Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
File:                     CUyLxdrczZwvs89F0UZN7s86HGA.mft (raw, json)
Hash identifier:          QzJdsX9G7AxB3PC+xeZ1KWKFAiPzneJkNOkmctVr3rg=
Subject key identifier:   E0:EA:62:3A:DD:E0:D7:88:D5:E2:7D:E9:B7:D1:E4:9C:82:D2:E9:71
Authority key identifier: 09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60
Certificate issuer:       /CN=A9164164/serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60
Certificate serial:       83
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
Manifest number:          82
Signing time:             Fri 25 Jul 2025 06:58:37 +0000
Manifest this update:     Fri 25 Jul 2025 06:58:37 +0000
Manifest next update:     Fri 01 Aug 2025 06:58:37 +0000
Files and hashes:         1: CUyLxdrczZwvs89F0UZN7s86HGA.crl (hash: Pd8wAqLjwJvwJRabX+My5l1PcQ/IULyt5md3cvtZLyU=)
                          2: F1B3D754A18211EFA2B7E923C4F9AE02.roa (hash: ZgB4/zOUlrbnr+66F7inM4U41pNR0yS6V1N2ZkRjXXY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl
                          rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 06:58:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 131 (0x83)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9164164, serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60
        Validity
            Not Before: Jul 25 06:58:37 2025 GMT
            Not After : Aug  1 06:58:37 2025 GMT
        Subject: CN=68832b1d-3c73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f1:ae:40:9b:6f:a2:31:04:be:87:f0:ac:9a:96:
                    9c:b8:f9:ad:ec:6a:c2:02:1a:4c:ae:dc:de:73:00:
                    f2:b3:46:b3:73:52:bb:b1:92:95:dd:7e:12:ca:b0:
                    fc:30:e1:2d:4f:9c:c4:0f:a8:a3:5a:fa:76:27:5e:
                    9e:67:bf:6e:f8:ed:8a:d9:26:2f:a2:88:8a:9e:44:
                    40:0d:b4:51:b4:2f:37:22:b5:e1:44:40:33:3a:92:
                    8b:84:39:16:db:e5:19:6e:39:bb:bc:94:cd:76:2c:
                    c1:28:f5:ca:d1:ea:65:2a:f4:84:f7:06:3c:95:4d:
                    d7:75:e0:2a:c1:33:e3:33:54:d4:a6:b0:fb:9d:d1:
                    84:70:c1:87:73:a0:7b:8a:0a:07:2a:95:d4:cd:f3:
                    2c:df:89:3a:9e:ce:1b:28:f3:ab:8a:4e:2b:e6:ac:
                    89:5f:e0:5e:fd:83:d8:c5:c5:03:be:04:c2:82:22:
                    08:2c:5f:c5:de:dd:a2:04:04:fc:af:5a:87:c5:5a:
                    13:1a:a4:2c:1e:5a:51:73:a8:eb:21:3c:45:73:47:
                    58:31:62:99:b7:67:e0:66:c6:d0:da:14:1c:e4:0a:
                    1e:16:20:31:e7:fd:64:39:37:a4:21:30:f0:86:9f:
                    c7:bc:c3:a3:27:b2:b8:50:36:53:d0:32:fd:e5:7e:
                    80:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:EA:62:3A:DD:E0:D7:88:D5:E2:7D:E9:B7:D1:E4:9C:82:D2:E9:71
            X509v3 Authority Key Identifier:
                keyid:09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:67:75:6e:a9:a2:f6:17:2d:df:86:ce:b5:00:0c:51:ae:ea:
         3d:16:ae:27:c5:44:e5:b8:2c:34:b1:59:99:94:fa:38:a2:3e:
         32:e2:3d:73:85:f9:74:f0:0c:9e:01:7c:f4:9d:b0:cd:ba:9a:
         8f:39:de:2a:e5:08:47:2a:f2:d6:9c:43:54:97:3c:6a:1e:27:
         58:51:d1:58:89:7e:8f:b5:b5:28:19:e5:ff:c9:a0:3d:e3:9a:
         40:ba:eb:3b:a3:9e:6d:66:a8:6e:0a:df:a1:4a:4f:21:81:b7:
         3f:79:eb:e6:44:6c:00:d5:85:3f:e4:cd:da:2a:76:4b:c0:f5:
         97:e4:06:f2:3f:11:1f:3a:78:28:69:73:3d:e1:33:71:a6:17:
         49:8f:2b:1b:6f:66:86:93:90:0c:84:32:1e:17:a7:f9:08:bd:
         39:c0:59:76:6e:ca:68:15:65:5c:3b:46:cf:f1:a1:b4:4f:64:
         4c:d5:e8:15:9a:e3:8a:c0:b8:55:f0:e1:2e:8a:14:15:e3:1a:
         e4:0d:04:f8:9f:04:3b:dd:4e:b2:bf:61:ac:30:f5:30:19:37:
         a9:c1:98:e2:d3:ac:ad:ad:a7:dc:18:7d:86:f3:aa:78:fb:00:
         08:a2:7f:bb:e4:3d:92:aa:c9:f7:4a:83:c9:3c:db:8f:5e:d0:
         b0:23:66:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:00:53 2025 by rpki-client