Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft
File:                     Hy55yPeszIoD-1tKOvzF9pMbN4I.mft (raw, json)
Hash identifier:          U3twlWLWu/XrcNa0efowTxZgs+1yVR+CaKKNnAP60jQ=
Subject key identifier:   50:46:8A:5C:F7:CF:B8:FC:2A:C2:60:5D:54:75:41:5F:83:96:02:75
Authority key identifier: 1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82
Certificate issuer:       /CN=A91BB09C/serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782
Certificate serial:       174F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft
Manifest number:          1745
Signing time:             Tue 22 Jul 2025 16:45:14 +0000
Manifest this update:     Tue 22 Jul 2025 16:45:14 +0000
Manifest next update:     Tue 29 Jul 2025 16:45:14 +0000
Files and hashes:         1: Hy55yPeszIoD-1tKOvzF9pMbN4I.crl (hash: 1V5kcOmQiSr9lbPzIiQbGFVM3c2Jv9BBZZNaBFMsVDM=)
                          2: 02181C4CE13511E7B0D71C83C4F9AE02.roa (hash: kYdi56Vh70Qo/SN0C8R4CSPhNox0X9SfOcU95n5XzCk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl
                          rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 16:45:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5967 (0x174f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BB09C, serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782
        Validity
            Not Before: Jul 22 16:45:14 2025 GMT
            Not After : Jul 29 16:45:14 2025 GMT
        Subject: CN=687fc01a-1ad9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:8c:f5:4f:9f:d4:60:3d:e4:4b:01:2e:37:ce:
                    89:58:3a:04:cf:19:a2:a5:4d:a6:d1:08:94:9d:f0:
                    e8:74:cc:4a:29:03:88:fb:dd:bc:ee:c9:8a:f1:17:
                    ff:0e:bc:1b:aa:37:24:03:95:cc:79:b8:96:0e:b6:
                    99:ae:28:22:b3:c7:29:69:0e:70:03:63:f9:20:eb:
                    4f:3e:02:05:73:9d:42:fa:42:c6:26:06:3e:bc:03:
                    1c:e6:c6:f2:4b:d9:75:0d:a0:e1:bb:c7:dd:90:3a:
                    31:f4:78:53:a4:72:fc:11:a5:44:09:80:3b:fa:4a:
                    62:a4:95:5d:f7:ae:4e:31:dd:db:ce:b9:46:43:c0:
                    72:30:91:28:4f:2a:46:e0:cf:e1:cd:b0:6c:a6:47:
                    b4:df:c7:7e:83:5c:08:0a:11:f0:1e:80:36:a9:3e:
                    fe:3f:ee:cb:8b:ad:fe:8b:40:82:f7:42:04:6b:56:
                    55:49:5f:4e:a1:aa:88:ec:10:c2:11:6e:b6:53:5e:
                    a5:a6:9b:56:90:d3:48:5a:c7:61:26:10:a3:bd:cc:
                    f4:80:a6:a1:27:f7:94:5d:7f:09:8b:90:e6:5b:e0:
                    53:62:df:3d:d1:ff:e5:18:e1:39:1f:41:e3:00:6c:
                    6b:25:96:84:20:f2:08:1b:8d:20:99:2c:0e:22:4a:
                    f7:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:46:8A:5C:F7:CF:B8:FC:2A:C2:60:5D:54:75:41:5F:83:96:02:75
            X509v3 Authority Key Identifier:
                keyid:1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:9e:85:79:20:83:5e:ff:68:09:cc:71:82:8e:ee:91:ab:89:
         97:9f:80:1c:26:30:23:61:de:e9:e6:2a:0a:61:18:f2:6f:fe:
         6c:98:7f:2c:b2:67:ca:81:b8:81:ab:49:08:cc:06:1f:58:4d:
         d5:30:78:51:46:9c:4f:14:01:4b:21:ef:09:24:93:c7:45:0b:
         f5:af:9b:3f:73:2c:db:aa:6c:73:f3:33:d2:e3:cf:41:0e:79:
         08:dc:e2:7c:c1:ef:ef:8f:8d:85:f2:2e:0f:ae:28:9e:81:4b:
         33:bf:d2:6c:53:35:e7:c2:65:49:0b:21:95:e4:0c:bf:e8:60:
         00:95:8f:56:b8:7a:41:b4:a9:7f:67:f0:6d:f4:a4:15:ea:96:
         fa:28:57:81:f5:c2:83:30:55:d9:ed:cd:43:9f:e6:4b:b1:17:
         3c:6d:b3:b6:1d:a1:96:d3:92:34:68:7e:fc:5b:a2:4a:8a:ea:
         e5:2f:8e:5f:a7:05:64:53:6d:6d:b2:bc:03:10:d3:7d:30:24:
         cc:ae:c0:0e:1e:d4:20:6f:ad:e4:28:a9:6e:5e:24:00:3e:d1:
         9a:1c:27:f5:78:9f:04:05:44:21:57:ba:7c:c5:37:bf:61:02:
         b4:07:70:aa:7e:8a:35:94:28:1b:97:f6:66:e5:db:66:3e:6c:
         52:44:9d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:46:36 2025 by rpki-client