Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft
File:                     K1N18tBgdUbVH2UR9hvEoYl0_eI.mft (raw, json)
Hash identifier:          kunZeEJBY2x40maD6n4zUg89eZZLxjPC5l2c3TIM+4o=
Subject key identifier:   07:76:89:23:9B:AD:7A:58:F8:0B:3A:94:E3:A6:00:89:C8:DE:9D:DC
Authority key identifier: 2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2
Certificate issuer:       /CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2
Certificate serial:       34D7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft
Manifest number:          34C6
Signing time:             Fri 18 Jul 2025 14:23:57 +0000
Manifest this update:     Fri 18 Jul 2025 14:23:56 +0000
Manifest next update:     Fri 25 Jul 2025 14:23:56 +0000
Files and hashes:         1: K1N18tBgdUbVH2UR9hvEoYl0_eI.crl (hash: tHAaxshEaBj/ZEWupkntb+JZAHrUEHQblWqFxNuQj8o=)
                          2: FACC58F855C411E9A0FEF781C4F9AE02.roa (hash: 393XehekPeHbrV2Jp2q+bd44TtCVra3Kkby1+LNFgLs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl
                          rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 25 Jul 2025 14:23:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13527 (0x34d7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EF19E, serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2
        Validity
            Not Before: Jul 18 14:23:56 2025 GMT
            Not After : Jul 25 14:23:56 2025 GMT
        Subject: CN=687a58fd-1395
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:32:37:7f:c0:db:c7:72:35:0d:db:1c:c7:53:
                    df:ec:ad:ac:62:95:61:3b:a0:3f:0b:50:8b:75:ed:
                    97:ad:bf:9a:95:b9:0f:de:f1:4c:99:82:12:e5:63:
                    b9:6d:89:d5:69:23:b2:70:33:7b:f6:01:c9:36:6e:
                    61:92:91:a6:71:72:50:5a:69:1d:c0:34:b9:51:21:
                    19:e1:47:01:99:b2:c3:75:6b:89:81:65:50:f5:90:
                    c3:a8:1c:ae:a8:f1:a8:62:ae:7d:56:82:e5:4b:d1:
                    f8:c9:5d:ca:b4:1e:c8:f2:c8:98:1a:9a:f1:73:ab:
                    2c:58:93:61:ae:25:0e:82:f6:97:21:81:9a:fd:23:
                    88:65:53:50:db:00:97:a2:8c:6a:fe:84:76:94:f7:
                    45:66:50:25:53:51:f4:e2:81:52:b3:d8:2f:c7:fd:
                    1f:ca:77:68:aa:7d:96:0f:fb:a8:11:36:e1:bd:64:
                    b3:c2:0e:0e:88:e1:27:76:e9:97:7a:96:6d:21:b0:
                    f4:52:2a:52:93:19:7c:cb:71:b9:40:89:7f:60:58:
                    12:11:f6:e8:51:15:bc:64:3d:62:e3:4d:62:95:1b:
                    dd:a5:3d:26:01:4b:fa:88:0e:56:0c:71:ed:ac:b7:
                    fe:88:49:68:49:82:41:0f:31:fc:89:40:34:70:a8:
                    ac:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:76:89:23:9B:AD:7A:58:F8:0B:3A:94:E3:A6:00:89:C8:DE:9D:DC
            X509v3 Authority Key Identifier:
                keyid:2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:42:85:bd:42:76:94:57:58:44:11:25:10:c4:62:28:bf:8c:
         35:de:3f:91:e6:8c:f0:6f:29:af:f5:92:68:64:55:1e:cb:b4:
         26:4f:88:df:3c:4d:59:d5:db:a1:77:b4:d6:7b:67:92:49:0b:
         e7:d2:8a:25:ae:e4:10:08:97:66:4e:c9:f2:d5:10:e1:bb:50:
         8c:32:9a:15:b1:3a:65:98:41:f9:e5:b9:f4:9e:13:77:13:ea:
         0c:9b:39:7b:22:35:ad:b6:41:6a:a6:b9:0a:52:89:3b:ea:11:
         d1:c6:8f:b4:f3:37:43:9a:79:75:a6:df:6a:80:2f:1e:cc:c3:
         a9:2d:8a:6c:72:af:a7:29:6d:e1:2d:bd:44:7f:ae:87:1d:5e:
         26:26:af:53:cc:ce:85:ec:a8:60:d2:8c:44:03:1e:27:00:8f:
         96:45:e2:9f:a1:8f:0c:b0:66:c9:2a:f6:1d:fd:1c:33:38:c9:
         a9:64:e6:f6:c6:e4:6f:a2:5d:60:98:61:69:76:86:44:5c:57:
         b1:33:07:6d:61:1f:6a:de:94:22:1c:70:56:4c:7c:a9:bb:f7:
         21:46:6f:d8:73:8f:59:1c:6b:f2:55:56:13:95:25:f3:de:1b:
         55:4c:bd:c3:a7:6b:26:e7:69:5e:0e:82:eb:18:5e:c1:b0:43:
         b6:37:ac:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 15:22:48 2025 by rpki-client