Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft
File:                     kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json)
Hash identifier:          CPpVC+/aw+GmNlNupO5bQAzvN4355jfhY7EJwVCVjZ8=
Subject key identifier:   EC:AE:E5:3E:47:10:1C:8A:D2:E7:73:5E:18:39:34:8E:3C:B7:E6:40
Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23
Certificate issuer:       /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623
Certificate serial:       06F5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft
Manifest number:          06EF
Signing time:             Tue 22 Jul 2025 22:17:06 +0000
Manifest this update:     Tue 22 Jul 2025 22:17:06 +0000
Manifest next update:     Tue 29 Jul 2025 22:17:06 +0000
Files and hashes:         1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: 6F94K5fk+piW21kLbhAFoUNR9DxtFyfXikZHhg7J5KU=)
                          2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: yon8zk/9fCZ3WyFBjyvszv/gLcYp08xtnvCiEsyDKSw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl
                          rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 22:17:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1781 (0x6f5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EC4DD, serialNumber=90C3D8351726A8B91DE26D46811283435CC52623
        Validity
            Not Before: Jul 22 22:17:06 2025 GMT
            Not After : Jul 29 22:17:06 2025 GMT
        Subject: CN=68800de2-5a72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:97:31:67:30:6a:dd:6b:f1:90:07:30:bb:81:
                    6d:da:f6:5f:bd:1a:31:05:66:78:93:2f:59:8c:2e:
                    eb:6c:18:f6:88:af:79:98:00:38:63:31:eb:e7:23:
                    26:73:42:b2:fd:ab:22:d7:f7:dd:fa:06:49:8a:d1:
                    e0:bf:fe:3d:bb:fe:30:18:3f:2d:46:4a:f9:b2:6e:
                    f2:f2:0d:b7:81:9c:29:9f:1e:4d:0c:55:a8:7c:3c:
                    f8:d4:dc:8a:46:a0:6b:39:22:7a:bc:a6:f6:f1:2e:
                    4e:18:f1:e5:b0:cd:0c:f5:12:29:9f:4b:46:57:d6:
                    88:c2:a3:9d:e3:84:02:7c:ff:1e:65:7d:b6:4f:df:
                    42:aa:4e:be:40:80:83:bc:b9:99:3f:16:7e:05:e0:
                    5e:d6:ab:e7:f6:7b:d2:0f:5f:d9:d4:4d:6c:7d:84:
                    5f:08:a2:a3:7b:96:50:9e:c0:c5:da:1d:5a:fd:b5:
                    95:81:3a:aa:d9:48:43:f0:9d:5a:95:33:d1:08:db:
                    68:07:f5:63:62:07:38:05:f3:62:b6:16:0c:c2:b5:
                    c6:6e:99:0d:15:6a:97:db:ae:cd:55:5e:52:7d:5a:
                    ca:24:1f:cc:2d:1b:0e:60:7d:c9:5d:f6:45:69:47:
                    92:36:00:b0:00:6f:07:0c:3b:4f:1c:c4:3c:1c:3b:
                    55:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:AE:E5:3E:47:10:1C:8A:D2:E7:73:5E:18:39:34:8E:3C:B7:E6:40
            X509v3 Authority Key Identifier:
                keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:6f:84:1d:22:9b:23:a1:fb:4c:fe:76:c8:44:75:c8:f0:56:
         0e:b6:f8:56:70:74:7d:d7:9e:0a:cc:91:6d:50:78:e5:b1:c3:
         24:dc:ba:af:47:d3:36:00:94:ac:67:8c:1f:4d:a1:f9:2e:4b:
         13:01:dc:67:a8:a6:f0:6c:4b:f5:72:6c:03:a0:3c:fd:25:da:
         f9:9f:34:78:5e:ec:79:81:cd:b8:51:b6:3c:5b:d9:48:e9:87:
         01:78:94:c5:e5:cb:99:30:62:53:8a:9d:c3:3b:19:15:54:0b:
         69:69:e0:bb:88:e4:be:17:c2:78:67:14:79:78:44:47:26:5b:
         d7:74:97:72:23:e5:03:94:29:34:1c:d1:6a:7c:9b:18:ac:56:
         6d:29:09:51:52:ec:2b:62:b8:e9:d1:e4:56:1a:44:20:71:36:
         2a:46:1e:d7:00:0d:bb:ca:bc:1d:97:9c:e5:ec:92:64:78:2e:
         44:1f:00:46:c2:65:41:71:b3:25:25:97:49:65:df:e8:10:34:
         2f:26:4a:33:de:27:7b:fa:01:33:e8:77:c7:07:ea:d6:7b:2a:
         8d:3e:c4:ad:5c:2e:f3:f8:4f:51:09:20:86:3a:5c:51:69:4f:
         71:3c:73:8f:03:29:4f:65:c0:7b:bf:e2:a6:dd:d8:b4:29:9d:
         7d:66:cd:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:12:38 2025 by rpki-client