Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft
File:                     9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft (raw, json)
Hash identifier:          ry29LYtQ0g0D5w4ITQTjmGwVu4fO+zitfyf8KSiyOJY=
Subject key identifier:   52:D9:26:9E:DC:28:23:03:8A:66:0E:BF:FE:14:66:8F:9D:09:DB:49
Authority key identifier: F6:25:D6:BF:CD:42:1B:D3:DB:97:C6:95:94:14:BC:70:94:6E:AB:C4
Certificate issuer:       /CN=A919834A/serialNumber=F625D6BFCD421BD3DB97C6959414BC70946EABC4
Certificate serial:       1A0C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft
Manifest number:          19CD
Signing time:             Tue 22 Jul 2025 16:31:46 +0000
Manifest this update:     Tue 22 Jul 2025 16:31:46 +0000
Manifest next update:     Tue 29 Jul 2025 16:31:46 +0000
Files and hashes:         1: 9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl (hash: tp8rWMdg8n02YobVOHh0SbpZfoOX6Y+6i6IsuFiBgR0=)
                          2: 48EE1EC6A80311EBA56CEC52C4F9AE02.roa (hash: c2CgFARH3NGyjJVcgLSdMDavs6AC8B7rRi2PB+rzCh4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl
                          rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 16:31:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6668 (0x1a0c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919834A, serialNumber=F625D6BFCD421BD3DB97C6959414BC70946EABC4
        Validity
            Not Before: Jul 22 16:31:46 2025 GMT
            Not After : Jul 29 16:31:46 2025 GMT
        Subject: CN=687fbcf2-fd5b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:bf:e7:d0:80:ff:5f:d2:c9:a3:93:ca:70:40:
                    79:0b:02:4a:e9:17:7f:88:8b:d7:a8:e4:24:da:f7:
                    16:07:e1:61:e1:2b:c9:df:52:cf:32:c8:e3:74:8f:
                    e5:8f:1b:a0:ea:5a:ba:91:0f:84:4e:87:82:8a:95:
                    20:47:d5:b1:d0:76:b8:79:30:d4:ae:2c:ae:0e:a1:
                    a6:c5:04:a5:85:d8:77:95:72:39:c9:bf:39:fc:9d:
                    7a:83:e5:99:c4:78:e3:2f:75:9a:8f:9a:4d:92:d7:
                    41:b9:c8:2c:fd:1a:28:72:16:9f:71:4c:b9:95:a8:
                    fe:81:fa:d2:f4:1a:35:17:b5:a2:0b:52:eb:d9:f5:
                    47:d3:e9:ad:56:b2:3e:b4:d2:c9:ce:06:b6:29:42:
                    04:87:69:5d:01:b8:62:eb:a3:1d:fe:35:1a:5e:16:
                    86:01:ae:8c:0a:ca:73:0c:77:cf:4a:4e:9a:95:4a:
                    9f:ba:89:b4:93:08:75:21:7e:4c:b7:90:a2:a9:91:
                    0c:8a:fb:b5:b9:a2:5c:1a:21:c2:2c:af:88:a0:e8:
                    95:8d:de:95:22:08:ca:81:78:46:de:7c:48:24:80:
                    49:bb:57:ca:4c:bc:0e:5c:fc:35:6f:f6:ea:56:94:
                    04:cd:3f:29:40:31:6b:88:5c:97:20:a5:6c:da:98:
                    51:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:D9:26:9E:DC:28:23:03:8A:66:0E:BF:FE:14:66:8F:9D:09:DB:49
            X509v3 Authority Key Identifier:
                keyid:F6:25:D6:BF:CD:42:1B:D3:DB:97:C6:95:94:14:BC:70:94:6E:AB:C4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:e3:43:c6:4b:5c:ec:da:31:59:9d:ec:cd:42:ce:11:b3:8c:
         7d:47:a6:6a:01:05:c6:d7:4f:8b:b8:cd:e4:ee:ae:a0:74:93:
         cf:6a:2a:c2:17:7f:c2:9c:cd:ed:32:5f:7c:d9:35:84:df:16:
         55:fe:36:98:04:90:8d:64:8c:9c:aa:94:36:6f:58:c2:88:2a:
         8c:50:5b:ab:d4:93:6f:32:09:75:1b:82:df:bc:93:47:36:91:
         54:46:be:be:14:50:d2:06:af:ab:3a:27:41:c6:2c:86:6e:d3:
         a0:1d:17:46:2a:e6:75:2b:86:f9:5b:94:57:97:7a:73:2a:47:
         08:84:ba:be:36:c4:bc:7e:3c:49:cc:d9:ff:e5:93:e7:08:36:
         0d:36:b2:26:2f:1d:9d:95:64:40:b8:1f:1b:8f:a5:b3:3b:af:
         aa:fb:34:20:37:2b:cd:b7:8e:ea:0b:08:4b:b7:e0:95:9d:90:
         91:dd:a6:25:9c:0d:aa:f5:c6:00:d1:e1:97:eb:ce:ad:ff:d9:
         b7:ed:ef:f2:b3:76:f3:20:05:92:40:ca:ba:6b:3c:ae:8a:ee:
         cb:a0:30:1c:a1:1e:05:5c:df:a0:ef:ab:5d:e7:d8:eb:bc:6f:
         d9:46:8d:41:5f:b6:2f:7d:4c:d7:a1:dc:0d:62:80:ba:0c:9f:
         37:97:03:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 04:01:14 2025 by rpki-client