Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft
File:                     Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft (raw, json)
Hash identifier:          NVLEMbHt3PxlTnQVnC4s/aUDv9LSy8qJBVyWCbuH9Tg=
Subject key identifier:   13:2A:DC:21:82:17:CC:38:98:E0:1F:20:52:FB:E3:1A:9A:EB:00:50
Authority key identifier: 12:AB:BE:9D:4E:59:98:58:59:81:34:9A:5F:A9:B7:5F:DA:BC:58:76
Certificate issuer:       /CN=A91B778A/serialNumber=12ABBE9D4E5998585981349A5FA9B75FDABC5876
Certificate serial:       0178
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft
Manifest number:          0175
Signing time:             Mon 21 Jul 2025 03:48:52 +0000
Manifest this update:     Mon 21 Jul 2025 03:48:51 +0000
Manifest next update:     Mon 28 Jul 2025 03:48:51 +0000
Files and hashes:         1: Equ-nU5ZmFhZgTSaX6m3X9q8WHY.crl (hash: DmHi1+gPudFXgQ+bxsdinbvSRSmE+prW5SG3AMR3S/Q=)
                          2: A60B75F62B7B11EEA4D0FA24C4F9AE02.roa (hash: QlGjMXDN4esCEiynluo/msiy33cpphW/TtlNsWHyAK4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.crl
                          rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 03:48:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 376 (0x178)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B778A, serialNumber=12ABBE9D4E5998585981349A5FA9B75FDABC5876
        Validity
            Not Before: Jul 21 03:48:51 2025 GMT
            Not After : Jul 28 03:48:51 2025 GMT
        Subject: CN=687db8a4-000d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:c7:45:94:e5:e5:c1:dd:a1:e4:94:4c:7c:b7:
                    03:83:e0:6f:a1:6c:b1:8a:3a:f9:1a:3c:44:b9:a6:
                    96:be:6e:cc:ba:02:2a:2c:ee:ad:85:d7:14:5d:a7:
                    a2:2e:f7:98:96:3d:85:25:1f:13:78:b5:48:6e:bb:
                    8c:b8:4c:4a:99:eb:0d:8d:41:0d:30:1f:1f:fb:07:
                    9c:85:54:ae:96:a7:be:f5:b1:53:8a:07:fd:c6:53:
                    20:6b:bf:5f:13:68:a3:0e:c5:f3:b5:7c:3f:7b:3c:
                    ea:b4:5b:d5:2d:c0:35:5a:ed:ae:44:26:52:e7:32:
                    3c:77:61:4e:48:25:80:44:59:ed:0a:a9:9b:71:10:
                    68:bc:87:d1:e4:3b:3a:11:49:74:ed:3d:04:3a:07:
                    9c:a5:99:a7:5f:9c:67:fc:40:37:74:6b:4e:41:13:
                    cc:90:94:28:ba:a6:a9:a6:5c:65:53:df:98:9b:85:
                    9e:1b:74:96:5e:ad:92:09:4b:ab:cc:b1:d7:cb:29:
                    2a:20:3c:65:cd:74:c8:1f:a1:ad:8b:9e:fd:b3:6c:
                    1f:0a:98:27:56:cd:fc:ca:74:3f:0c:a0:50:37:b4:
                    14:3e:69:e6:bb:e4:7f:ff:46:36:5a:39:f4:5a:4e:
                    69:8d:66:11:cb:eb:f8:ea:71:c3:58:57:13:3a:f0:
                    32:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:2A:DC:21:82:17:CC:38:98:E0:1F:20:52:FB:E3:1A:9A:EB:00:50
            X509v3 Authority Key Identifier:
                keyid:12:AB:BE:9D:4E:59:98:58:59:81:34:9A:5F:A9:B7:5F:DA:BC:58:76

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:69:c3:01:eb:82:65:d3:7f:68:21:8f:c1:94:fd:7f:cd:d2:
         67:70:94:16:2c:6b:ba:78:3b:3d:ac:6b:5e:a7:5f:e4:6e:3f:
         88:a0:ab:bc:be:b1:9d:28:eb:bf:97:99:22:be:32:c9:dd:7b:
         a8:4a:fa:28:ff:81:f8:13:f9:ec:1a:83:94:6a:de:1b:48:19:
         90:eb:1d:2f:e7:b0:db:d6:18:74:15:93:28:f6:52:45:ff:a4:
         4f:02:7a:e7:99:cc:2d:22:6e:8f:2c:05:d7:05:4c:f6:2f:a7:
         d9:bf:8c:64:94:4f:59:ac:ae:c2:f4:35:ef:29:34:f4:e0:b6:
         14:46:e1:30:79:aa:c8:e9:01:a2:8e:7b:af:93:42:e8:19:5b:
         9b:47:ad:96:7d:41:1b:07:0a:78:29:27:9f:5e:aa:ec:1a:c9:
         0c:59:f6:d6:58:e9:08:b9:72:e7:6a:4a:6d:63:3b:52:2b:fe:
         f1:3f:ab:ff:8d:8e:db:2f:84:dd:17:8f:27:a3:d3:49:37:58:
         9e:90:de:3a:1a:c4:03:c6:0f:5a:30:58:7d:28:26:fd:90:88:
         aa:72:f0:e9:74:84:fb:b8:eb:60:f7:db:e9:d7:75:be:ea:c7:
         c1:04:3d:d6:c8:de:b8:80:80:d3:29:43:68:6c:3b:d4:65:71:
         3a:0e:94:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 20:31:11 2025 by rpki-client