Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
File:                     yDkkRRVKIRRXRo3JJnXGsrycRIs.mft (raw, json)
Hash identifier:          pDjOCxCF6mlVFVmko+J6vB9F9p8ibkC7psqZkJHoeOI=
Subject key identifier:   21:69:74:93:3F:E9:B8:C9:06:4D:70:4F:A3:55:75:9C:E7:F5:37:9D
Authority key identifier: C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B
Certificate issuer:       /CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B
Certificate serial:       01B1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
Manifest number:          01AC
Signing time:             Wed 23 Jul 2025 03:28:06 +0000
Manifest this update:     Wed 23 Jul 2025 03:28:06 +0000
Manifest next update:     Wed 30 Jul 2025 03:28:06 +0000
Files and hashes:         1: yDkkRRVKIRRXRo3JJnXGsrycRIs.crl (hash: ffdu1M0O/nGPI5pIN7BrhR9ExpwHOYxXZfpSHa+UvsI=)
                          2: EC8CA72CDAE311EDA0A6B03DC4F9AE02.roa (hash: F7qGiUSXmfTHkG4rLsiz9f3fhRuXMOAIShVR1Seg7DE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl
                          rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 03:28:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 433 (0x1b1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A7890, serialNumber=C8392445154A211457468DC92675C6B2BC9C448B
        Validity
            Not Before: Jul 23 03:28:06 2025 GMT
            Not After : Jul 30 03:28:06 2025 GMT
        Subject: CN=688056c6-6ebd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:08:71:4a:1c:d4:3f:d6:72:30:00:e5:49:c3:
                    97:9b:29:57:2a:11:ce:61:22:30:a0:57:56:50:bd:
                    90:5c:05:5e:5a:de:e3:95:8b:ab:2a:43:46:7a:11:
                    ac:46:79:7a:08:c2:36:05:f6:d3:2c:6c:d2:84:8d:
                    22:35:5f:8b:62:99:dc:e1:e9:46:41:d7:d5:27:cf:
                    e4:d1:49:d8:2c:4b:ad:e1:ba:ec:77:27:4c:f8:12:
                    77:28:18:03:29:02:8e:d1:cf:86:43:04:a5:49:b6:
                    fa:33:cd:56:35:72:b1:34:02:29:15:1e:28:46:86:
                    06:94:a3:75:54:9b:04:10:f1:59:b1:a8:6f:aa:79:
                    ee:ea:dc:06:76:e4:2e:41:8e:d6:e4:cf:f5:6d:1b:
                    aa:4a:35:03:ed:92:14:2e:72:f6:18:74:89:6d:00:
                    30:57:8f:6a:61:06:c3:5b:22:a2:a3:c7:ae:4a:49:
                    f0:ec:b8:ca:dd:13:83:4e:d2:38:9a:59:6e:05:ec:
                    42:c7:1b:5a:8f:9d:cf:ef:96:4d:84:01:00:75:3b:
                    67:c5:d4:3e:aa:9c:28:87:7e:45:cd:8a:4e:3e:25:
                    da:5f:3f:12:1b:4e:d3:06:bd:b9:37:34:42:4b:97:
                    22:e6:4d:5c:7f:66:a6:44:f6:6b:af:48:48:5a:b1:
                    bd:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:69:74:93:3F:E9:B8:C9:06:4D:70:4F:A3:55:75:9C:E7:F5:37:9D
            X509v3 Authority Key Identifier:
                keyid:C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:b3:41:15:4f:c8:5a:ce:24:16:bb:c0:94:26:ec:10:08:43:
         e3:ec:87:9d:2a:78:3b:15:a8:3e:39:e2:6c:c2:e3:4b:f6:2e:
         50:d0:bc:d9:cb:18:d2:a7:3a:1f:66:b2:ae:4c:17:23:03:a3:
         dc:d8:63:80:e9:14:a0:26:0e:4b:50:0d:fc:54:a7:c5:90:3d:
         45:6b:9c:62:42:05:90:95:81:ed:0a:ea:5a:54:c3:8c:46:b1:
         66:01:00:03:3b:0e:b9:ce:cf:57:dd:fb:6a:5d:f1:38:d6:fc:
         3f:f5:23:01:16:39:ec:18:c5:63:3a:42:27:7e:1c:76:07:0a:
         39:3a:8b:eb:af:d1:18:ca:89:e0:14:38:e9:63:6a:bc:f1:a2:
         d8:af:50:65:df:ec:dd:5f:f0:39:b6:a2:ed:27:6a:e9:2d:c9:
         c0:ef:a2:14:73:3f:ab:37:88:60:4d:84:37:8f:d3:8d:bb:95:
         18:b0:f6:96:63:78:1c:0b:38:28:4c:e3:74:cb:26:ad:ac:14:
         b6:da:da:65:5e:17:35:7e:9c:4e:61:92:f6:02:db:82:56:4e:
         a3:51:4a:8c:5d:e4:74:8d:96:5e:0a:be:b9:b7:1c:cc:dc:84:
         3a:0f:ac:ad:c1:e5:10:c8:23:5b:7c:b3:41:d7:02:cf:2c:af:
         54:0d:f6:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 08:21:35 2025 by rpki-client