Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft
File:                     h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json)
Hash identifier:          tPstFAdwnKr1GHjgvGpw4GoJsh29YNwJnPJmEdh39is=
Subject key identifier:   F3:9B:3D:05:62:1F:D9:F0:2D:30:65:B8:05:4D:20:A5:14:BA:C2:23
Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9
Certificate issuer:       /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9
Certificate serial:       0144
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft
Manifest number:          0140
Signing time:             Mon 21 Jul 2025 04:28:30 +0000
Manifest this update:     Mon 21 Jul 2025 04:28:30 +0000
Manifest next update:     Mon 28 Jul 2025 04:28:30 +0000
Files and hashes:         1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: lwaxGJVEGyrJGnBp2Gw1bt0dylbfl1b++EEApIB4lmw=)
                          2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: lQYmsDBc3UpFQI5bvRZLM1pLBA2w7erJcueIAfvmPc0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl
                          rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 04:28:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 324 (0x144)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9
        Validity
            Not Before: Jul 21 04:28:30 2025 GMT
            Not After : Jul 28 04:28:30 2025 GMT
        Subject: CN=687dc1ee-22b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:db:80:f2:6b:2f:7f:6a:32:e5:94:8a:33:c5:
                    09:7e:0f:5e:c2:02:49:4f:0b:0f:08:3e:9a:64:c5:
                    21:d8:e4:04:1d:2e:bc:1e:1c:60:d6:88:7e:48:82:
                    96:4d:bf:7b:c0:09:53:ee:c3:ce:75:c0:35:ae:81:
                    6b:10:4f:a9:aa:c2:e8:67:c2:d8:5a:f6:e9:6d:15:
                    b9:96:13:e5:3c:e9:e6:27:b9:d5:d8:9f:4e:df:61:
                    58:89:fc:7b:c2:c5:27:11:09:97:39:52:14:10:1b:
                    2e:6c:57:d3:60:a3:62:0d:6d:f6:51:24:8b:63:96:
                    dd:7d:7a:26:19:e1:bc:72:07:5a:a5:ba:27:1c:84:
                    cd:50:0b:22:0d:69:a0:17:07:81:4b:73:72:5d:8e:
                    61:9e:34:15:7e:5a:59:d5:dd:1e:fb:0d:80:3e:74:
                    8c:1f:36:d3:8d:71:e6:8e:16:6b:0a:b2:15:0b:b7:
                    99:e2:0c:b0:5a:94:3d:b7:73:66:a3:23:1c:c4:a1:
                    64:7a:47:da:ab:94:e9:9d:84:d9:a9:14:f1:b6:dd:
                    7f:6c:5e:d2:3a:71:32:4e:2d:b9:23:6c:a2:e2:47:
                    39:26:ec:1f:57:87:34:08:af:ba:c3:7f:70:04:60:
                    99:5e:3c:a6:12:24:96:69:2a:64:98:6c:c9:fb:81:
                    6a:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:9B:3D:05:62:1F:D9:F0:2D:30:65:B8:05:4D:20:A5:14:BA:C2:23
            X509v3 Authority Key Identifier:
                keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:56:a2:81:a9:46:f4:58:d6:bf:7a:12:69:32:b3:8b:02:56:
         fc:74:07:1c:3d:66:b3:8d:ef:cb:ab:ca:a9:91:99:34:88:41:
         d6:73:d5:1d:42:b3:88:78:60:60:cf:18:80:95:44:d8:c3:1b:
         6d:a3:33:60:37:8d:5c:3c:a7:53:e2:09:4e:5d:e4:11:6b:2e:
         e6:98:80:84:57:2f:0a:12:9e:45:a3:64:88:fe:e1:34:d6:41:
         b0:3c:7e:28:bc:56:a3:d6:b0:00:5a:1c:72:a2:62:3e:27:a7:
         e2:33:2d:f5:54:44:ad:29:95:e0:58:b0:b3:9d:69:b5:53:e9:
         9d:e8:d9:73:b5:0f:46:97:67:30:46:84:7d:29:4f:6d:5f:b9:
         dc:01:10:86:b0:25:6d:41:c0:9a:aa:8a:45:60:28:a6:2c:16:
         9c:86:44:60:f6:52:1b:36:42:14:00:65:79:1d:13:1b:20:02:
         c0:e0:f3:c3:20:0b:f4:58:2f:7d:42:a8:02:75:c7:c6:4e:1c:
         4a:a7:0b:50:be:34:6f:8a:12:9b:23:2e:4d:28:2b:9c:19:8b:
         b5:db:24:b3:1f:aa:c4:d7:bd:74:ec:b5:04:cb:11:31:50:18:
         a2:2a:73:c3:f6:33:55:9c:6b:02:24:7b:8b:a4:b9:0e:fd:57:
         c2:ad:de:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:32:39 2025 by rpki-client