Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
File:                     1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json)
Hash identifier:          3jxekABulIzAck0bDy5QFwuTOl5vapJyAmyplRNkd0A=
Subject key identifier:   49:41:EB:01:71:76:15:40:91:D3:EE:AD:94:1F:67:1E:24:94:FE:94
Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78
Certificate issuer:       /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78
Certificate serial:       07F1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
Manifest number:          07E3
Signing time:             Thu 24 Jul 2025 21:14:27 +0000
Manifest this update:     Thu 24 Jul 2025 21:14:27 +0000
Manifest next update:     Thu 31 Jul 2025 21:14:27 +0000
Files and hashes:         1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: Yo3hSaHFPhkdeYdGRF8Z9UDhzdhBXgMc0ig5wTBg9Lw=)
                          2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=)
                          3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl
                          rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 21:14:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2033 (0x7f1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78
        Validity
            Not Before: Jul 24 21:14:27 2025 GMT
            Not After : Jul 31 21:14:27 2025 GMT
        Subject: CN=6882a233-12e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:07:ad:1b:a1:ee:7b:47:aa:a3:8c:13:ab:40:
                    1d:85:94:8b:21:ac:9e:77:07:45:59:61:a9:42:25:
                    b0:a0:79:62:27:8a:58:27:0c:2f:e8:cc:34:66:40:
                    e2:59:8b:5a:ca:5e:11:0b:26:ec:ca:10:10:0d:7f:
                    b8:cc:02:42:ad:da:1c:2e:6d:ab:b4:c8:39:d5:61:
                    35:0e:ce:8d:3b:3b:e8:6f:a7:58:2f:13:5c:55:03:
                    03:d0:96:8e:e2:50:26:c5:07:c3:60:f4:ca:ac:ca:
                    c1:ff:a8:2c:dc:a2:bf:4d:36:12:cc:c9:85:e4:12:
                    d3:f1:ca:05:f5:b3:71:95:7e:93:8e:36:7f:8a:9c:
                    0d:08:08:4f:d9:6a:f7:d1:1b:29:e5:9d:9e:c6:5a:
                    2f:94:e9:36:56:6e:58:40:8d:2d:a4:45:07:4f:0e:
                    c9:94:27:ea:16:9f:4e:aa:2f:cd:2d:35:c8:e3:51:
                    68:54:9f:d6:b0:8d:20:60:3d:4e:21:bf:55:79:1a:
                    2d:4f:24:8b:b5:9f:ec:04:49:42:10:79:8e:3d:52:
                    ec:4c:a9:61:71:57:23:5d:69:38:10:24:71:74:05:
                    6c:d3:24:26:d7:c2:28:29:10:66:2e:42:5c:ed:b6:
                    5a:99:8c:24:96:4e:45:12:e7:97:b0:71:5a:85:59:
                    e3:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:41:EB:01:71:76:15:40:91:D3:EE:AD:94:1F:67:1E:24:94:FE:94
            X509v3 Authority Key Identifier:
                keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:0d:27:49:5f:5f:32:ce:f8:c7:fb:38:b6:dc:4b:18:48:50:
         37:f6:93:83:12:1b:b4:77:0a:86:53:a8:f7:99:a5:f3:8d:ba:
         e3:05:be:d3:77:10:58:ff:d0:96:5e:d8:f5:ba:34:1c:a9:be:
         73:9b:ba:e3:6d:68:e0:82:d7:e3:c6:64:7e:f6:dd:21:79:33:
         ff:c4:ea:da:98:72:a7:cc:92:0e:39:9b:77:dc:33:30:55:b8:
         08:5d:75:12:3b:fc:4e:89:ef:00:7a:d5:5d:34:ee:d5:cb:db:
         93:4c:b6:cc:19:26:5c:18:c8:e7:3f:0b:be:d6:95:20:7b:68:
         a7:14:ff:aa:78:d9:b0:78:7b:85:ec:38:0b:54:09:db:88:01:
         59:2a:2f:4e:c8:e3:51:e4:d6:51:ed:b8:9f:7a:e3:81:5b:7f:
         03:4f:93:52:3f:36:8a:f9:63:29:35:e8:2f:9e:55:e5:e5:a7:
         43:84:4c:bf:26:87:3b:46:d9:ac:f8:2e:c9:bc:cf:99:8a:e1:
         9b:bf:12:16:82:a8:c1:dd:0d:32:ce:80:7d:e5:80:7d:d7:e9:
         2e:df:64:79:b9:9a:bd:b1:0c:b4:ff:79:88:f7:84:17:c9:e1:
         9e:61:d1:1e:ca:26:62:fe:61:ed:d3:49:40:72:a5:7d:ca:e6:
         d0:ed:84:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 05:23:14 2025 by rpki-client