Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
File:                     uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json)
Hash identifier:          eFJe5/Rqpku2bRSJoTjFaKMsHSFto2NiMR8EZJ8VZ/E=
Subject key identifier:   BC:22:4B:58:98:C2:B8:D0:45:E1:B5:10:9F:31:AA:D6:C3:BD:57:4E
Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34
Certificate issuer:       /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34
Certificate serial:       01E0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
Manifest number:          01D3
Signing time:             Mon 21 Jul 2025 03:01:04 +0000
Manifest this update:     Mon 21 Jul 2025 03:01:04 +0000
Manifest next update:     Mon 28 Jul 2025 03:01:04 +0000
Files and hashes:         1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: iMaHqx8SmKInrte8creLtjIah49XGuSvhTViNBrZ5WQ=)
                          2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl
                          rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 03:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 480 (0x1e0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34
        Validity
            Not Before: Jul 21 03:01:04 2025 GMT
            Not After : Jul 28 03:01:04 2025 GMT
        Subject: CN=687dad70-b7de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:6e:62:30:f5:7e:69:b5:3c:67:40:38:d7:14:
                    c9:25:c6:a2:c2:7f:06:b2:fe:e6:73:58:05:74:08:
                    0e:b9:83:86:2c:ac:71:94:09:b2:63:67:5f:2b:be:
                    d9:9b:0e:cd:b3:53:28:c1:c4:9d:3b:66:d3:72:8a:
                    bf:cd:13:d7:88:a9:53:fe:ec:a9:7c:31:d9:6e:a2:
                    8a:f6:f2:76:7e:fd:33:3e:37:a3:1d:d0:8d:ec:e8:
                    49:18:19:2b:aa:6f:59:7e:46:f3:c0:a2:7b:92:f0:
                    ca:3c:90:26:12:75:2a:e6:a9:77:a4:55:e0:8f:fb:
                    5b:1c:76:d0:d6:ee:ea:c6:11:b0:82:2a:49:55:a8:
                    6c:bf:a7:08:44:3f:ac:7e:d8:31:bd:55:26:d8:e3:
                    81:31:d2:67:ba:21:12:2e:ab:99:9f:53:af:e3:b5:
                    a0:4f:33:49:c7:11:95:3e:bc:f5:62:87:95:51:fc:
                    66:a0:6e:0a:63:74:92:70:c1:11:71:58:99:49:60:
                    1e:f3:3d:69:19:13:ee:ec:34:26:f9:ad:31:d4:57:
                    68:b4:aa:49:00:fa:4c:52:a4:2b:89:21:19:b1:6b:
                    7d:b9:b7:f2:5e:3f:bc:18:48:42:6b:c5:06:20:c7:
                    58:cd:82:d2:45:38:3e:94:85:ae:e8:b3:ed:97:2c:
                    9f:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:22:4B:58:98:C2:B8:D0:45:E1:B5:10:9F:31:AA:D6:C3:BD:57:4E
            X509v3 Authority Key Identifier:
                keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:7d:70:83:0d:57:d5:60:c3:f5:f6:2e:03:8f:14:3d:c7:78:
         ee:04:d8:bb:47:a7:53:5f:8b:65:96:49:4c:1c:05:e0:9f:dc:
         40:a7:2f:23:3c:80:59:13:c6:fa:d0:83:cf:8a:73:c3:98:a4:
         bd:04:ee:7c:b5:d3:ae:b9:e5:e7:69:01:ad:89:dc:86:2f:c4:
         cd:49:c5:4e:56:44:0c:03:7a:77:7f:db:7f:17:dc:9b:15:ba:
         81:42:67:9d:cf:55:6f:f5:34:6b:71:5d:8e:f6:71:c7:c3:d2:
         00:0c:f5:46:ae:e5:47:5c:de:de:18:7a:a2:e0:b9:08:42:81:
         52:48:a1:5b:7f:6e:25:31:56:9e:78:74:63:92:a3:88:1f:2a:
         b9:91:74:bb:ea:15:7a:c8:96:f8:7c:c5:d0:a4:c4:4d:10:c1:
         a0:4d:1a:3f:49:3c:79:8d:63:f3:aa:91:db:cd:2b:d0:c1:cd:
         e4:2f:35:3b:d3:8d:75:85:4d:43:f5:dd:44:c9:e3:41:b8:04:
         51:be:88:ed:bb:85:1a:f9:03:47:80:1d:3d:e4:c2:85:ed:81:
         13:51:61:c1:77:46:5e:60:7c:3f:dc:3c:8c:27:b0:51:1f:4c:
         51:2a:ac:47:5e:a7:e0:71:ea:44:17:c3:b5:37:32:b1:c2:87:
         68:6e:c2:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:26:17 2025 by rpki-client