Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft
File:                     Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft (raw, json)
Hash identifier:          nsprtxd+AA09Qu29qM/zrvCcwDqE5bU7Jpy3Fq0xyyo=
Subject key identifier:   1A:BA:7A:98:9F:00:DB:B4:E3:42:B2:57:AD:18:E0:2C:DC:0F:A4:8D
Authority key identifier: 12:AB:BE:9D:4E:59:98:58:59:81:34:9A:5F:A9:B7:5F:DA:BC:58:76
Certificate issuer:       /CN=A91B778A/serialNumber=12ABBE9D4E5998585981349A5FA9B75FDABC5876
Certificate serial:       017A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft
Manifest number:          0177
Signing time:             Fri 25 Jul 2025 03:56:30 +0000
Manifest this update:     Fri 25 Jul 2025 03:56:29 +0000
Manifest next update:     Fri 01 Aug 2025 03:56:29 +0000
Files and hashes:         1: Equ-nU5ZmFhZgTSaX6m3X9q8WHY.crl (hash: kkdZzF46xnvTfjr6ekb7ZoENLrspLKlK0odvXbX4vH8=)
                          2: A60B75F62B7B11EEA4D0FA24C4F9AE02.roa (hash: QlGjMXDN4esCEiynluo/msiy33cpphW/TtlNsWHyAK4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.crl
                          rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 03:56:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 378 (0x17a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B778A, serialNumber=12ABBE9D4E5998585981349A5FA9B75FDABC5876
        Validity
            Not Before: Jul 25 03:56:29 2025 GMT
            Not After : Aug  1 03:56:29 2025 GMT
        Subject: CN=6883006e-9eda
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:b8:f7:b5:fe:f0:d6:a5:78:99:18:fa:41:b5:
                    d5:e0:33:e0:8e:b4:81:88:a9:e3:75:a4:f4:e6:7b:
                    7a:d9:78:c1:aa:c2:82:eb:ad:19:92:25:5a:55:9a:
                    3d:e6:db:2c:83:e6:66:40:48:3e:ab:48:21:8d:e4:
                    86:38:d6:fe:b2:2d:d5:0c:c3:f9:37:f9:aa:e2:c4:
                    96:b5:6e:63:95:3c:f1:67:10:1f:58:e3:3e:16:ff:
                    1a:f4:54:ea:bc:20:ac:3a:8c:8e:28:3c:a4:1a:ee:
                    7c:39:a8:fa:06:49:97:03:cc:85:17:d7:76:5e:3c:
                    67:b4:e5:ef:c8:c8:8d:59:1e:50:cc:9f:26:b5:ad:
                    90:b4:a6:34:8c:14:52:26:71:41:09:0c:13:1a:95:
                    13:fb:8c:87:83:86:9f:c6:17:28:36:d1:41:7b:4a:
                    56:3f:99:a3:b7:1c:e8:74:27:8c:71:3e:82:75:49:
                    78:b7:45:1f:62:77:c7:a6:14:42:93:f7:0d:c9:58:
                    80:c2:c6:34:6c:88:cb:70:ba:50:35:22:59:33:ba:
                    66:ff:a4:62:94:ea:46:9c:c8:92:65:40:f2:9e:53:
                    7c:91:d8:ee:f9:8f:69:eb:36:08:a7:b5:2c:51:9b:
                    54:f3:4d:1a:ec:49:07:bc:f8:dd:02:96:fe:64:0a:
                    ca:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:BA:7A:98:9F:00:DB:B4:E3:42:B2:57:AD:18:E0:2C:DC:0F:A4:8D
            X509v3 Authority Key Identifier:
                keyid:12:AB:BE:9D:4E:59:98:58:59:81:34:9A:5F:A9:B7:5F:DA:BC:58:76

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:c2:50:7e:26:1b:82:17:2e:f2:26:ef:7a:67:85:6f:5d:54:
         ae:b9:9d:a1:3a:0e:b9:8c:07:ed:84:4b:8f:3b:de:ce:7b:8d:
         f2:96:af:69:be:78:f3:ae:4a:a2:b9:b7:38:aa:0d:bd:f2:76:
         bb:84:41:04:eb:b0:f6:6c:62:a1:ea:1e:19:04:ec:f2:5e:eb:
         9b:95:57:18:d4:82:a5:d8:6c:79:b5:4a:b2:dd:0c:c5:d2:3b:
         f1:fe:be:11:e3:05:5a:8f:4d:62:77:8b:79:ff:d8:db:a7:04:
         db:9d:79:73:fb:e2:bf:4f:10:44:3c:b2:f4:c6:55:f3:ca:6d:
         8b:f3:29:59:58:3f:19:4e:b8:d6:2b:9c:24:ca:6b:e9:57:4c:
         3c:88:43:ef:59:05:ea:8d:9b:ad:a5:9a:ad:95:a3:cd:a4:9d:
         8a:2d:a7:4d:d5:20:9e:34:e9:34:f1:08:c8:77:4a:48:12:c6:
         73:90:53:37:7f:26:4d:4f:29:42:c4:f7:5e:c3:b4:2e:4e:60:
         9d:a2:bc:ef:9e:51:68:6b:c9:8b:88:6c:03:03:6c:ac:29:8d:
         bc:a5:44:2f:83:17:60:8a:05:05:e3:34:d4:b1:dc:80:f1:ab:
         52:0f:69:32:de:8f:e5:b1:8f:60:7d:ae:d3:dd:ff:53:74:e6:
         aa:41:60:c9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Qjc3OEExMTAvBgNVBAUTKDEyQUJCRTlENEU1OTk4NTg1OTgxMzQ5QTVGQTlCNzVG
REFCQzU4NzYwHhcNMjUwNzI1MDM1NjI5WhcNMjUwODAxMDM1NjI5WjAYMRYwFAYD
VQQDEw02ODgzMDA2ZS05ZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4rj3tf7w1qV4mRj6QbXV4DPgjrSBiKnjdaT05nt62XjBqsKC660ZkiVaVZo9
5tssg+ZmQEg+q0ghjeSGONb+si3VDMP5N/mq4sSWtW5jlTzxZxAfWOM+Fv8a9FTq
vCCsOoyOKDykGu58Oaj6BkmXA8yFF9d2XjxntOXvyMiNWR5QzJ8mta2QtKY0jBRS
JnFBCQwTGpUT+4yHg4afxhcoNtFBe0pWP5mjtxzodCeMcT6CdUl4t0UfYnfHphRC
k/cNyViAwsY0bIjLcLpQNSJZM7pm/6RilOpGnMiSZUDynlN8kdju+Y9p6zYIp7Us
UZtU800a7EkHvPjdApb+ZArKCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq6epif
ANu040KyV60Y4CzcD6SNMB8GA1UdIwQYMBaAFBKrvp1OWZhYWYE0ml+pt1/avFh2
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc4QS85MDJBQUU5ODJC
NkYxMUVFQTRCQThGN0NDNEY5QUUwMi9FcXUtblU1Wm1GaFpnVFNhWDZtM1g5cThX
SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0VxdS1uVTVabUZoWmdUU2FYNm0zWDlxOFdIWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
Nzc4QS85MDJBQUU5ODJCNkYxMUVFQTRCQThGN0NDNEY5QUUwMi9FcXUtblU1Wm1G
aFpnVFNhWDZtM1g5cThXSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBYwlB+JhuCFy7yJu96Z4VvXVSuuZ2hOg65jAfthEuPO97Oe43ylq9p
vnjzrkqiubc4qg298na7hEEE67D2bGKh6h4ZBOzyXuublVcY1IKl2Gx5tUqy3QzF
0jvx/r4R4wVaj01id4t5/9jbpwTbnXlz++K/TxBEPLL0xlXzym2L8ylZWD8ZTrjW
K5wkymvpV0w8iEPvWQXqjZutpZqtlaPNpJ2KLadN1SCeNOk08QjId0pIEsZzkFM3
fyZNTylCxPdew7QuTmCdorzvnlFoa8mLiGwDA2ysKY28pUQvgxdgigUF4zTUsdyA
8atSD2ky3o/lsY9gfa7T3f9TdOaqQWDJ
-----END CERTIFICATE-----
Generated at Fri Jul 25 05:26:21 2025 by rpki-client