Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft
File:                     IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json)
Hash identifier:          J2E0UyrD13ZB/4WSAKSbQkWCqo7RTDjy3QQbsM4cur8=
Subject key identifier:   23:80:8B:BE:87:41:6B:16:AD:10:27:D3:2D:E3:1D:0E:59:13:69:4B
Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9
Certificate issuer:       /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9
Certificate serial:       F0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft
Manifest number:          ED
Signing time:             Fri 25 Jul 2025 05:36:43 +0000
Manifest this update:     Fri 25 Jul 2025 05:36:43 +0000
Manifest next update:     Fri 01 Aug 2025 05:36:43 +0000
Files and hashes:         1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: K8AkUr+QuYORZHE7DRGzrLq0ZtbwP6Q/+wXaYPu+wu4=)
                          2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: rdcsVeSD/0uRXsupB+gdsyd8ZZ4QY82jQKGKV8TuBBs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl
                          rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 05:36:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 240 (0xf0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C53FD, serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9
        Validity
            Not Before: Jul 25 05:36:43 2025 GMT
            Not After : Aug  1 05:36:43 2025 GMT
        Subject: CN=688317eb-1a53
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:bd:4a:db:16:b7:2f:f3:29:bc:cb:ac:fd:41:
                    35:2d:e4:a9:8d:a4:a1:d9:64:c9:a1:c4:a2:2f:1d:
                    98:07:e9:cf:2a:2f:44:94:a6:c3:e8:8c:f5:a6:58:
                    ee:4e:b2:e9:1f:dd:9c:62:92:4c:ca:72:b5:79:e0:
                    37:3e:7e:a7:a7:63:88:65:a1:f2:cc:32:f8:2e:22:
                    9f:38:e7:00:ee:12:8a:62:c5:06:2f:84:6c:a7:23:
                    94:3f:7f:09:6f:f4:ad:00:bc:61:19:9d:df:e2:68:
                    be:8d:ab:fe:f5:4e:e0:d4:dc:7b:da:40:42:df:69:
                    eb:8f:dd:08:9e:ac:5b:31:c8:90:fa:e9:37:24:4f:
                    cb:24:0b:ed:fb:10:44:57:a7:da:ef:d6:ee:47:0c:
                    ed:c6:d5:d4:5e:56:f9:0e:cc:58:64:32:7d:d7:30:
                    62:fa:41:eb:03:5f:25:5c:13:79:a4:fd:0c:4a:34:
                    d3:35:a7:4a:c3:7f:bd:8f:05:e7:74:a7:92:4a:be:
                    70:4b:ea:eb:42:bf:d8:83:bb:98:81:71:3d:f6:73:
                    15:f1:cf:02:33:a7:ea:75:2b:36:42:9e:bc:ce:e5:
                    ae:ba:a3:8d:65:dc:00:80:14:88:97:b7:7b:6e:93:
                    96:18:c9:d1:99:b5:6c:a6:fd:06:14:21:ab:67:1e:
                    b3:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:80:8B:BE:87:41:6B:16:AD:10:27:D3:2D:E3:1D:0E:59:13:69:4B
            X509v3 Authority Key Identifier:
                keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:7c:82:cc:44:2d:1d:98:5d:6e:ef:06:bf:14:30:cc:56:34:
         30:1c:3a:f1:be:5d:0b:b6:f4:23:94:10:da:73:22:4e:d1:0b:
         11:61:65:ef:d3:64:f0:8c:54:84:2f:8d:da:8c:83:82:2f:3c:
         59:1c:3e:2f:b4:5d:73:28:3c:81:24:65:86:8d:a9:3e:0f:e3:
         0b:3e:cc:97:83:42:40:9a:d9:1c:2a:19:e7:5b:52:24:49:22:
         fc:70:96:7a:70:38:77:fd:b5:06:87:47:e5:54:4b:82:e5:cb:
         5f:6e:db:f5:03:9b:c3:89:8c:60:cc:32:cd:5f:9d:64:7d:e3:
         30:c3:e4:fd:1d:8c:ce:19:a6:ea:cd:a4:61:66:43:c2:ec:3d:
         37:33:0b:20:de:54:c1:28:fc:37:d2:8b:db:44:28:ff:b5:17:
         2b:93:f2:b6:fd:c4:e8:89:e7:bf:a5:02:d3:a8:a0:3d:ba:bc:
         3e:84:db:8d:7a:8e:3e:e6:65:d9:f8:00:2e:e0:3a:e0:e3:0c:
         d0:01:b1:37:5e:6d:77:70:65:4f:9a:21:aa:69:43:81:9c:c8:
         71:eb:bd:7d:79:d8:26:83:4c:cf:1a:39:19:92:42:81:42:a6:
         ef:78:d4:f6:60:2c:25:a6:21:7e:f2:86:5e:87:17:e5:78:5e:
         9a:9b:f2:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:04:31 2025 by rpki-client