Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
File:                     yDkkRRVKIRRXRo3JJnXGsrycRIs.mft (raw, json)
Hash identifier:          1fi6k41b73m0A2qCLJBQan6sJhOkwiUC2ayAq8FZthY=
Subject key identifier:   11:59:D4:95:6E:74:43:41:C6:52:59:F6:7D:0B:59:65:AB:00:93:F0
Authority key identifier: C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B
Certificate issuer:       /CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B
Certificate serial:       01B2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
Manifest number:          01AD
Signing time:             Fri 25 Jul 2025 03:23:36 +0000
Manifest this update:     Fri 25 Jul 2025 03:23:35 +0000
Manifest next update:     Fri 01 Aug 2025 03:23:35 +0000
Files and hashes:         1: yDkkRRVKIRRXRo3JJnXGsrycRIs.crl (hash: TdsVIkMVr4ONos2rWSemTZtpFbUwwevBQHeSYZz2sYI=)
                          2: EC8CA72CDAE311EDA0A6B03DC4F9AE02.roa (hash: F7qGiUSXmfTHkG4rLsiz9f3fhRuXMOAIShVR1Seg7DE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl
                          rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 03:23:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 434 (0x1b2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A7890, serialNumber=C8392445154A211457468DC92675C6B2BC9C448B
        Validity
            Not Before: Jul 25 03:23:35 2025 GMT
            Not After : Aug  1 03:23:35 2025 GMT
        Subject: CN=6882f8b8-9c95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:db:21:98:88:21:6b:c7:b1:bb:10:be:03:a9:
                    be:fb:04:41:f9:7b:44:94:be:2b:4e:34:0f:aa:ec:
                    2e:47:5a:c5:a0:21:8b:d5:94:5c:79:20:43:f9:1d:
                    30:54:4d:af:3c:f5:dc:71:18:f5:5a:27:aa:0c:13:
                    35:1a:36:aa:ea:f3:0f:e8:71:78:cb:67:1d:c7:bf:
                    f2:27:8a:94:55:cc:00:6b:46:ee:87:26:0e:98:c3:
                    10:58:1b:28:4d:01:f3:dd:1b:7c:0d:1c:2f:c0:72:
                    a4:7c:8e:ae:7e:9a:cb:e5:4a:06:30:0c:db:12:13:
                    85:48:4c:9e:d2:2f:6c:56:cc:5f:42:90:da:9d:30:
                    a9:4f:af:fe:a4:53:c0:ef:45:ce:f9:5a:f6:c7:51:
                    0c:f6:ee:e7:e8:01:c8:00:26:af:fa:4b:f2:5c:86:
                    ee:5c:4b:a9:a0:e1:0b:82:ae:ff:b7:a2:e2:a3:5b:
                    42:8f:f0:27:75:36:47:88:98:79:c3:07:cc:26:24:
                    e3:a1:70:6c:11:63:ff:17:fd:6d:4f:2b:2b:f1:e8:
                    94:7b:a6:08:8d:05:bd:91:37:02:b1:09:09:f1:24:
                    d5:4d:14:91:59:0b:a9:cc:6f:1b:85:5e:d1:5e:1f:
                    4e:64:30:49:7b:fa:19:7d:8e:92:2a:0b:65:76:49:
                    bd:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:59:D4:95:6E:74:43:41:C6:52:59:F6:7D:0B:59:65:AB:00:93:F0
            X509v3 Authority Key Identifier:
                keyid:C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:71:16:c8:0c:ca:ab:37:0e:e1:f8:0a:1a:6d:b0:14:4f:bb:
         53:2c:d8:0b:14:39:09:84:87:9a:bd:b4:47:66:8d:35:02:6b:
         bb:b8:d1:37:1c:35:59:94:74:be:55:a5:39:dd:26:cf:b8:69:
         1c:90:2b:a1:02:ca:e0:91:d2:53:3d:7e:9d:40:ab:5a:bf:7b:
         c6:70:8e:05:c2:88:1a:ba:41:7b:a0:75:4e:e6:4f:4a:97:9e:
         ff:23:92:15:fe:53:5f:03:fc:11:0a:b5:f0:25:dd:1f:1f:a9:
         f2:33:71:bf:67:9a:be:97:cf:35:ab:25:84:64:40:7a:91:ef:
         66:4e:1b:8a:fa:a5:bf:b4:12:05:34:48:e6:e1:c6:f7:b2:f0:
         d7:91:3e:57:72:40:69:e3:56:ca:4a:69:96:38:64:e1:d5:cc:
         6b:cf:85:1c:47:b9:72:8a:e3:45:02:0a:8e:04:cc:5e:af:e2:
         d4:6c:b6:22:b6:8d:2d:23:38:28:88:d8:2c:3c:68:ed:0e:b0:
         ea:f8:f4:c9:23:3c:6a:60:4b:c7:7c:eb:85:e0:ac:18:1f:8e:
         33:74:b8:8e:2b:41:ca:89:c3:1e:63:1e:cd:a6:43:b4:55:72:
         71:77:a8:42:89:78:2c:81:fd:eb:e1:5b:f5:d9:c2:67:22:dd:
         3b:d4:29:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 05:14:25 2025 by rpki-client