Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft
File:                     Br1EFUedLHUIN8XJQzYTuyWIrrg.mft (raw, json)
Hash identifier:          jDhgn4QtnxQ0UTuwZOTpwpCdr75EO6L/wKNDGmxtp1A=
Subject key identifier:   AB:AC:2A:EC:AD:35:D3:2E:3D:17:7A:C2:3D:13:89:5A:53:99:A7:BB
Authority key identifier: 06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8
Certificate issuer:       /CN=A9177FC9/serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8
Certificate serial:       4F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft
Manifest number:          48
Signing time:             Wed 23 Jul 2025 07:51:15 +0000
Manifest this update:     Wed 23 Jul 2025 07:51:14 +0000
Manifest next update:     Wed 30 Jul 2025 07:51:14 +0000
Files and hashes:         1: Br1EFUedLHUIN8XJQzYTuyWIrrg.crl (hash: enMPMZz02LEXxoVwJ0OU1mGPbA5lp7x+O5da901x0gc=)
                          2: FDD39BD607B811F0AB98B333C4F9AE02.roa (hash: qoLPoA4lZ1ha+1hCNURiczpMXcx77W01//WQ1dkufkU=)
                          3: FD6DA4D407B811F0AB98B333C4F9AE02.roa (hash: 1A7do/sKIO8NT6R3NBCJ/yFYUs9LFmYB3G5A768MYYA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl
                          rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 07:51:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 79 (0x4f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9177FC9, serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8
        Validity
            Not Before: Jul 23 07:51:14 2025 GMT
            Not After : Jul 30 07:51:14 2025 GMT
        Subject: CN=68809473-9af4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:a7:bc:66:1d:d3:c1:17:1b:07:85:e5:14:c1:
                    ff:1d:1c:6c:51:62:3a:ae:e3:72:96:77:8c:67:56:
                    ce:5c:53:83:39:85:54:3b:b5:c4:9f:90:c7:28:fe:
                    71:47:6c:5b:32:12:d5:46:a3:57:c8:45:b4:6d:5a:
                    20:d4:03:6c:7b:2e:51:36:33:af:6f:94:40:d4:6d:
                    e5:c1:8f:25:b9:a7:a6:7f:19:43:c9:3b:09:20:56:
                    b5:56:8a:08:5a:66:bc:dc:ec:8c:4f:06:78:18:4c:
                    74:14:ed:b9:db:a0:a7:fc:bd:64:4b:ec:9f:f4:a0:
                    c1:9e:ba:2a:e8:e1:2e:e7:2a:b4:fa:ef:93:44:36:
                    34:cc:5a:2e:d2:38:30:65:58:4f:0d:4b:dc:0f:64:
                    a4:5c:b3:9c:7f:af:9a:9e:67:d1:82:85:d3:95:77:
                    22:b2:f2:0f:32:f6:26:68:d4:86:5e:52:93:61:84:
                    ae:46:38:a2:e8:2b:cd:b1:90:5e:d6:15:a7:f1:a2:
                    93:98:b0:41:48:3a:f4:59:af:fc:d0:bb:e2:23:65:
                    24:95:f2:98:86:83:16:94:bf:fc:f4:95:cd:82:4e:
                    dd:55:f7:33:1f:13:f2:6b:4a:f5:27:cb:88:73:f4:
                    6c:71:07:b9:4f:11:27:70:33:36:76:d1:43:70:bc:
                    2e:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:AC:2A:EC:AD:35:D3:2E:3D:17:7A:C2:3D:13:89:5A:53:99:A7:BB
            X509v3 Authority Key Identifier:
                keyid:06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:88:5f:84:d8:04:ff:3b:c3:c6:18:8b:43:83:64:25:a1:db:
         b7:99:90:37:98:0b:4b:84:44:f3:36:30:9c:c5:d3:51:9f:d2:
         9c:d5:19:ea:25:88:5d:97:5e:c1:24:dc:24:ef:35:64:b8:99:
         e1:5e:1a:0b:f2:2e:db:f4:3c:0d:78:08:12:03:71:01:27:ad:
         77:5c:b4:32:7f:1d:6b:d1:d3:19:00:e6:5e:77:8b:8c:fd:1a:
         96:aa:66:ec:11:52:c8:44:fc:d0:e9:7d:5c:4f:f0:6b:88:5d:
         62:39:07:32:ca:6d:94:c9:9b:06:2b:cb:b4:d4:c6:54:91:db:
         1c:06:4c:0e:03:f7:d6:42:b0:76:b6:2e:ae:83:3a:67:f7:64:
         fa:65:a9:ff:5d:8f:03:35:91:1a:2d:ea:87:f3:c3:39:cb:cf:
         15:fd:04:56:7c:a3:44:96:7a:69:e3:57:8e:b7:8d:8e:bc:19:
         f4:34:6e:93:27:34:92:29:a0:11:36:dd:9c:c6:41:0b:16:57:
         f2:f7:0f:c1:70:64:55:ae:02:aa:cd:2e:b3:58:6c:36:64:90:
         2a:c8:a8:e0:9f:d3:0d:45:09:ac:08:26:d1:fc:fd:5b:b4:76:
         93:0f:77:10:d7:7c:fa:14:15:87:92:8d:b8:68:b7:27:4f:62:
         05:50:c2:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 12:11:39 2025 by rpki-client