Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
File:                     o1EXGLQporBD5kW_sWUO5nd-QXI.mft (raw, json)
Hash identifier:          vhqyN88rSM+1ZidaWxr18qnVpxI43R85X3mQvRJxsVw=
Subject key identifier:   1F:C6:7D:8F:9D:F7:B7:8C:78:03:0D:09:36:AD:0C:C2:D5:B1:34:75
Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72
Certificate issuer:       /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172
Certificate serial:       0829
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
Manifest number:          0822
Signing time:             Thu 24 Jul 2025 20:57:54 +0000
Manifest this update:     Thu 24 Jul 2025 20:57:53 +0000
Manifest next update:     Thu 31 Jul 2025 20:57:53 +0000
Files and hashes:         1: o1EXGLQporBD5kW_sWUO5nd-QXI.crl (hash: q3W/CQm4E1/AaEjkmC3BOhL9nW65vIQ9NgV3zlv42U4=)
                          2: F48207E6DB8711EAA446B360C4F9AE02.roa (hash: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl
                          rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 20:57:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2089 (0x829)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919ACF6, serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172
        Validity
            Not Before: Jul 24 20:57:53 2025 GMT
            Not After : Jul 31 20:57:53 2025 GMT
        Subject: CN=68829e51-51ad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:ad:f1:0f:19:0e:26:89:ff:54:7e:93:c1:ee:
                    29:71:5c:83:5e:57:f3:90:0c:91:12:2b:9b:0e:01:
                    a9:46:0f:1f:cd:6e:b0:16:11:24:70:dd:a0:e9:b7:
                    d0:f6:9e:a3:0e:90:4c:3a:8e:74:de:23:c0:92:8c:
                    38:d8:21:4d:8b:cc:df:58:b6:f5:e6:d2:9c:1a:25:
                    c7:fb:e7:fe:c6:cc:ab:05:44:fa:fd:f0:69:49:90:
                    dc:28:4f:f0:9f:b4:51:6f:92:f6:75:03:2f:89:cf:
                    a8:c9:bc:a0:6c:b3:a5:82:0a:7e:e8:af:93:95:49:
                    1d:34:91:e8:12:62:22:ae:58:04:ee:d9:78:9f:b5:
                    e1:6c:2c:90:8d:65:dc:87:4b:ca:f0:eb:90:80:64:
                    41:52:21:63:19:ce:de:10:c8:73:b9:3a:85:a1:f6:
                    e2:d5:58:bc:75:4b:a1:1b:07:9b:a3:05:6e:fe:66:
                    fb:cf:82:91:80:0d:da:c0:81:e9:39:eb:c2:31:ee:
                    dc:cc:8e:a9:e7:99:a6:cd:08:85:40:1d:22:45:8c:
                    d7:ad:5f:13:0c:02:a3:e5:18:b9:e2:90:04:25:3a:
                    ea:c0:40:d2:ce:15:96:a8:24:84:91:12:4a:9a:bf:
                    1f:31:bf:d8:29:b8:dc:15:5d:fb:ea:6e:ef:3e:e9:
                    4c:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:C6:7D:8F:9D:F7:B7:8C:78:03:0D:09:36:AD:0C:C2:D5:B1:34:75
            X509v3 Authority Key Identifier:
                keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:3b:ef:2b:d6:85:0c:8a:21:ab:36:fd:bb:89:ce:73:dc:81:
         ba:73:4e:77:68:73:a4:0c:22:0a:f0:66:e6:9e:00:68:0d:9a:
         43:ac:13:38:71:8a:09:da:80:09:64:3b:98:71:03:80:e5:4a:
         ca:a2:a3:ee:58:db:8f:43:0e:4f:6e:ab:20:8a:54:9a:13:cb:
         63:2a:24:80:c3:01:bc:b8:1d:9b:ad:83:1e:cc:e1:a6:82:ef:
         ed:fb:d7:93:c9:77:86:b9:fc:34:86:59:49:b6:b6:49:de:14:
         a6:70:6d:6c:e4:ee:c2:2b:ec:10:e4:45:48:04:e5:48:ec:03:
         84:e7:6c:5a:ea:41:fa:a6:d2:5d:31:e5:5e:84:90:73:6b:66:
         ce:a7:96:81:43:4b:ee:99:d1:8c:b9:b6:f4:83:07:88:13:67:
         60:8f:e5:12:f8:68:f7:a7:bf:3a:b0:e5:b3:56:58:6c:78:4e:
         e3:86:9d:fd:24:46:f7:4f:12:d4:ca:6d:11:25:e7:41:8c:24:
         da:5a:a0:bf:19:ac:ba:db:8a:a3:12:cb:10:3b:64:b2:a4:a8:
         38:8e:66:3b:73:0a:3f:6f:fc:1e:69:a3:cb:7d:f2:e3:73:be:
         5f:81:4d:bb:6d:17:9a:21:23:fe:a5:22:c6:de:f4:ae:a8:fa:
         ab:89:c8:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 05:34:08 2025 by rpki-client