Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft
File:                     BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json)
Hash identifier:          UnBvC40kO1MQyQU9i5Xkp91hpjWtpUIMmz/VYKUxiD4=
Subject key identifier:   16:D2:16:80:11:90:5A:F7:7A:9D:2A:1A:52:23:CA:71:72:5D:83:24
Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73
Certificate issuer:       /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73
Certificate serial:       08A5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft
Manifest number:          089C
Signing time:             Thu 24 Jul 2025 20:44:36 +0000
Manifest this update:     Thu 24 Jul 2025 20:44:35 +0000
Manifest next update:     Thu 31 Jul 2025 20:44:35 +0000
Files and hashes:         1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: qUwprNRxn/4XeN0Dacw6wNva0za5sWWtEs9bFkNSjr0=)
                          2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: XF3b1tsv84dWcHXBpSW6CLzdc6x4da3e9vI5g3fw1j4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl
                          rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 20:44:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2213 (0x8a5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73
        Validity
            Not Before: Jul 24 20:44:35 2025 GMT
            Not After : Jul 31 20:44:35 2025 GMT
        Subject: CN=68829b33-4468
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:59:ec:78:29:0e:b7:e8:83:b7:80:08:9b:43:
                    c1:09:bc:ed:36:b7:77:a3:d5:47:bf:84:9a:c6:f7:
                    c4:32:7a:68:28:72:71:79:9b:5f:e7:b8:6c:76:1e:
                    df:01:16:fa:f6:c5:26:50:1d:14:58:90:fb:ab:de:
                    41:ac:18:03:0d:d7:72:60:b5:b8:f8:bf:e6:07:15:
                    b1:f2:6a:a9:c6:4c:a4:20:a5:c5:07:ac:30:26:9b:
                    b7:ea:79:68:1e:0e:d7:f4:8a:1f:2d:84:6d:04:33:
                    70:e6:c7:fa:e0:2f:f3:f1:03:dd:e1:89:82:fd:5e:
                    bb:84:32:a6:af:94:16:54:43:8c:5b:cb:8e:2a:8c:
                    8b:a2:82:fe:1e:6f:f1:05:b6:99:c8:92:72:be:6f:
                    65:de:f5:44:72:a5:7a:10:14:dd:b4:42:f7:2e:54:
                    c7:34:ff:9f:00:2c:41:2d:4f:0e:e1:14:79:44:f7:
                    4a:c8:b4:02:25:0a:80:cb:31:67:77:ff:06:3b:ac:
                    f7:77:8a:97:e6:05:55:fa:e4:ea:eb:a0:54:23:93:
                    84:c1:a8:71:71:45:ce:aa:17:e7:b9:b9:74:3a:5b:
                    53:09:75:66:f4:ec:4b:0f:6c:01:87:d8:bd:4e:4e:
                    21:ec:7a:40:6b:ba:28:a2:a7:e8:e5:96:82:c7:da:
                    35:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:D2:16:80:11:90:5A:F7:7A:9D:2A:1A:52:23:CA:71:72:5D:83:24
            X509v3 Authority Key Identifier:
                keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:b3:30:ef:34:7a:fa:9a:d8:7f:be:bb:f7:ad:d8:76:0b:ad:
         46:1f:a0:6e:14:0a:8d:e0:88:e8:05:f5:09:8f:02:69:ff:ea:
         9b:cf:f4:83:fd:dd:c5:43:ec:ac:02:e2:72:34:f3:56:35:66:
         29:69:b4:30:3e:ad:1e:36:b3:ca:1f:4f:6f:8c:0b:fd:50:f6:
         3e:7a:b6:c7:05:49:59:ba:45:30:f6:20:a7:9f:fe:fc:ed:16:
         4e:59:e3:3b:28:3c:a3:19:47:e6:26:15:af:97:2c:d6:e4:b5:
         df:d5:d6:6e:8c:71:98:bf:23:dd:1f:77:91:39:27:75:5f:3e:
         a4:29:a5:c5:9b:58:ea:05:fc:1b:03:81:c6:7b:97:e3:c7:17:
         b4:8f:75:93:69:31:25:95:ed:7c:2d:48:9d:36:b8:4e:84:e0:
         d0:1b:f5:5e:79:81:33:46:84:df:d9:39:78:c4:be:37:01:cb:
         33:23:20:9a:c8:c3:4b:71:18:7d:6b:3f:b0:21:3b:57:b3:11:
         a5:df:9f:bf:3c:58:cc:36:65:7e:9e:b7:9e:a7:29:80:cb:ff:
         ab:70:af:49:d5:47:d5:7d:6e:f4:af:f6:7d:18:45:5c:16:fc:
         88:52:3c:4c:3c:cf:e4:5f:f3:d7:e4:5e:99:b1:e9:84:e6:1c:
         37:0a:17:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:03:08 2025 by rpki-client