Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft
File:                     4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft (raw, json)
Hash identifier:          fKZujmky96k7KHgIFA/fdqtl5ASxWkhBC0zk+PRsNVs=
Subject key identifier:   2F:BC:9A:43:27:CE:5C:AB:2F:FB:28:82:F3:3C:0F:FF:66:44:FE:75
Authority key identifier: E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62
Certificate issuer:       /CN=A917F854/serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762
Certificate serial:       AA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft
Manifest number:          A5
Signing time:             Wed 23 Jul 2025 06:37:59 +0000
Manifest this update:     Wed 23 Jul 2025 06:37:59 +0000
Manifest next update:     Wed 30 Jul 2025 06:37:59 +0000
Files and hashes:         1: 4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl (hash: pSHO317X/lzaHyt5/exC9zPcQeBxEjD1ZK/HrYR4rdw=)
                          2: DA21D1C8DF0711EFA13DFF77C4F9AE02.roa (hash: naM1jWBBF1HgB1gzetomIgtwuH6iwO3twg6Wvbh3nCU=)
                          3: 3C74C0E0799D11EF9547461CC4F9AE02.roa (hash: HEoFn428OSrwoj9FY9UBG8roOsE7KCgrYxU/d2SrcQg=)
                          4: 3CE9A810799D11EF9547461CC4F9AE02.roa (hash: LfnrEoRSy98kq5+Het7TGQh6Md9GIYKtrywQQ+4Cqlg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl
                          rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 06:37:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 170 (0xaa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917F854, serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762
        Validity
            Not Before: Jul 23 06:37:59 2025 GMT
            Not After : Jul 30 06:37:59 2025 GMT
        Subject: CN=68808347-a415
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:df:53:bd:b5:c5:0d:41:4d:75:bf:21:e0:4b:
                    1b:4b:66:9d:b1:be:3a:af:ba:c1:3d:01:4c:44:30:
                    e9:5d:79:13:12:89:b1:ae:ae:38:d4:ff:2a:7e:f0:
                    fc:cc:97:77:97:13:e9:43:6b:d6:a2:a9:6b:5d:db:
                    77:f9:22:a3:9e:04:79:61:fe:60:2f:01:0e:4f:25:
                    27:62:71:bf:00:64:2e:52:10:1f:64:24:78:62:b1:
                    aa:fc:f1:cb:35:7b:87:53:d0:8b:d6:8b:91:fa:e1:
                    33:ce:14:3d:94:ee:06:1a:14:1a:de:1d:de:ab:da:
                    3e:65:72:f3:97:46:16:80:dc:4a:2d:e1:09:c7:34:
                    da:d4:ff:76:2b:d8:89:3e:ee:39:6d:f3:50:a5:b5:
                    a3:46:c9:b0:70:02:bf:44:56:e9:7c:79:68:18:eb:
                    20:7d:d7:51:91:dd:d1:3c:c8:d6:2a:0b:90:35:52:
                    6c:de:f1:c0:ee:d5:fb:4d:9d:a9:46:93:bc:7f:52:
                    9f:1e:83:eb:7e:da:eb:85:a8:fd:c8:de:42:0e:91:
                    fd:bf:68:de:7a:93:2c:e0:5e:4f:13:12:86:8d:74:
                    82:54:be:df:41:10:dc:2c:44:c3:9e:8a:ca:a9:3e:
                    e2:ed:ea:7e:2c:fc:76:82:52:a6:a1:88:29:6c:de:
                    8c:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:BC:9A:43:27:CE:5C:AB:2F:FB:28:82:F3:3C:0F:FF:66:44:FE:75
            X509v3 Authority Key Identifier:
                keyid:E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:40:7f:5e:54:2e:eb:c1:14:a8:e4:77:26:8d:03:e9:85:45:
         aa:7a:37:d0:81:ac:10:cf:6b:08:4d:9d:54:a6:a6:10:9e:e6:
         44:e4:3b:d7:59:74:d9:1b:e9:29:07:30:e3:fd:df:a9:0e:46:
         64:4a:1d:45:ed:1f:d6:8c:7b:7e:5e:b1:f6:b6:1c:0d:f9:d9:
         14:b4:0b:a7:44:66:59:13:20:8a:16:11:14:44:b4:5a:cd:61:
         3b:86:0a:67:3b:6c:a6:64:53:71:2c:a9:75:be:50:92:1c:37:
         a1:38:32:4f:6d:bc:41:69:33:4e:aa:cb:40:d9:ee:36:1d:c3:
         54:69:c4:a9:7f:fa:7b:0e:46:de:f2:54:34:7c:54:bb:cd:3d:
         0e:d7:13:a9:5a:ef:b3:80:89:b5:da:b9:f2:e2:3a:77:ac:fe:
         c2:28:19:4e:6c:02:63:80:11:1b:44:cf:10:48:30:09:7e:e5:
         bf:90:21:35:c0:d2:e0:6b:c0:05:05:a4:df:68:ac:83:b6:b6:
         08:82:57:84:13:5d:59:8d:64:66:0f:d7:48:cf:f9:c2:06:03:
         3a:b3:5d:e2:88:b6:34:1c:78:c2:a3:ac:95:42:d0:12:f9:d4:
         4b:fd:7e:dd:91:d5:0e:e2:a4:ad:0b:d5:0d:e2:33:da:c9:0c:
         0d:05:73:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 04:01:57 2025 by rpki-client