Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
File:                     1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json)
Hash identifier:          0gRalkh6CoGKJ/nZY3brF2TItAMNniLfPmWbwZCn2VM=
Subject key identifier:   8E:F0:F9:24:66:F8:E9:E9:9B:BC:73:AE:BE:A1:3E:2B:E6:C4:52:67
Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC
Certificate issuer:       /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC
Certificate serial:       0B33
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
Manifest number:          0B26
Signing time:             Fri 18 Jul 2025 19:29:32 +0000
Manifest this update:     Fri 18 Jul 2025 19:29:32 +0000
Manifest next update:     Fri 25 Jul 2025 19:29:32 +0000
Files and hashes:         1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: HcvJrKYNdv09MGtW3uDZFJdPqld108Xs74oBTHcofrI=)
                          2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: dPrx3cF0sDj9FTl2qCoRHJgtgGOLW5ACbJ0tx2wVxmU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl
                          rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 25 Jul 2025 19:29:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2867 (0xb33)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914247C, serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC
        Validity
            Not Before: Jul 18 19:29:32 2025 GMT
            Not After : Jul 25 19:29:32 2025 GMT
        Subject: CN=687aa09c-1507
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:a7:e1:dd:f4:de:fb:24:35:bc:59:e4:d6:3e:
                    e9:d8:73:77:b6:0d:3e:71:0f:9a:b1:20:8a:bc:25:
                    11:71:77:40:8a:c9:53:8e:c3:4c:0a:17:6c:ab:d4:
                    0b:49:b4:53:d3:3b:70:54:09:70:29:e2:1d:92:65:
                    88:4c:e8:5f:7b:45:8d:71:3b:a1:38:0f:5d:f5:fb:
                    38:72:46:bc:33:8c:67:9f:53:8a:46:f0:08:a2:2e:
                    2d:c3:c2:ca:23:ba:6a:00:1d:6c:be:4e:72:02:eb:
                    62:9c:21:48:7f:52:f6:c2:38:ed:4f:40:50:14:1b:
                    ce:e8:0f:f3:65:a9:8e:56:19:d6:23:b2:94:d4:d3:
                    87:45:d1:c1:51:cf:fa:0f:a0:1f:5c:80:e8:cb:67:
                    ca:a0:9e:1b:3a:4a:b5:3a:95:bf:b5:4f:97:04:1c:
                    b2:66:b4:d1:ac:4a:85:1e:62:81:91:4b:41:7a:d1:
                    c6:46:ce:ba:36:b1:1e:aa:db:d8:7c:58:77:b5:8d:
                    6f:53:2c:78:93:66:93:21:7d:c9:f1:84:62:bc:9c:
                    b4:38:36:7c:20:89:3e:78:88:9f:17:9b:60:31:74:
                    cc:c1:ab:88:24:7b:44:04:b5:98:b7:79:28:b6:c7:
                    a3:3a:02:34:fc:da:00:aa:74:58:20:5e:55:32:61:
                    1a:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:F0:F9:24:66:F8:E9:E9:9B:BC:73:AE:BE:A1:3E:2B:E6:C4:52:67
            X509v3 Authority Key Identifier:
                keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:4f:e8:54:43:7a:70:bb:c5:8a:d1:89:67:22:4e:22:40:4a:
         78:3f:a4:1d:a2:1e:1a:9e:29:a6:4f:27:b0:ed:2c:df:8a:f3:
         44:1c:aa:84:85:5b:29:4c:30:96:7b:c9:6e:a1:1f:da:2e:47:
         59:e0:56:65:a9:ba:b6:88:a1:f8:8f:1a:95:3e:d6:c7:d2:1f:
         d2:57:f0:4a:fc:7b:29:65:70:e5:8d:5e:c2:fb:57:8c:1d:c9:
         fc:be:e3:62:d1:98:9a:8b:69:80:fa:f9:92:20:59:27:bc:66:
         09:93:3a:cf:b1:5e:4d:20:b9:0e:87:94:1c:55:e1:6e:e2:68:
         7b:15:00:c7:c5:e0:5f:d5:07:e1:74:83:0d:7d:1a:2b:87:39:
         ed:07:33:36:cf:67:10:72:19:49:08:6f:65:0b:ca:c1:ec:7c:
         fd:91:e8:30:5f:1b:8d:5f:30:ec:6c:ad:eb:60:1a:3f:a5:95:
         59:d2:38:6b:63:41:dd:55:ce:ad:59:12:ed:4b:67:9e:a5:37:
         84:48:5a:f4:e1:6d:a7:14:51:92:c4:66:98:42:90:ec:bd:8d:
         dc:89:22:3d:69:90:ec:3a:93:e5:8f:ec:ad:f3:d5:aa:14:17:
         5c:c5:e1:a6:75:31:4c:cc:a5:04:a5:0f:3b:48:ab:c3:cb:c8:
         3c:e4:9f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 02:58:18 2025 by rpki-client