Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft
File:                     JbCzFZvpDPGiOyUhpSER_wOQXvc.mft (raw, json)
Hash identifier:          naFMkBfMN3Y989IdRTQ69pQjOYqrQ99vxVe0etlRDIY=
Subject key identifier:   E6:37:8C:23:84:98:13:20:B5:0F:B3:82:3C:3F:56:31:0C:93:92:1C
Authority key identifier: 25:B0:B3:15:9B:E9:0C:F1:A2:3B:25:21:A5:21:11:FF:03:90:5E:F7
Certificate issuer:       /CN=A919A716/serialNumber=25B0B3159BE90CF1A23B2521A52111FF03905EF7
Certificate serial:       3B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft
Manifest number:          3A
Signing time:             Wed 23 Jul 2025 07:55:29 +0000
Manifest this update:     Wed 23 Jul 2025 07:55:29 +0000
Manifest next update:     Wed 30 Jul 2025 07:55:29 +0000
Files and hashes:         1: JbCzFZvpDPGiOyUhpSER_wOQXvc.crl (hash: NrL5H35jf2IhhJcbqvTZC5e/cwY9sJCWNgiNVABwl7I=)
                          2: 3051CA240FBB11F0B9C1D274C4F9AE02.roa (hash: LQXESBC03M55eTRwU/sXkaRTACDEQkRKoyFYlNpa2vw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.crl
                          rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 07:55:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 59 (0x3b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919A716, serialNumber=25B0B3159BE90CF1A23B2521A52111FF03905EF7
        Validity
            Not Before: Jul 23 07:55:29 2025 GMT
            Not After : Jul 30 07:55:29 2025 GMT
        Subject: CN=68809571-c097
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:05:b5:71:04:71:29:93:e2:11:0e:f5:28:b7:
                    4c:88:2f:10:e3:98:fc:19:0d:96:ce:f8:04:73:3b:
                    23:0c:1a:7d:a7:be:ab:96:fe:d5:33:2c:02:2e:a3:
                    79:f0:fc:90:8b:c7:75:0a:aa:70:99:5d:62:e5:c7:
                    9a:9c:71:3b:25:49:ff:71:06:e1:ea:5d:23:4b:86:
                    99:94:bb:95:14:9b:7a:9a:7e:13:eb:c3:5d:6a:f0:
                    af:ab:a0:9a:7f:0d:ec:ee:7c:0d:c2:26:4a:88:a5:
                    b3:67:94:2a:7c:fd:42:e3:2f:51:5a:f8:da:70:cc:
                    fa:a8:54:53:10:53:0a:fa:35:b8:0f:2e:c3:7f:d1:
                    99:8a:77:f3:ad:6a:9e:82:e2:fe:31:7c:48:47:e2:
                    92:6d:83:55:cc:e0:e8:b4:4a:85:eb:e8:bf:c4:af:
                    7a:f1:51:66:cf:23:e3:28:25:5b:0c:f9:61:90:bb:
                    4a:f8:6e:b3:a7:76:92:b2:1d:e6:4f:e5:e1:e5:69:
                    b3:55:fb:67:a6:b6:0d:32:2e:bd:42:86:9e:74:58:
                    88:0f:97:85:66:78:19:28:0f:8b:9d:01:5b:08:ac:
                    99:c6:75:77:c5:e0:64:39:69:0f:05:c0:4e:08:b5:
                    23:03:95:93:63:44:e2:b9:bf:63:45:22:5c:09:aa:
                    1c:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:37:8C:23:84:98:13:20:B5:0F:B3:82:3C:3F:56:31:0C:93:92:1C
            X509v3 Authority Key Identifier:
                keyid:25:B0:B3:15:9B:E9:0C:F1:A2:3B:25:21:A5:21:11:FF:03:90:5E:F7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         56:24:6c:3b:13:81:41:df:70:3c:18:1a:e1:24:9d:6b:14:ff:
         dd:50:ed:cb:e4:f0:80:1a:e1:77:1f:b3:dc:0e:4c:7c:d4:8c:
         82:a8:77:b8:46:1f:f3:3d:df:8d:00:4d:cb:2a:9a:f3:42:a4:
         66:9d:e9:da:5e:c9:f9:74:d1:84:55:35:a7:61:42:a4:77:02:
         31:03:45:36:87:17:50:b1:17:47:f0:46:ea:7d:6b:ca:20:84:
         0f:7d:f5:a5:6f:ff:f8:63:1a:f1:4c:a1:d9:e2:ea:cc:bc:b1:
         66:49:51:ec:45:a0:3d:72:9e:c0:9f:68:40:28:39:35:5a:33:
         19:d2:97:d6:6b:69:89:4d:40:b0:73:c9:ae:33:4f:06:ce:dc:
         c7:bd:21:7c:b6:cb:7b:62:b4:fd:b3:da:4c:51:0b:30:d8:3a:
         fa:2a:06:bc:9e:ea:fa:fd:62:e5:cb:18:7c:4a:50:8e:66:e6:
         45:41:72:aa:97:ca:59:6f:85:a7:45:1c:b4:85:53:97:db:17:
         25:2f:af:28:80:cc:41:77:19:2a:12:d9:66:67:1d:9e:5d:2b:
         2f:3b:55:38:79:29:a4:81:d1:77:55:5f:49:fd:69:29:8e:e7:
         4b:ec:77:5b:5e:71:d8:ec:50:fe:b4:2a:1a:0f:64:6a:42:e5:
         21:dd:f7:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 08:27:51 2025 by rpki-client