77:cc:09:d2:18:18:79:ce:f3:cc:f6:b3:19:3c:1c:
                    b0:5b:38:bf:6c:f5:bf:b5:39:61:e6:71:bc:14:5d:
                    18:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:63:24:DF:51:55:92:86:54:0F:C5:DB:1E:B7:D6:CE:91:18:87:8C
            X509v3 Authority Key Identifier:
                keyid:09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:e8:85:90:fd:db:03:7a:35:06:72:9f:03:53:92:15:76:d6:
         df:8b:a0:3b:84:21:f4:12:cf:19:34:47:91:24:c7:93:f0:18:
         13:c9:c3:ee:a6:41:f2:b0:e5:c8:35:f0:78:b5:73:fb:49:4f:
         9d:14:12:0b:dd:58:9d:ee:a8:7a:59:5c:c0:ef:78:5d:0b:d4:
         b3:47:60:e2:82:42:eb:09:a1:20:42:11:b5:b1:84:79:18:40:
         2a:59:ea:bc:8a:39:77:c9:29:a1:27:c8:43:27:1d:a5:a2:9f:
         7c:0e:f3:58:c0:b4:88:24:c5:c3:1b:f1:a7:6c:52:f4:77:56:
         e4:82:0d:71:67:d1:bc:d3:bc:c7:f5:3d:87:37:11:f8:4f:45:
         23:70:e2:ff:7c:a1:44:7f:b8:9e:3c:47:aa:b4:08:79:da:59:
         6f:a8:51:32:16:59:45:9f:32:b0:f7:46:cf:de:99:00:65:84:
         04:5a:f1:f6:1e:7d:46:e0:11:af:2a:74:b9:cd:a9:87:cc:4c:
         35:d3:0f:8f:b8:b9:27:55:9a:7a:93:ee:7a:33:58:af:41:7b:
         31:98:20:cf:0e:e7:44:37:84:97:d9:f0:fe:b8:25:1d:bf:3c:
         47:61:89:79:78:a4:ff:c1:8b:ad:76:a1:56:24:95:09:c6:70:
         5b:36:d9:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:03:58 2025 by rpki-client