Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
File:                     uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json)
Hash identifier:          sd9plTkE45EfzyIhSgg7D7I8lt/3o6cmHmJn9N2GV28=
Subject key identifier:   E5:05:EA:6A:0A:A7:6B:68:D8:BF:4F:55:8E:2B:B2:7A:89:31:BD:96
Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34
Certificate issuer:       /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34
Certificate serial:       01E2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
Manifest number:          01D5
Signing time:             Fri 25 Jul 2025 03:05:46 +0000
Manifest this update:     Fri 25 Jul 2025 03:05:45 +0000
Manifest next update:     Fri 01 Aug 2025 03:05:45 +0000
Files and hashes:         1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: e++Fc/FIIeLlOV/DFzIBtC2oICmT7b6lrOkLXpGUpYk=)
                          2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl
                          rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 03:05:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 482 (0x1e2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34
        Validity
            Not Before: Jul 25 03:05:45 2025 GMT
            Not After : Aug  1 03:05:45 2025 GMT
        Subject: CN=6882f48a-6268
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:1e:23:db:7c:aa:da:42:eb:c8:55:59:7f:ad:
                    a0:59:0e:ce:e8:a3:a2:99:b2:fe:cb:a2:d1:56:05:
                    6b:2f:ac:b1:52:22:2c:5b:32:46:36:1d:eb:14:42:
                    a0:4a:e2:cc:dc:40:36:ea:ad:9b:cc:f7:d1:59:7b:
                    b5:1e:91:fc:ea:49:5d:86:52:11:7a:4c:e6:62:78:
                    81:df:10:46:f0:c8:5b:63:4f:86:58:a6:da:62:8f:
                    48:38:a9:04:75:b2:8b:6b:4e:ca:12:67:29:12:78:
                    13:71:96:4a:b2:9c:5b:d3:95:c6:1c:0c:50:25:35:
                    19:37:e2:ef:a6:bc:97:98:64:94:a8:0e:87:4f:96:
                    27:d5:97:57:d9:95:bd:2e:4c:7a:28:dd:f2:57:61:
                    11:ca:41:ff:2e:36:4f:92:a3:d3:65:81:0d:f8:72:
                    57:f5:ea:1f:d4:59:40:24:08:0b:bc:db:7f:e0:d0:
                    a2:2a:e6:9e:36:53:b9:15:10:de:b0:9f:7a:f9:dd:
                    09:bd:09:56:33:a3:c1:b8:18:f9:79:c8:b9:c5:6b:
                    70:6c:14:64:08:b1:8c:9d:81:37:ef:72:e0:01:cb:
                    04:1e:35:29:ff:f8:4b:47:40:b9:55:50:22:ef:b3:
                    8b:e0:6e:ef:e0:22:35:35:35:98:0c:44:90:51:ae:
                    07:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:05:EA:6A:0A:A7:6B:68:D8:BF:4F:55:8E:2B:B2:7A:89:31:BD:96
            X509v3 Authority Key Identifier:
                keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:bb:c1:70:56:b0:99:65:76:b8:d7:06:52:6e:ec:22:55:4a:
         2c:fe:61:04:4c:c6:2e:11:ee:19:73:6c:20:8c:a6:e5:34:5b:
         6b:fd:8a:d6:a1:51:bd:78:45:52:73:71:1c:3e:37:89:b8:bb:
         b3:52:cd:6b:7b:04:8b:c0:e4:72:be:0e:b0:8d:34:06:6b:66:
         34:47:ec:84:1f:83:b1:ed:92:ee:79:15:71:6b:82:fb:82:f7:
         66:15:77:86:2c:b4:c3:4d:3c:5b:6e:df:80:e8:24:ac:a9:51:
         8f:ff:f8:39:b9:47:1a:ce:55:95:bc:7d:e0:17:3d:70:7a:96:
         46:db:6f:c1:d0:59:27:88:d0:9b:7e:e4:27:5f:9c:e0:0e:4f:
         f4:a6:c5:bd:bd:ae:ed:84:cd:e5:d5:72:3f:ba:b0:f5:e3:c6:
         f9:e8:56:6b:8b:c2:5d:02:f3:35:65:12:75:c5:4c:d7:4c:26:
         70:97:93:38:2a:eb:20:c6:67:78:3b:2c:3c:76:a0:1a:58:f4:
         e5:a1:d7:bd:13:00:13:64:0b:b5:64:47:28:d8:67:db:09:80:
         de:94:f1:0c:b0:4c:18:c5:84:f2:ff:ac:60:14:ec:ba:21:18:
         09:c6:0f:18:d2:13:c6:1e:68:0a:78:9d:31:c8:4d:03:5c:b8:
         93:6f:f1:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:10:35 2025 by rpki-client