Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft
File:                     GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json)
Hash identifier:          Nn1n9oMtC/0hBUSOFbUTY/tUm6dU9IJu5T+LW7+zdnU=
Subject key identifier:   86:DD:96:BA:7A:19:1B:D5:F4:07:A9:4D:9E:C3:F3:44:AB:9F:6D:C8
Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C
Certificate issuer:       /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C
Certificate serial:       0463
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft
Manifest number:          045E
Signing time:             Wed 23 Jul 2025 00:35:15 +0000
Manifest this update:     Wed 23 Jul 2025 00:35:15 +0000
Manifest next update:     Wed 30 Jul 2025 00:35:15 +0000
Files and hashes:         1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: DpjCjCC1J46/ukUtwslOwPW9LSULMFdQT5h/gJhEMD0=)
                          2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: xFL3ypsjaivEwLZovLg7QH0r6iiczksBr1MYMN2w3rQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl
                          rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 00:35:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1123 (0x463)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A09DE, serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C
        Validity
            Not Before: Jul 23 00:35:15 2025 GMT
            Not After : Jul 30 00:35:15 2025 GMT
        Subject: CN=68802e43-28cc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:fa:a2:79:c9:f6:4e:11:2f:39:60:93:d1:f4:
                    9b:4c:e1:09:90:4e:b0:31:c3:9d:9d:1c:c3:30:72:
                    a9:1f:9f:18:7a:c7:59:af:8f:07:9f:f0:e4:38:88:
                    0a:4c:82:43:47:a2:80:0b:16:87:57:49:48:6c:f8:
                    cd:a7:aa:00:1b:73:a7:3b:82:c4:a5:a3:78:39:5e:
                    00:ec:ef:88:ee:35:e4:b5:91:c8:64:81:88:86:43:
                    25:29:43:24:8a:b4:65:9d:0a:71:ca:c1:d6:49:31:
                    ad:48:06:b6:6a:7f:26:6c:f2:26:67:75:c4:3c:57:
                    e6:ba:66:15:ee:42:57:10:c3:4e:01:26:75:12:e4:
                    90:4c:f8:bc:4c:6f:d7:bc:62:c7:fb:35:d2:8e:67:
                    54:6b:3c:28:36:33:c4:70:13:8d:95:40:a8:8e:7b:
                    4e:62:59:e1:76:64:31:00:fe:80:ce:b2:c9:53:e0:
                    06:5a:77:95:17:79:a7:4d:33:05:ef:fd:59:40:97:
                    74:ee:5f:12:0c:b8:6f:43:8a:2a:2f:95:c8:3f:c5:
                    60:9d:3f:2c:a4:6b:7b:f5:93:0d:50:18:1e:40:7f:
                    d5:b0:fe:59:58:c1:25:77:bc:a0:a2:ad:48:e5:92:
                    d9:88:be:8a:7a:01:1c:7e:d1:a9:b2:d2:64:e4:eb:
                    65:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:DD:96:BA:7A:19:1B:D5:F4:07:A9:4D:9E:C3:F3:44:AB:9F:6D:C8
            X509v3 Authority Key Identifier:
                keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:44:96:45:b2:b3:9a:ae:4b:6c:06:77:f9:24:6c:6b:99:52:
         88:9b:9d:b5:fc:93:74:9b:18:24:98:61:4a:d9:00:a0:97:dc:
         27:59:df:8c:0e:b2:f7:6b:77:83:38:7f:8c:78:1d:57:a2:86:
         81:9c:66:b9:7e:44:a6:16:ff:a1:95:af:20:cf:a7:a9:5b:aa:
         5f:c1:07:04:a8:5e:1f:31:4b:52:ba:83:7a:25:88:e4:b7:4c:
         5f:0d:10:0b:15:81:67:0d:13:15:d7:a6:4b:7e:df:62:23:9b:
         fb:7c:bc:34:f1:77:6f:b0:9b:0c:73:d5:85:2f:4d:01:1d:3e:
         22:1c:3d:49:95:e5:5f:41:6c:d5:51:ab:72:40:51:91:a0:15:
         77:51:53:be:48:1e:e8:0f:b3:6d:b8:b2:c8:13:f9:cb:f7:18:
         11:64:29:ac:7a:9f:02:e9:1e:b1:33:c2:ec:e1:ae:de:e7:d7:
         92:fc:83:07:5e:dd:2c:13:d2:56:9d:01:06:52:fa:28:09:1f:
         4d:d1:b7:49:00:6e:84:ba:09:2c:bd:3a:67:2e:ef:ae:4c:00:
         05:a0:44:6f:84:2c:31:80:59:86:d6:64:17:78:50:73:02:36:
         d0:54:78:a8:28:c9:64:78:f0:0a:d6:0e:5b:de:ee:51:ef:c5:
         f9:75:2d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 08:34:21 2025 by rpki-client