Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft
File:                     zPKlJcCQFETKePBbk5LABFeVZ2E.mft (raw, json)
Hash identifier:          jjNW/RbAgxZ4jaWwO/KzoqJLqEB4zVqAGql3D7SGLO8=
Subject key identifier:   3F:0D:A0:02:FC:F6:A7:6C:DC:3D:00:38:95:5C:4D:BF:F6:9F:B8:7C
Authority key identifier: CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61
Certificate issuer:       /CN=A916A071/serialNumber=CCF2A525C0901444CA78F05B9392C00457956761
Certificate serial:       09DB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft
Manifest number:          09D4
Signing time:             Thu 24 Jul 2025 20:06:38 +0000
Manifest this update:     Thu 24 Jul 2025 20:06:38 +0000
Manifest next update:     Thu 31 Jul 2025 20:06:38 +0000
Files and hashes:         1: zPKlJcCQFETKePBbk5LABFeVZ2E.crl (hash: TevY9ixp7uyuUQ4qwPl5+bPjUbkdZrghlsx35DQxdKQ=)
                          2: 9BAC68CC83C211EABCB66612C4F9AE02.roa (hash: W5ePsoGWgomEoWgiTPJkjSegEKVfUxA0uguQndmw+Ac=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl
                          rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 20:06:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2523 (0x9db)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916A071, serialNumber=CCF2A525C0901444CA78F05B9392C00457956761
        Validity
            Not Before: Jul 24 20:06:38 2025 GMT
            Not After : Jul 31 20:06:38 2025 GMT
        Subject: CN=6882924e-826f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:21:1c:1f:69:91:3f:3a:b1:2a:b1:69:bd:7d:
                    36:71:b9:b4:65:3b:e5:81:31:ef:b1:37:03:6a:a2:
                    c2:97:2b:71:de:23:57:32:88:5c:1d:e4:af:d6:ca:
                    7e:6f:dd:c7:c9:08:b3:3a:55:49:41:98:70:d0:18:
                    0f:e8:3a:df:b5:4b:19:f9:8e:12:c7:8f:6c:2a:32:
                    8b:65:d4:bb:08:27:4a:e0:a9:92:a6:cc:78:87:39:
                    19:52:c4:c1:01:9d:2e:30:7b:00:de:27:4b:59:a6:
                    52:6c:d3:36:44:f6:b0:47:b7:50:75:f2:0a:81:f9:
                    a7:20:66:11:3f:de:83:b1:af:bc:d8:6f:99:8f:b3:
                    74:9d:d8:d2:b5:b5:30:5a:cd:2f:c0:94:72:09:b7:
                    a2:b6:55:af:7d:fd:6f:66:2e:6f:31:9d:6a:0d:82:
                    15:47:dc:b9:ce:3e:37:de:54:39:4f:66:eb:78:02:
                    70:e1:8e:35:27:71:ce:a0:47:4f:8d:2e:16:61:e2:
                    73:62:5e:72:c5:ae:bb:43:4a:a5:bf:9c:eb:8c:44:
                    0d:01:cf:4d:a3:2a:78:61:12:8d:ed:ab:4a:1a:62:
                    d2:2e:15:63:b2:06:27:20:18:78:3d:65:ee:a4:8b:
                    fe:b5:87:0a:cd:01:cb:1b:f0:8f:3e:0b:33:55:5d:
                    d4:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:0D:A0:02:FC:F6:A7:6C:DC:3D:00:38:95:5C:4D:BF:F6:9F:B8:7C
            X509v3 Authority Key Identifier:
                keyid:CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:28:36:f4:c7:73:08:68:d4:38:f4:10:55:ae:13:92:3e:dd:
         4c:cc:d1:e8:0f:87:33:82:bf:9a:10:0c:01:e7:46:e2:24:01:
         61:4b:3e:47:fa:4b:67:de:b8:f6:23:b4:6d:8f:3f:cc:30:32:
         56:fb:e9:d1:72:20:b9:9f:4c:a7:4e:4c:16:29:62:0d:98:1a:
         70:6a:40:4b:b5:36:cc:7b:fc:04:19:f9:32:cd:d5:9f:bc:84:
         8e:30:73:96:67:40:fb:7f:74:47:02:e2:85:6b:9a:0e:5f:1c:
         78:3d:7a:12:47:44:0b:b4:11:98:fa:cb:91:8f:cc:d8:82:93:
         ec:e8:fd:65:1e:82:6a:91:b5:3f:e9:c4:45:eb:4e:75:fe:76:
         69:35:81:f1:83:47:cb:aa:76:00:0c:0f:46:83:07:b0:13:3d:
         ae:ce:b4:6d:3b:11:fc:d3:a1:e2:27:81:bf:02:b3:f7:e9:c8:
         b6:ee:5a:60:7f:67:79:8e:6a:e0:86:a3:9a:51:c0:c2:b1:4f:
         2c:b8:15:0a:b9:ec:91:52:a5:46:4d:03:34:3e:fc:b8:d8:32:
         44:55:3f:8e:4a:46:0c:df:7d:c1:07:5e:6e:a3:75:4b:58:ac:
         55:42:fe:9a:11:c7:02:c3:bc:bf:f5:2f:d5:c3:71:59:08:32:
         de:5d:b5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 05:26:18 2025 by rpki-client