Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
File:                     9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json)
Hash identifier:          2oyBZ1LGSfE88mkzI0aiinvh2dtt0t5K910HyHaDcXE=
Subject key identifier:   10:1D:45:20:D4:A2:33:5D:41:89:DB:60:0B:3D:CC:27:ED:26:4C:FF
Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10
Certificate issuer:       /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
Certificate serial:       088B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
Manifest number:          13EA
Signing time:             Tue 22 Jul 2025 19:18:19 +0000
Manifest this update:     Tue 22 Jul 2025 19:18:19 +0000
Manifest next update:     Tue 29 Jul 2025 19:18:19 +0000
Files and hashes:         1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: +bcO+uYF294Abwz9OpbmfoFukVNRoZjpi+gwdN7Sgs0=)
                          2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=)
                          3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl
                          rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 19:18:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2187 (0x88b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
        Validity
            Not Before: Jul 22 19:18:19 2025 GMT
            Not After : Jul 29 19:18:19 2025 GMT
        Subject: CN=687fe3fb-fbf1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:15:82:d1:33:89:a2:c1:fb:59:a9:4a:b8:01:
                    0e:4c:38:5b:c1:97:fa:aa:77:3e:bf:2b:c5:02:43:
                    b8:69:fd:53:56:3c:47:bd:41:f8:bd:9d:0f:70:77:
                    49:c9:d1:c8:d0:0f:10:14:85:3e:db:5a:42:cc:f9:
                    c3:25:ee:3b:13:a3:d0:75:86:07:14:98:84:d1:37:
                    a0:0d:75:7a:fe:a4:de:c4:91:05:31:26:58:21:a0:
                    ac:6d:a6:4f:b0:0b:57:a1:e4:2b:d9:39:f0:6c:e7:
                    c3:0d:e9:f1:06:e3:26:bc:25:0e:43:8a:7e:20:1a:
                    b4:e9:fc:59:74:9e:2f:fd:a1:e0:cc:cf:4b:e3:01:
                    05:1d:6c:83:45:ac:ac:ae:b0:c3:90:3f:96:05:57:
                    7a:c5:e6:59:80:85:69:67:58:fc:0f:09:d5:c2:08:
                    5a:93:f9:e7:7b:f8:da:53:41:48:d3:09:3c:c8:b2:
                    41:01:0d:c3:80:74:97:45:de:14:da:e1:e5:13:56:
                    f9:a4:ee:67:8f:43:d5:f8:17:8d:d0:64:ce:4b:91:
                    38:1e:b4:8f:31:16:4c:88:c1:14:77:46:96:54:e9:
                    09:47:b1:65:37:db:bb:01:b0:1a:a0:7e:f1:b4:6d:
                    18:3c:cc:a5:ba:60:f4:99:d4:d3:34:4d:17:73:ef:
                    b1:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:1D:45:20:D4:A2:33:5D:41:89:DB:60:0B:3D:CC:27:ED:26:4C:FF
            X509v3 Authority Key Identifier:
                keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:65:02:ea:91:13:e5:1d:95:e3:80:4f:47:9f:00:13:4c:0a:
         2f:31:41:bb:da:25:3d:21:2f:47:fa:f4:0a:ce:c9:64:49:ef:
         fc:18:4d:76:5d:2a:00:cd:cf:c5:1f:6e:4d:d5:5b:e1:25:43:
         61:2f:10:0f:9d:8a:da:30:28:bb:35:7e:ca:0f:4e:85:f1:bc:
         1a:af:54:d6:25:6a:ef:4d:5d:14:db:73:f8:8c:5a:6d:58:63:
         f1:10:77:4f:bf:14:60:2a:89:b1:35:c1:03:52:6b:b3:d9:b0:
         d8:98:7d:a5:48:4b:54:06:0e:3a:60:52:e4:c3:8a:ce:2b:89:
         5d:99:fd:b8:5e:ab:65:14:0b:02:33:cf:98:7e:d8:25:42:36:
         d8:88:d4:54:7b:6e:5e:41:a6:3b:9b:d8:ff:34:27:60:31:9d:
         82:dd:2f:d2:64:a2:b5:c6:a8:e8:34:9c:88:7b:f8:86:1f:f8:
         bb:d8:52:0d:64:3b:82:e7:e4:d2:63:3d:43:01:c0:5b:d7:15:
         b1:ad:a7:43:c9:26:97:6f:1c:b4:7a:36:77:f0:a0:c9:97:46:
         47:6f:f9:a4:38:4f:53:8a:ae:3d:d7:f6:c1:79:d1:fb:9b:73:
         ec:5c:13:56:44:b5:f9:f6:5b:7a:6f:16:5c:57:22:09:e8:02:
         c4:2f:17:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:06:57 2025 by rpki-client