Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
File:                     AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft (raw, json)
Hash identifier:          JbA5Xmn7pKsCquzHqsnC8MW6xD5weDmFC5+ZlyRHqxQ=
Subject key identifier:   F5:7F:5A:9F:49:61:A7:F4:05:79:CB:7E:8C:D6:B5:F8:60:D3:32:F5
Authority key identifier: 00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB
Certificate issuer:       /CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB
Certificate serial:       0B6D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
Manifest number:          0B64
Signing time:             Thu 24 Jul 2025 19:13:30 +0000
Manifest this update:     Thu 24 Jul 2025 19:13:30 +0000
Manifest next update:     Thu 31 Jul 2025 19:13:30 +0000
Files and hashes:         1: AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl (hash: L6pVmmKrksj/mAzqPcQ02tkA3K1JTi6zoffnA+N9TVI=)
                          2: 32DDB7DA368B11EA9713E971C4F9AE02.roa (hash: KCGgayyIaV9bw3+jN02UdfN4476+RHEdK89wpH03TIg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl
                          rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 19:13:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2925 (0xb6d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91735C9, serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB
        Validity
            Not Before: Jul 24 19:13:30 2025 GMT
            Not After : Jul 31 19:13:30 2025 GMT
        Subject: CN=688285da-f28a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:38:13:d5:fc:2d:43:7f:48:96:85:a2:a7:a9:
                    2d:d9:94:74:8f:19:40:59:c2:20:21:42:57:e7:65:
                    99:3a:fa:e8:70:1b:02:8e:1b:43:30:6e:76:17:c1:
                    87:9c:fe:ca:5f:6c:19:00:c6:50:cb:86:8c:14:7a:
                    48:28:3c:c8:57:83:39:ce:13:86:0c:0c:55:d2:2a:
                    41:54:ed:b6:0e:ff:f9:0d:c1:4a:39:30:fd:55:7d:
                    1b:fc:ba:05:6e:0f:87:bd:09:d1:30:1e:75:af:a9:
                    df:3d:6d:e4:25:37:90:31:03:44:b2:e5:4b:91:a2:
                    31:db:fd:7c:ea:5f:14:91:22:12:26:13:a7:54:7d:
                    b3:2c:50:81:f7:24:49:24:2d:7a:70:e4:59:b6:cf:
                    9c:8c:f3:a7:7e:b5:94:4e:e8:a2:d4:5e:84:c4:90:
                    62:a3:b4:0c:16:d3:d3:17:b0:50:af:73:35:61:9d:
                    37:c0:0c:cc:91:78:57:68:e7:e1:0a:32:e2:6b:01:
                    e9:12:61:f1:24:9b:86:c2:f2:18:27:7e:bc:74:82:
                    aa:25:da:fb:5d:1d:4b:21:9e:40:2e:c7:95:73:4f:
                    7e:9a:22:c2:98:ef:59:59:81:4a:1e:9e:31:ec:40:
                    50:38:0a:3c:64:65:dc:15:31:c9:55:29:f4:24:30:
                    8c:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:7F:5A:9F:49:61:A7:F4:05:79:CB:7E:8C:D6:B5:F8:60:D3:32:F5
            X509v3 Authority Key Identifier:
                keyid:00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:fc:89:09:d8:38:20:41:81:9f:ba:bc:e8:a1:31:20:f2:c0:
         5e:5b:b6:1d:9e:10:d7:a5:f4:eb:bf:d0:9b:66:7f:4f:12:a2:
         88:26:cb:d6:95:e4:84:6b:f3:77:df:11:c8:06:7d:3b:cd:46:
         d6:ba:fe:55:11:63:43:08:d4:25:f0:d1:10:f8:6f:11:d8:51:
         3d:d0:a4:8c:6b:15:a7:a9:7d:9c:37:ba:9b:71:d8:da:84:f3:
         2f:a6:21:e0:01:ab:b1:63:0b:aa:54:0d:0e:15:95:07:f6:f7:
         89:c5:7f:c6:33:9b:33:f0:a8:bb:70:a1:a4:ee:ef:9e:16:df:
         42:e7:4a:c3:56:8b:a7:e7:47:7d:30:8d:07:48:e1:dd:c0:c4:
         8f:46:ca:f9:34:78:3f:97:0e:68:31:c2:f9:9a:86:c7:e7:e3:
         cc:e6:ec:f1:6a:9e:81:97:08:e9:ac:6c:0f:71:c0:21:9b:c5:
         4b:ee:a5:f5:26:b3:42:00:67:fd:60:a5:ce:ca:23:d0:d4:5f:
         e5:68:b2:d8:11:07:77:f6:ba:d7:44:5e:d9:8a:aa:bd:13:f9:
         5a:94:49:d2:6c:25:27:fc:f0:b8:56:fd:4d:47:62:00:6d:bd:
         4d:db:0c:90:f9:94:83:be:09:be:85:3a:db:c9:2c:49:3e:a5:
         0e:ff:67:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:03:08 2025 by rpki-client