Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft
File:                     fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft (raw, json)
Hash identifier:          ZoyHb501H7BgZd8dAgWV+01DaMItD2vEN1m41EUar0Y=
Subject key identifier:   BD:1E:2A:79:CB:B6:F7:79:44:B8:FD:FF:95:6A:38:D5:7A:8C:A1:6B
Authority key identifier: 7E:E3:B8:8F:B1:AF:0D:92:DB:D2:16:61:25:FB:09:CB:24:F1:08:3F
Certificate issuer:       /CN=A9170AF9/serialNumber=7EE3B88FB1AF0D92DBD2166125FB09CB24F1083F
Certificate serial:       0621
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft
Manifest number:          061C
Signing time:             Fri 18 Jul 2025 23:06:59 +0000
Manifest this update:     Fri 18 Jul 2025 23:06:58 +0000
Manifest next update:     Fri 25 Jul 2025 23:06:58 +0000
Files and hashes:         1: fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl (hash: 3tGr1R9xI+D+qG20cfE9Q0arU6YSUxkd5mJRhfU/DFA=)
                          2: 98212A1EA7F011EB816C331FC4F9AE02.roa (hash: OhXdNxeZYZKsEh/kQY88PZgh8U46VN9OPBnD0qrSgNI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl
                          rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 25 Jul 2025 23:06:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1569 (0x621)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170AF9, serialNumber=7EE3B88FB1AF0D92DBD2166125FB09CB24F1083F
        Validity
            Not Before: Jul 18 23:06:58 2025 GMT
            Not After : Jul 25 23:06:58 2025 GMT
        Subject: CN=687ad393-bcd6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:ee:95:b0:27:bb:7b:18:bd:db:66:83:52:37:
                    9d:c7:70:c5:b0:c2:0b:40:93:27:5a:2b:3e:0c:4b:
                    af:4b:f9:0e:40:c2:a8:14:96:9d:05:3b:81:a7:fc:
                    cf:8a:b3:94:12:53:00:e8:25:ac:e8:70:73:41:19:
                    79:13:50:f9:8a:5b:c6:e3:6f:aa:e9:08:ce:38:b2:
                    b6:93:77:56:39:25:98:1c:98:cb:58:83:5d:ea:3e:
                    a9:8c:6c:2a:14:53:6b:5f:54:2b:87:a2:ea:50:4f:
                    eb:a2:b8:41:1e:8b:55:8a:e1:2e:ce:b8:0c:c5:2e:
                    67:8f:b2:db:58:c0:67:e4:5a:a6:31:b1:e6:f3:a7:
                    e1:af:10:a2:60:96:9a:27:c2:27:f9:4d:7a:ae:66:
                    23:ce:25:af:cd:19:1a:98:de:b2:7e:83:fd:19:e2:
                    86:34:23:63:e7:c1:ee:5c:2a:27:3b:a4:2e:29:9a:
                    8f:0f:37:3a:b2:80:d7:ff:2b:d4:a1:c1:13:a9:06:
                    cc:d9:1f:be:45:24:7b:05:11:93:eb:58:9e:c3:62:
                    a3:6b:f6:7e:65:51:3e:8f:01:5e:73:df:65:41:42:
                    f0:ba:04:9a:1a:18:c5:85:76:96:00:0c:4e:a9:54:
                    2c:2b:7c:db:d7:02:44:d1:aa:a6:e9:89:c3:91:99:
                    eb:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:1E:2A:79:CB:B6:F7:79:44:B8:FD:FF:95:6A:38:D5:7A:8C:A1:6B
            X509v3 Authority Key Identifier:
                keyid:7E:E3:B8:8F:B1:AF:0D:92:DB:D2:16:61:25:FB:09:CB:24:F1:08:3F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:f8:75:61:6f:ab:dd:1b:7a:47:42:2a:6f:35:ac:1b:29:05:
         66:ec:61:13:d8:a4:19:a6:a6:dd:23:e1:53:7d:09:6a:6f:37:
         fc:e6:16:d4:a0:c9:86:17:7d:e6:7e:a6:d2:f9:80:f4:d6:67:
         f0:37:32:64:40:f7:a7:69:9c:7a:c5:04:52:f2:60:1b:ec:fd:
         22:d8:c8:f7:2b:07:f5:d7:e1:8f:90:0a:ce:95:e6:4c:a2:eb:
         4b:88:e1:4b:e8:f3:cd:36:80:02:08:1a:69:e2:cc:bb:25:a3:
         69:e8:eb:14:05:ce:72:26:94:49:19:23:df:d3:5b:7a:1c:4e:
         61:03:55:0c:02:2c:a5:3b:2c:26:09:fa:7e:6f:42:70:94:27:
         30:dd:c5:7f:e2:01:32:9b:fa:03:6f:5f:f4:7b:55:39:1d:16:
         ca:18:81:d6:dd:0a:a7:ef:91:fa:59:d4:69:77:a8:a9:eb:f6:
         70:f5:f2:54:c0:cb:59:f9:73:cf:12:54:15:2f:62:ad:7b:cf:
         ec:52:2b:c4:fc:62:89:02:eb:3f:e7:25:6f:3b:d4:58:a2:b6:
         97:7f:94:70:50:b1:af:fa:1b:23:be:2c:4f:52:61:0c:27:72:
         47:37:bd:b7:22:fc:c3:79:a4:57:f3:12:20:3a:62:fd:3e:4e:
         98:bb:a1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 06:20:53 2025 by rpki-client