Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft
File:                     Br1EFUedLHUIN8XJQzYTuyWIrrg.mft (raw, json)
Hash identifier:          SOmCrXiWJZdvPii7kWjzR9JrgQBG2UwjYJelmfPUX8s=
Subject key identifier:   C1:5F:09:8B:5F:1C:B3:E7:0C:D9:5A:FA:1A:03:97:1C:C9:EE:43:2B
Authority key identifier: 06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8
Certificate issuer:       /CN=A9177FC9/serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8
Certificate serial:       4E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft
Manifest number:          47
Signing time:             Mon 21 Jul 2025 07:42:26 +0000
Manifest this update:     Mon 21 Jul 2025 07:42:25 +0000
Manifest next update:     Mon 28 Jul 2025 07:42:25 +0000
Files and hashes:         1: Br1EFUedLHUIN8XJQzYTuyWIrrg.crl (hash: R9uWdkrtttgSIiHrMZGFKNpY404lcMDaKB5QjbwHy4Y=)
                          2: FDD39BD607B811F0AB98B333C4F9AE02.roa (hash: qoLPoA4lZ1ha+1hCNURiczpMXcx77W01//WQ1dkufkU=)
                          3: FD6DA4D407B811F0AB98B333C4F9AE02.roa (hash: 1A7do/sKIO8NT6R3NBCJ/yFYUs9LFmYB3G5A768MYYA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl
                          rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 07:42:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 78 (0x4e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9177FC9, serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8
        Validity
            Not Before: Jul 21 07:42:25 2025 GMT
            Not After : Jul 28 07:42:25 2025 GMT
        Subject: CN=687def62-9fd9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:72:ba:93:a5:59:46:0d:73:6d:10:da:d1:9e:
                    6f:80:b4:fe:1b:fe:5e:4b:89:40:b7:a8:22:b4:a5:
                    e3:a0:f6:cb:4b:e4:3d:35:f8:e4:ab:a2:9b:41:e9:
                    ab:e6:8d:83:ae:88:21:13:6d:a3:ee:cf:37:97:49:
                    9d:74:46:bd:8b:3b:10:82:62:9a:82:fc:d8:b6:ff:
                    45:9c:41:50:ab:2f:73:0c:ee:65:97:b4:e3:f5:b7:
                    d1:40:3e:32:a3:a5:c8:70:8c:a3:27:86:96:35:8d:
                    f3:de:95:b2:44:19:9b:bb:b1:21:1d:ae:52:09:22:
                    2f:5c:71:ed:3a:30:9c:d1:73:6e:aa:b8:e8:a6:36:
                    a2:94:09:3f:46:9a:6a:c3:d8:0c:f5:0b:f9:45:c9:
                    02:20:4e:5b:be:65:25:7b:cf:fb:27:e9:27:77:d2:
                    d1:b6:08:84:1f:3e:9d:33:02:74:59:18:a7:80:7f:
                    56:4b:cc:7f:7f:e4:39:8f:01:79:fc:4e:30:46:2e:
                    e6:f4:a8:26:6f:b6:6c:fc:2a:bd:39:45:11:a0:bd:
                    74:74:08:ed:6d:48:5e:b9:b5:af:80:3b:71:72:5e:
                    a0:f4:fe:ff:3f:a3:88:9c:54:39:a1:23:f3:8b:6b:
                    ab:bb:0c:bb:84:a2:73:91:31:fc:47:c6:3e:61:95:
                    4c:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:5F:09:8B:5F:1C:B3:E7:0C:D9:5A:FA:1A:03:97:1C:C9:EE:43:2B
            X509v3 Authority Key Identifier:
                keyid:06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:21:ff:96:ac:e2:59:f6:9a:2e:f7:a6:f1:cb:d2:ec:69:1b:
         83:9f:0a:93:d9:ae:de:73:4b:8f:9a:9a:bf:ef:59:26:90:2f:
         af:0e:61:83:96:14:1f:64:51:90:b3:2f:14:ed:c5:42:26:9a:
         c7:56:34:b7:ae:ad:a6:58:96:d5:b1:0e:d0:e0:cb:ac:5b:06:
         98:35:e8:5b:3d:93:e1:70:ca:d8:d8:b6:4d:9a:68:e3:5a:6f:
         4e:a8:3f:ef:9e:b7:d2:d2:5d:9c:b8:29:e9:14:86:1e:1d:90:
         d4:99:d3:3c:ac:92:d6:61:37:e4:08:ac:2e:69:12:79:03:63:
         f0:9a:f3:bd:dc:2e:5f:4e:66:d1:d6:7c:be:45:ad:6c:53:e7:
         57:e8:4b:2b:89:14:d0:25:75:1f:78:98:52:3e:13:a1:b7:54:
         a9:ac:52:a0:9b:bd:02:5a:ee:4d:e4:45:d3:98:7d:03:1f:66:
         a2:2d:52:dd:73:39:fc:0b:8c:c0:bd:62:3d:e9:48:3e:97:18:
         f6:63:af:1c:fa:a1:69:f0:b0:24:d0:21:75:0d:0f:a4:b4:73:
         66:c4:d0:c6:87:8e:d8:87:50:ba:d1:95:7e:f8:00:ef:30:9a:
         9f:23:78:b5:ae:eb:52:2b:f5:0a:6d:9c:d7:e0:9c:20:95:37:
         7e:4e:cd:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:14:04 2025 by rpki-client