Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
File:                     o1EXGLQporBD5kW_sWUO5nd-QXI.mft (raw, json)
Hash identifier:          IIJbHe+4l/P8Wq78a43GfdOpx1WmDV/Jd25J0QjxR3k=
Subject key identifier:   72:D8:FA:A5:83:4B:A4:3C:F1:5F:B9:43:96:4B:44:6D:35:D2:58:10
Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72
Certificate issuer:       /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172
Certificate serial:       0827
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
Manifest number:          0820
Signing time:             Sun 20 Jul 2025 20:54:22 +0000
Manifest this update:     Sun 20 Jul 2025 20:54:22 +0000
Manifest next update:     Sun 27 Jul 2025 20:54:22 +0000
Files and hashes:         1: o1EXGLQporBD5kW_sWUO5nd-QXI.crl (hash: V8GzwOfuMY3jUqgHt9yT9zeJxv6bQzeub3yG69nFmTg=)
                          2: F48207E6DB8711EAA446B360C4F9AE02.roa (hash: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl
                          rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 20:54:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2087 (0x827)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919ACF6, serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172
        Validity
            Not Before: Jul 20 20:54:22 2025 GMT
            Not After : Jul 27 20:54:22 2025 GMT
        Subject: CN=687d577e-90c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:0f:00:75:b0:c5:b1:bc:3e:05:f1:98:4d:16:
                    b3:1f:bd:be:88:c2:95:a6:c6:2f:6a:0b:4e:c0:46:
                    3e:0a:da:d3:f6:86:d0:38:b4:60:af:19:08:a5:21:
                    3a:a1:56:90:5e:8e:ae:06:56:73:a8:61:c5:ca:0f:
                    13:7b:e7:e4:8b:ca:86:b5:8d:c7:b3:14:56:d0:a6:
                    ed:a6:be:a8:bf:d5:c3:da:7a:15:80:a9:34:83:0a:
                    b9:e7:1f:7d:e4:b0:ed:2d:14:00:d4:05:11:bd:28:
                    6a:be:a7:11:17:61:8e:e8:6f:3e:5f:1d:e1:80:9b:
                    90:4b:e6:da:2e:65:a8:dc:7e:18:3f:03:67:d7:d5:
                    8e:ed:63:b7:a9:8b:6c:9e:dd:b2:bf:35:16:ce:b6:
                    73:a6:ce:5b:a6:a7:0e:fd:1f:a4:db:e9:53:a8:a7:
                    b6:c1:ee:c4:50:0d:1e:f1:8f:fb:49:63:9c:09:68:
                    c7:85:ba:48:d6:35:df:f2:eb:7e:e3:55:dd:81:81:
                    1c:2a:a5:76:3c:08:bd:e1:b0:b7:01:f1:9a:78:af:
                    80:bb:06:3b:c3:4e:0b:08:42:61:70:d4:8f:89:a2:
                    e5:b7:30:61:7d:12:0f:8a:ba:2a:03:47:4e:a0:9e:
                    9d:e7:54:a0:4f:53:e4:cf:5e:14:5f:c7:d0:1b:bd:
                    71:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:D8:FA:A5:83:4B:A4:3C:F1:5F:B9:43:96:4B:44:6D:35:D2:58:10
            X509v3 Authority Key Identifier:
                keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:fa:6a:ac:94:cb:14:f7:fb:6f:0a:d1:16:8e:cd:e7:23:87:
         b4:d2:fe:c5:68:dd:cf:a5:3f:5e:0a:1d:73:c9:80:76:74:dd:
         e1:f0:f5:f0:73:e8:8f:2c:db:49:9b:73:fe:d8:18:10:bc:29:
         e3:e9:6a:2e:c4:17:7d:f8:da:7d:ac:26:20:90:cc:6e:98:84:
         8e:09:64:62:9d:dc:4f:7d:b3:47:85:ed:19:9b:dc:56:b3:91:
         75:58:21:fc:4d:e4:cb:e4:a0:13:32:54:4d:50:32:28:51:26:
         a5:22:ff:18:eb:3e:99:e2:1c:27:c9:17:c4:b6:7e:18:df:32:
         84:62:56:fb:27:eb:a2:96:c8:b8:db:fa:17:21:c8:ed:38:df:
         86:01:79:89:5c:24:e0:98:fd:de:cc:51:e8:d7:bb:0b:e8:bb:
         4e:85:b8:a7:4f:23:67:cc:79:98:a5:46:eb:d7:2a:ac:63:fa:
         82:e1:6d:eb:23:53:da:74:53:43:ec:04:fd:c8:2c:80:c4:66:
         bb:76:b7:de:5a:c6:9e:10:7f:37:91:40:07:ed:e5:b3:9f:3c:
         66:5e:cd:d0:3c:9e:42:29:2f:7e:5c:d2:ad:6e:8b:ba:9b:99:
         57:60:46:6f:42:dc:4a:91:6b:c5:d9:f0:95:5e:41:ac:65:a2:
         ec:ea:3c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 20:42:54 2025 by rpki-client