Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft
File:                     A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json)
Hash identifier:          AerzkAmOpVr8v4vEeFBW9dHdP9I8eUDuWKnzBYHlLEQ=
Subject key identifier:   5B:4A:29:4F:41:B5:24:C1:85:AF:D7:47:56:23:99:D7:C3:67:4A:0A
Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F
Certificate issuer:       /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F
Certificate serial:       0BDD
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft
Manifest number:          0BDB
Signing time:             Thu 24 Jul 2025 18:59:05 +0000
Manifest this update:     Thu 24 Jul 2025 18:59:05 +0000
Manifest next update:     Thu 31 Jul 2025 18:59:05 +0000
Files and hashes:         1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: pZZFuGw0v1EVP8EatifH/JNOv4iAE7LpWEvi9jQJGcQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl
                          rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 18:59:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3037 (0xbdd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F
        Validity
            Not Before: Jul 24 18:59:05 2025 GMT
            Not After : Jul 31 18:59:05 2025 GMT
        Subject: CN=68828279-753f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:d2:b9:72:27:0b:a3:94:13:99:95:7c:f8:22:
                    0a:6a:10:b4:02:79:d0:13:0e:af:82:c8:e6:c4:ee:
                    ca:07:f9:c6:8d:f2:e4:3a:bd:42:57:ce:91:f4:0b:
                    84:ba:4e:63:c4:e5:07:8d:98:14:1f:56:58:00:82:
                    6e:74:3a:75:fb:7e:4f:b5:a9:7d:85:51:4e:6f:3f:
                    95:da:42:4e:74:bd:b2:df:b2:ab:73:af:2e:31:88:
                    15:e3:90:d5:3c:e1:00:c1:a1:87:98:25:0a:f5:05:
                    51:3c:93:41:b8:03:5d:54:55:d7:71:7d:d7:15:82:
                    23:97:e3:d6:f3:f5:f9:d4:ab:d4:4a:87:0f:bb:42:
                    ac:77:4c:5c:06:23:d7:43:25:31:c3:bd:1b:0a:2b:
                    a3:3b:88:14:6a:5f:00:38:88:26:0f:9c:76:9c:d4:
                    5e:3d:7a:d8:aa:c9:a9:db:9b:52:59:68:cf:eb:f4:
                    4d:d6:45:15:94:dc:97:c3:e8:e6:35:0d:2d:a8:c1:
                    c5:aa:54:08:74:1e:63:fa:51:c8:59:98:f2:ed:a9:
                    97:ad:a6:8a:db:99:a2:25:da:94:ae:bb:24:0b:8d:
                    8d:9b:dc:d0:c6:9b:a4:38:c3:d4:db:2f:ff:0c:82:
                    0a:8e:7e:5f:7e:23:53:27:17:0d:6a:de:1f:f6:9b:
                    2b:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:4A:29:4F:41:B5:24:C1:85:AF:D7:47:56:23:99:D7:C3:67:4A:0A
            X509v3 Authority Key Identifier:
                keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:ac:a0:bf:8d:5b:bc:00:5e:d0:1f:bc:37:db:2f:a1:3e:3f:
         60:b3:8f:5e:09:a8:3b:d5:63:5e:55:4f:58:60:cd:56:f4:0d:
         b8:92:01:ea:17:cb:42:5a:05:f3:cb:07:0f:10:91:cd:de:0e:
         11:1c:bb:2d:57:e4:6b:fd:e8:69:c3:c3:8d:0c:c5:ae:11:dd:
         4e:4f:9c:5a:b1:4f:9a:2e:b1:0f:49:ae:2d:3c:63:0d:2b:f3:
         16:fb:10:77:75:8b:5e:2f:13:cd:cf:60:d5:7b:af:b5:3a:cc:
         12:87:e5:1a:e6:93:07:c0:a2:fa:ba:5f:42:58:54:df:6e:7d:
         13:e6:82:b0:69:76:03:6a:70:58:f2:4c:20:69:57:27:6c:66:
         ec:96:08:d3:79:84:69:d4:f8:e8:9f:8b:9f:d6:26:0f:f2:7f:
         e4:ac:6d:df:73:7b:f4:02:dd:42:14:15:41:97:ce:19:61:41:
         19:a6:e3:a9:9e:ce:d2:4d:47:9f:61:b9:ae:1d:73:d1:ea:57:
         0c:fd:af:d0:23:23:4f:43:de:24:57:8d:f9:78:b0:6f:16:92:
         24:0a:3c:ed:3e:00:1f:b2:75:6e:b0:7b:60:ff:d1:8d:0f:a4:
         97:a4:57:a7:9c:62:6c:0e:49:fe:b3:73:8f:ba:b2:68:78:21:
         b2:ec:02:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 01:58:04 2025 by rpki-client