Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft
File:                     A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json)
Hash identifier:          MSJZmbdTI32dUlKr45dpKKvfPDckwIidNzOAbg7oIbI=
Subject key identifier:   6E:F5:F9:53:32:51:02:90:3F:12:D1:E3:E6:E2:70:03:6F:20:FE:D0
Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F
Certificate issuer:       /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F
Certificate serial:       0BDC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft
Manifest number:          0BDA
Signing time:             Tue 22 Jul 2025 19:04:48 +0000
Manifest this update:     Tue 22 Jul 2025 19:04:48 +0000
Manifest next update:     Tue 29 Jul 2025 19:04:48 +0000
Files and hashes:         1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: Kf663AQU7Poalw3tph2UmFlYRhDmuuCph9y/tLhvCAk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl
                          rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 19:04:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3036 (0xbdc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F
        Validity
            Not Before: Jul 22 19:04:48 2025 GMT
            Not After : Jul 29 19:04:48 2025 GMT
        Subject: CN=687fe0d0-a3b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:4b:88:a2:bd:2b:c5:5a:f6:57:39:db:ef:03:
                    f4:bc:89:58:fa:f8:d3:b4:d9:bb:29:c1:fe:76:58:
                    61:09:ef:71:0c:2f:58:0b:4b:02:a1:10:ed:9b:aa:
                    71:f1:0b:94:b0:39:80:c5:d2:59:96:0a:30:b0:95:
                    e7:fa:8a:03:d0:79:9a:e6:fb:42:c9:ae:65:fc:50:
                    c0:35:6c:cc:71:e1:bb:6e:06:ae:c9:38:b4:76:38:
                    2c:61:60:d6:39:1e:e7:76:dc:be:2c:d4:13:49:3d:
                    38:9b:3b:49:8e:b8:14:9a:9b:53:5f:4a:9c:02:6a:
                    0a:25:c0:85:cd:38:35:07:fc:9a:fa:e7:04:b8:a8:
                    61:b2:37:8c:94:32:f0:16:bc:99:f1:6f:bc:6b:44:
                    ca:3f:f6:d8:dc:89:12:5b:33:78:2b:b9:1f:b4:07:
                    26:76:5f:89:2c:9c:a5:5f:16:52:0b:14:ad:9a:48:
                    19:f3:05:26:f9:ac:f8:dd:54:4a:07:e3:da:4d:af:
                    2d:14:2d:71:fc:69:a4:b4:fc:fe:9d:4a:fe:77:ac:
                    70:ae:ed:77:17:1e:86:f2:fa:57:d4:6a:55:e0:d9:
                    c1:69:ed:d7:7a:1e:c5:73:00:d2:da:59:d1:f5:92:
                    e8:5b:b6:f9:df:2e:7e:67:52:99:ad:e6:17:aa:46:
                    e0:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:F5:F9:53:32:51:02:90:3F:12:D1:E3:E6:E2:70:03:6F:20:FE:D0
            X509v3 Authority Key Identifier:
                keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:24:8b:c6:c0:0e:1e:67:04:95:40:b1:de:f4:a4:ed:f6:7c:
         93:53:a2:45:d0:40:0d:08:ca:00:aa:de:80:69:65:77:c0:f9:
         96:48:bf:36:11:0b:dd:80:81:33:55:5e:42:82:2f:9d:12:3f:
         36:b9:ff:0d:33:81:90:2f:5e:ab:07:ac:9c:4a:c8:0b:d2:5c:
         1c:5e:c3:87:c4:e6:81:4d:a3:a0:aa:83:dc:90:f0:a0:83:96:
         48:4e:43:0c:9f:3f:b4:44:d6:85:78:e8:b6:fa:79:31:99:ab:
         a1:c8:9f:f7:85:8d:78:78:69:37:5d:ae:44:07:fe:fe:8c:4c:
         dc:c4:9f:bd:e5:ca:f0:4c:a3:e2:62:58:66:89:56:52:d4:7f:
         cc:18:b1:ff:38:8d:66:96:b8:9b:83:9b:1f:ec:4c:40:59:ef:
         a7:11:00:3b:ce:c9:05:0c:be:67:a3:a7:1b:3b:e5:4f:a0:e3:
         fe:70:4b:ce:11:8f:c9:6b:80:40:32:1e:61:54:9c:15:1d:18:
         d8:41:93:be:48:bc:92:06:5c:4c:5f:cb:f9:12:a9:19:ed:79:
         4d:fb:92:45:eb:5f:76:8e:55:ef:7b:3d:cb:88:28:58:b7:a5:
         4a:4d:8f:8d:ff:04:58:ea:e7:98:47:09:e4:df:43:3f:6e:9f:
         82:74:fa:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:31:02 2025 by rpki-client