Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
File:                     x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft (raw, json)
Hash identifier:          QVyGWroHejwxCgIXN65T5qf2R5ayfqTi0doVdIuP76Y=
Subject key identifier:   17:36:CC:FC:72:19:8C:84:E6:68:D1:C8:3B:67:D9:78:0F:76:64:1E
Authority key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B
Certificate issuer:       /CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B
Certificate serial:       056D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
Manifest number:          0568
Signing time:             Thu 24 Jul 2025 23:40:07 +0000
Manifest this update:     Thu 24 Jul 2025 23:40:07 +0000
Manifest next update:     Thu 31 Jul 2025 23:40:07 +0000
Files and hashes:         1: x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl (hash: Bo+E15Fi+Aa1i3XoRkAWXXCyXrONgQ8Zfet7XD8TBic=)
                          2: 4756B350EF9011EBAAE0375AC4F9AE02.roa (hash: H5pjI/DUhiXyW6sQwhGG/wb5HeJLy8aTxQs1mqyRqSU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl
                          rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 23:40:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1389 (0x56d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E3377, serialNumber=C77C1309F4A1530EA395414528815F9C767C515B
        Validity
            Not Before: Jul 24 23:40:07 2025 GMT
            Not After : Jul 31 23:40:07 2025 GMT
        Subject: CN=6882c457-8fb7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:8f:85:06:d3:9e:82:93:7e:c1:69:f7:cd:93:
                    b0:8c:cb:d1:4d:bb:36:db:b2:f1:dd:c0:bd:83:f6:
                    04:06:cf:eb:14:0c:0b:98:3e:06:69:7c:ec:be:7f:
                    2a:90:9b:f3:dc:8f:75:15:f6:9d:0e:e7:9a:21:64:
                    4c:27:43:78:db:6f:36:09:3e:4a:ae:d1:b7:1a:75:
                    33:31:a6:88:ae:fb:55:03:a0:12:73:3f:33:12:59:
                    e4:c1:55:08:f5:21:5d:0e:de:48:5c:52:15:b0:e5:
                    dd:24:23:4c:a0:11:19:b8:81:73:3c:e0:4f:2b:4a:
                    90:20:77:00:48:d5:92:d6:77:7e:82:40:41:a0:9e:
                    93:9c:3c:8a:de:00:8a:1a:00:4b:78:79:32:c3:84:
                    67:13:c1:3a:19:8c:a8:87:b3:33:80:96:79:48:c5:
                    cb:50:53:87:e0:dd:7c:a3:92:00:38:7e:f4:f0:f0:
                    83:87:e1:b5:e8:db:5f:1c:ba:88:bc:21:e2:8d:52:
                    e1:99:7f:5e:28:67:00:04:cd:2a:32:4c:9a:43:af:
                    f3:51:41:55:8f:34:8c:05:55:f8:3c:db:9b:43:a7:
                    cf:8f:9b:67:2e:9a:06:e4:44:7e:ed:c5:2b:bd:e0:
                    dc:e7:23:9b:ac:05:49:6f:76:c1:1c:25:0b:51:4f:
                    b4:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:36:CC:FC:72:19:8C:84:E6:68:D1:C8:3B:67:D9:78:0F:76:64:1E
            X509v3 Authority Key Identifier:
                keyid:C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:3a:00:c6:5b:96:ca:98:56:2c:2a:f8:10:d5:2d:86:6f:f4:
         eb:17:5a:74:40:29:bd:23:6e:73:b0:b9:66:8d:59:93:d2:59:
         56:de:d1:4b:c3:4f:4c:b6:1c:08:68:2c:76:1a:3e:9c:87:e4:
         e6:7c:dd:2b:91:1a:97:74:7c:f8:ce:f2:f6:02:07:c2:4a:d6:
         f3:2f:35:2d:68:9d:57:fd:9d:8e:13:34:21:60:5a:a3:ee:cd:
         44:1d:b2:32:3c:79:93:04:ac:af:0e:c9:1f:e2:38:42:cf:65:
         2b:da:32:df:59:92:ba:02:4c:e8:b1:38:19:59:79:6b:29:91:
         a0:c5:63:79:32:d2:c3:9e:86:a6:c9:0b:d2:cf:0b:a6:1b:67:
         6c:41:35:ef:1f:e0:2e:fd:36:29:27:fe:fc:ca:35:68:b8:c4:
         0a:cf:53:d6:7d:11:45:aa:97:27:2f:ef:35:31:92:33:d3:df:
         4b:9f:f4:9b:3b:13:e8:29:05:05:a7:36:be:cc:d0:44:76:73:
         1d:30:77:5e:fd:59:7a:29:c5:a4:a3:5c:86:7f:da:65:f6:be:
         14:7f:9f:b0:0e:a6:98:c2:a2:14:78:0a:68:e5:fa:0c:72:82:
         20:4c:6b:61:59:35:29:fa:db:08:89:d0:ca:ed:14:60:2c:5c:
         ae:dc:3f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:03:20 2025 by rpki-client