Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
File:                     1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json)
Hash identifier:          +Y6ATGXzrIJn1n69RgwzsjKst/ENjBxJzl7opRROM5w=
Subject key identifier:   74:DF:77:B1:C1:55:51:65:E5:35:A7:1F:F5:BE:DF:6C:7E:56:20:8C
Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78
Certificate issuer:       /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78
Certificate serial:       07F0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
Manifest number:          07E2
Signing time:             Tue 22 Jul 2025 21:18:01 +0000
Manifest this update:     Tue 22 Jul 2025 21:18:00 +0000
Manifest next update:     Tue 29 Jul 2025 21:18:00 +0000
Files and hashes:         1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: fJSvr2hrqfHLBm+fjEvInVdis2JOWfOkWnmdZaEUOaA=)
                          2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=)
                          3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl
                          rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 21:18:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2032 (0x7f0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78
        Validity
            Not Before: Jul 22 21:18:00 2025 GMT
            Not After : Jul 29 21:18:00 2025 GMT
        Subject: CN=68800008-25d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:75:c5:4b:db:bd:a6:67:b9:6c:d5:64:f4:46:
                    b8:98:d7:cf:92:a8:72:10:04:4c:d7:fc:a1:e4:f2:
                    08:f8:b5:76:ae:03:37:31:5c:42:df:68:5b:f6:6e:
                    cd:c2:8c:06:8b:46:b5:84:64:da:fb:93:88:61:f3:
                    45:89:9c:af:9e:92:67:25:e2:06:53:2e:2c:9d:58:
                    66:89:b0:c8:2e:c4:db:ee:40:56:b8:83:49:a5:e8:
                    9f:70:33:e4:eb:92:1c:4f:fd:35:a6:3b:46:0f:66:
                    9b:7a:8c:99:ba:e9:ad:05:22:46:2b:49:f1:a7:a1:
                    43:be:91:c6:d8:50:b4:8c:d0:68:2b:fe:50:9b:ae:
                    b9:e1:6b:f5:fc:a2:dc:9b:3e:b0:8c:a8:d9:a9:63:
                    46:2e:1b:b3:2b:71:a0:e4:2e:40:f6:8d:2f:36:60:
                    6c:fe:a1:b3:df:be:94:09:c3:08:6a:d7:fb:0d:6a:
                    2a:40:a0:36:07:32:cf:83:58:22:a8:26:c8:67:7f:
                    a3:14:9e:68:b4:1e:a1:c4:ec:d5:26:7f:16:cc:22:
                    d1:1f:78:28:ea:76:80:19:09:b4:f6:8e:f7:5c:51:
                    8c:ec:79:e7:ed:72:3a:1e:6b:42:70:fc:5e:fe:aa:
                    38:f9:81:da:6c:70:93:ef:fe:8e:a9:38:3f:ec:01:
                    c4:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:DF:77:B1:C1:55:51:65:E5:35:A7:1F:F5:BE:DF:6C:7E:56:20:8C
            X509v3 Authority Key Identifier:
                keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:d5:e4:f0:61:08:05:d2:77:86:3a:62:11:ad:4e:08:3f:6c:
         23:43:8d:0d:e9:ee:32:b7:36:82:48:75:00:cd:1a:b5:b3:4e:
         29:86:5b:90:51:74:ba:66:7b:6f:c7:b1:e6:4d:e6:ee:cb:73:
         e6:7f:f4:cf:db:9b:01:26:80:1d:83:bc:47:00:22:71:8d:0e:
         39:15:bc:7d:86:d9:8e:27:6b:8c:29:b1:cd:9f:9c:59:72:cb:
         dc:c6:2f:3d:3c:fa:63:b9:73:59:9a:49:04:35:91:c9:25:14:
         83:04:4c:0e:bb:55:5f:06:74:e9:60:b5:71:c9:d9:22:9a:89:
         2c:55:ee:0b:64:af:a2:e0:1a:af:a4:2f:09:bf:93:f2:50:8c:
         07:a1:02:0a:e5:e8:2f:3f:ab:7e:5a:6e:97:fc:42:ba:fa:d6:
         97:be:45:db:33:ec:f1:6c:fd:7e:7d:e3:a2:fd:c0:f0:b5:a5:
         fb:29:dc:2b:46:83:7a:91:65:74:52:7b:e9:f1:77:74:13:b3:
         eb:cb:38:3b:f6:f5:25:df:c5:36:27:c2:9f:06:bc:cb:52:71:
         fc:06:c7:51:7f:27:44:73:15:bf:72:85:b1:82:4b:05:32:25:
         1b:6d:68:4f:48:07:c9:cc:cf:be:01:77:08:29:2e:f7:d0:99:
         4d:87:e9:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:41:48 2025 by rpki-client