Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
File:                     x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft (raw, json)
Hash identifier:          4vSjitbzVlwfwCvKWiuHRmNrZ4gxHctuLvKsrYGrYPs=
Subject key identifier:   AE:65:BC:18:D9:EA:63:D1:D2:E4:A3:F4:6C:E9:32:14:E9:5C:FF:5E
Authority key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B
Certificate issuer:       /CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B
Certificate serial:       056C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
Manifest number:          0567
Signing time:             Tue 22 Jul 2025 23:42:35 +0000
Manifest this update:     Tue 22 Jul 2025 23:42:34 +0000
Manifest next update:     Tue 29 Jul 2025 23:42:34 +0000
Files and hashes:         1: x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl (hash: Q7Up3VUrMJ4zmefIvm4kcJ7bc2YB78awPmz6Ht9XFmA=)
                          2: 4756B350EF9011EBAAE0375AC4F9AE02.roa (hash: H5pjI/DUhiXyW6sQwhGG/wb5HeJLy8aTxQs1mqyRqSU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl
                          rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 23:42:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1388 (0x56c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E3377, serialNumber=C77C1309F4A1530EA395414528815F9C767C515B
        Validity
            Not Before: Jul 22 23:42:34 2025 GMT
            Not After : Jul 29 23:42:34 2025 GMT
        Subject: CN=688021ea-ff4c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:60:46:19:61:4d:34:ea:c2:2b:77:0c:8a:c9:
                    e5:ac:cf:e2:00:1b:d6:c8:b5:0f:dd:36:2f:bd:ee:
                    fd:df:27:22:82:76:b7:9c:ff:be:51:48:d3:61:63:
                    91:f6:59:61:22:92:2f:78:5e:c4:e4:93:fa:9f:72:
                    55:77:8c:6a:8d:be:b7:83:8a:79:38:27:0b:db:07:
                    04:b1:1c:aa:30:c2:80:9f:90:1e:fe:8d:d5:70:a6:
                    49:82:09:cc:d0:72:f9:60:00:30:c9:c7:d8:1f:e5:
                    e1:fc:fa:2d:6b:7b:f2:95:c2:d7:20:ae:6b:2d:c3:
                    d2:0e:cf:16:3b:d2:7b:87:60:6a:99:75:af:ca:bc:
                    d6:8a:b4:8a:a4:c8:bd:01:0e:4c:ad:52:6d:18:28:
                    80:9b:b1:8b:3c:17:90:20:d4:6b:04:12:5f:be:6a:
                    a8:3e:d7:b3:c2:ec:a2:0d:85:2b:f9:ff:8d:b1:0a:
                    de:9c:22:bf:98:ed:0a:83:04:c4:5b:33:20:5c:0a:
                    36:ad:9d:55:fa:93:18:e2:c3:75:c7:9e:89:c6:be:
                    1e:0f:44:28:71:a9:18:0d:14:32:aa:f7:3a:4d:f4:
                    0d:7a:3f:85:c1:67:5e:c9:74:15:3f:23:43:7c:55:
                    44:7b:28:a3:de:0b:ab:44:d0:c0:e9:70:24:dd:10:
                    65:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:65:BC:18:D9:EA:63:D1:D2:E4:A3:F4:6C:E9:32:14:E9:5C:FF:5E
            X509v3 Authority Key Identifier:
                keyid:C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:ab:f7:56:66:2b:5c:af:99:af:57:96:05:a3:5e:96:05:5c:
         44:d6:f4:d4:dc:d6:6d:63:c6:fa:95:a6:79:51:22:6d:f5:d7:
         02:8c:bc:29:1d:22:1a:1c:cf:01:fa:13:68:b1:e9:cd:69:89:
         66:12:23:a7:23:50:f2:36:7b:10:68:55:aa:fe:6d:4c:68:83:
         0f:ce:b3:12:ce:de:86:5e:49:94:85:e8:3d:e5:21:e0:c2:38:
         fd:7f:7c:02:3a:3f:f5:f1:68:46:1d:fc:7d:a5:33:e6:52:5f:
         4d:07:5e:da:41:02:da:7a:29:64:2b:01:ab:45:ba:b9:ef:e3:
         05:e3:a3:81:5c:f4:c3:73:ee:96:94:66:9c:86:83:15:ee:a9:
         5d:05:57:57:0a:50:fa:a5:23:5e:57:a4:e8:29:62:c0:ca:cb:
         51:28:21:97:4f:ad:3a:78:0a:b5:f5:f0:42:fa:d0:cc:96:65:
         1c:ea:71:16:42:7e:8b:fc:91:f8:1f:c7:91:03:ef:7b:64:ff:
         76:59:49:83:63:ab:04:0e:3b:04:1b:f7:d3:e2:10:62:d3:31:
         c8:de:7b:f0:ac:b9:8b:ab:e2:bf:71:1c:9f:b6:b7:95:5e:d0:
         43:76:11:6f:f4:49:b5:3a:18:45:0a:14:b4:61:48:58:39:da:
         9c:3e:d7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:34:36 2025 by rpki-client