Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
File:                     Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json)
Hash identifier:          3c3797PBcXoJ6ln/o0c6q4Lr8lYXiofIPAKnssluZUc=
Subject key identifier:   89:93:9B:8E:58:3E:FD:14:96:1E:AF:76:4B:F0:79:68:73:30:61:1C
Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B
Certificate issuer:       /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B
Certificate serial:       77
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
Manifest number:          76
Signing time:             Sat 19 Jul 2025 07:03:06 +0000
Manifest this update:     Sat 19 Jul 2025 07:03:06 +0000
Manifest next update:     Sat 26 Jul 2025 07:03:06 +0000
Files and hashes:         1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: DdZU9FQ7Nd5xm1grn6yExdUBkEzgdnVHpZ7vz2SNRb8=)
                          2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl
                          rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 07:03:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 119 (0x77)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B
        Validity
            Not Before: Jul 19 07:03:06 2025 GMT
            Not After : Jul 26 07:03:06 2025 GMT
        Subject: CN=687b432a-8aff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:ad:7a:1c:e8:d1:dd:4f:6d:69:a9:c1:e8:48:
                    3c:59:1b:e3:cb:44:8f:20:c6:52:b8:0a:17:ea:a1:
                    dd:a1:76:3a:f8:dd:8b:96:99:aa:5d:7a:81:65:1c:
                    97:a8:85:d8:6e:9d:bc:df:b4:47:e3:c4:eb:d0:45:
                    fa:e5:d1:70:41:17:c3:76:ba:2a:4a:c9:8e:b9:10:
                    db:f0:be:f2:23:f7:1e:59:ad:ea:27:79:32:5c:7e:
                    5a:e8:fd:ed:1d:f3:c1:b5:f7:4a:45:cf:3c:7b:10:
                    b1:fc:87:93:9d:0d:fa:fb:47:63:a6:bd:b7:23:e5:
                    5f:a3:f7:8e:1f:7e:3d:f2:78:5c:b0:f7:02:41:68:
                    34:b9:a3:13:52:9d:44:57:1b:90:8a:2d:4c:c0:4e:
                    95:85:da:26:d2:74:30:43:e8:66:4b:f1:92:00:6b:
                    08:0d:55:64:37:55:ce:62:ca:6b:67:23:d4:5d:ca:
                    5e:86:57:d6:84:4d:76:8d:5b:05:78:03:bb:c3:c6:
                    2b:49:e3:a4:1a:9e:45:c3:b0:b2:68:5b:b0:a8:d2:
                    b4:cc:32:fb:5f:f5:d3:bb:0c:0d:ff:cd:a7:9a:ec:
                    29:df:06:4d:7b:b2:2e:c0:40:34:ad:04:7a:8c:0b:
                    94:af:22:a7:47:54:c1:20:19:44:ff:93:3e:ef:dd:
                    d2:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:93:9B:8E:58:3E:FD:14:96:1E:AF:76:4B:F0:79:68:73:30:61:1C
            X509v3 Authority Key Identifier:
                keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:9d:fb:58:c9:1b:7b:7f:98:e0:1b:85:5c:59:df:ca:7e:27:
         bf:2e:6d:c0:43:fa:13:31:31:76:8e:d9:67:90:e2:a9:6a:06:
         ab:f3:7d:cb:0c:43:26:16:a7:b3:f9:a1:cf:1f:db:17:c5:48:
         82:64:c6:74:2f:c4:18:97:ea:f3:2e:1f:d9:fb:0a:89:15:c8:
         d3:9b:ce:3c:dc:22:cf:fe:3a:31:3a:f1:9d:ee:1a:db:63:cc:
         72:b2:25:88:f2:d7:e3:31:d7:51:3e:aa:4b:3c:71:55:f0:43:
         35:e4:27:a8:8c:93:cd:af:95:ea:80:ee:5c:40:ac:9f:3f:cc:
         5e:77:76:c7:26:37:2a:79:a2:46:c0:ac:1c:2d:3b:57:0b:93:
         48:0a:76:f0:cd:85:9a:39:d9:73:f6:df:9e:d5:84:2c:c5:6c:
         ea:f1:00:3f:41:0b:e8:f6:2a:0c:4a:13:14:d4:c2:7e:b5:57:
         d8:72:95:3a:5f:91:94:b6:9f:95:7b:f9:97:5c:5b:b6:41:f3:
         56:00:65:39:29:9b:48:f1:11:dd:8a:aa:15:ab:2c:a6:46:bf:
         eb:9c:d9:3c:97:ce:11:4f:cf:b4:82:c7:72:41:92:92:8d:20:
         5f:f6:71:88:b0:19:64:d5:ab:2f:b1:03:b7:08:c4:e2:6a:9b:
         82:9b:da:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 11:12:14 2025 by rpki-client