Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
File:                     U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json)
Hash identifier:          bmMiH334WTDtSSDd1X4n7xcCXbR0tgC+os2QBt6e/lw=
Subject key identifier:   CC:2E:EB:B6:82:BD:72:F6:16:98:14:CA:37:99:DD:23:86:CC:40:83
Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69
Certificate issuer:       /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569
Certificate serial:       093E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
Manifest number:          091A
Signing time:             Tue 22 Jul 2025 20:37:58 +0000
Manifest this update:     Tue 22 Jul 2025 20:37:58 +0000
Manifest next update:     Tue 29 Jul 2025 20:37:58 +0000
Files and hashes:         1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: dgwi9VOJeALKU6sojN1625CEdm+hA7bzj68ZDULxHCA=)
                          2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl
                          rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 20:37:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2366 (0x93e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569
        Validity
            Not Before: Jul 22 20:37:58 2025 GMT
            Not After : Jul 29 20:37:58 2025 GMT
        Subject: CN=687ff6a6-c9cf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:b0:62:d3:b1:2e:31:52:02:c1:a4:29:36:a5:
                    d9:86:a9:8f:56:cd:b7:3f:7e:cb:ec:85:eb:69:b7:
                    39:43:7f:4d:62:f8:bd:53:50:a3:7d:24:09:f4:7b:
                    1c:99:fc:fa:b7:ee:44:0f:03:3e:67:ab:3a:db:f8:
                    8a:67:8e:0f:0b:b9:0d:64:dc:38:ea:8d:42:10:51:
                    52:db:c9:63:d8:51:0f:19:3a:52:d5:34:e8:b6:7f:
                    75:dd:c5:c3:2a:90:ff:6c:31:4b:ba:28:c5:cc:ce:
                    5f:d6:2f:04:ec:11:bb:4f:6e:bc:01:df:22:b6:0a:
                    93:27:fb:20:aa:74:ab:b4:43:27:8d:26:8f:c5:85:
                    e9:35:6e:c4:af:88:f3:f6:62:2d:77:8a:02:fa:a4:
                    36:07:00:e2:79:08:1f:8c:6a:be:2c:b9:62:66:f5:
                    8e:f5:4e:f0:d4:bf:26:cb:64:66:9e:d5:99:26:6d:
                    7d:5e:76:0d:4d:8b:0a:72:b3:80:eb:b7:58:8e:9b:
                    95:1e:2f:ab:9b:8c:61:1c:41:79:b7:6d:cb:0d:34:
                    63:b5:5d:a5:d0:66:4f:f8:f2:02:7c:7d:99:4f:75:
                    2b:e1:2f:70:62:f8:df:1a:da:d4:5e:7c:dc:83:43:
                    66:08:85:f7:ad:75:3f:3c:12:cd:4c:6a:dc:25:34:
                    36:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:2E:EB:B6:82:BD:72:F6:16:98:14:CA:37:99:DD:23:86:CC:40:83
            X509v3 Authority Key Identifier:
                keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:14:e0:22:e8:32:07:64:1d:b4:fc:4c:12:75:13:6e:6d:fa:
         14:1a:15:50:54:a0:57:fc:85:be:2a:b7:f7:d8:c3:d3:4f:6d:
         3f:47:63:3c:3b:8d:8f:ef:71:69:b7:0d:6e:53:b8:b9:b9:51:
         20:ec:46:52:4f:84:3e:ab:f7:b7:d4:b6:6c:66:6d:7e:05:9c:
         a9:0c:94:e4:86:09:45:39:4e:62:ec:6c:d1:67:3c:e1:bf:9f:
         55:88:8e:1e:ae:fe:cd:e2:c7:d3:93:ac:69:b7:c1:f3:a0:38:
         4e:c2:ec:8e:9c:46:6f:f5:3d:81:93:ce:b8:1d:d4:f2:e1:f1:
         1e:17:85:44:03:dc:7e:19:ea:9d:17:76:6d:7c:d5:d7:ec:80:
         a8:7f:47:9c:7e:05:bc:b3:03:c7:92:ae:17:22:63:71:6b:85:
         79:bc:cc:dc:b8:26:4f:51:8a:24:d0:cd:5f:7e:de:b4:ff:31:
         87:94:41:29:e4:9b:95:4a:0e:06:c6:e6:62:1b:e2:6a:51:a0:
         09:60:a9:54:ea:93:29:37:4b:49:7b:35:8e:f1:ad:79:d1:00:
         2d:31:e6:50:a9:94:fa:49:6d:8d:e6:10:dc:6e:0a:93:d0:7b:
         57:a2:07:08:f3:fe:06:7a:68:b6:72:e9:4b:9c:85:c1:84:00:
         2c:aa:f5:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:34:32 2025 by rpki-client