Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft
File:                     o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json)
Hash identifier:          lgNkuhj6CqTj4xzi4U3Sx69tBL4WgHEfPh8pU/p3eVc=
Subject key identifier:   ED:2D:08:2D:98:FD:DF:EB:96:E5:CF:0F:66:D9:51:FA:09:F2:BC:05
Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E
Certificate issuer:       /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E
Certificate serial:       0612
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft
Manifest number:          05ED
Signing time:             Tue 22 Jul 2025 23:28:15 +0000
Manifest this update:     Tue 22 Jul 2025 23:28:15 +0000
Manifest next update:     Tue 29 Jul 2025 23:28:15 +0000
Files and hashes:         1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: viERusFdtkLNWaVhU2VgDGM7z+hlkB8+4qAAAQ94qMI=)
                          2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: V45gxxPbP3gB5dgB3aRdYWLo9/HOqXLXWjCDGDuIpeg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl
                          rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 23:28:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1554 (0x612)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E
        Validity
            Not Before: Jul 22 23:28:15 2025 GMT
            Not After : Jul 29 23:28:15 2025 GMT
        Subject: CN=68801e8f-8607
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:24:8c:b9:09:c4:6d:3d:08:d7:b3:f2:4d:bd:
                    b1:1f:f2:a2:d9:c0:38:5a:c0:e2:37:2d:78:5e:4f:
                    e3:41:e0:b6:8f:56:a4:ad:bc:e3:e8:bb:04:b6:80:
                    a9:d0:34:c1:59:0b:07:40:d9:28:5f:ab:f0:90:ee:
                    a1:50:d8:f7:84:f2:53:43:2d:fa:1d:1a:6a:b8:9e:
                    67:0a:5e:2c:11:54:72:31:bc:aa:dc:ac:9e:e5:57:
                    8b:13:79:80:de:15:87:45:d7:b1:d6:5e:21:32:35:
                    a0:a6:2b:0d:62:cf:c6:a7:62:5b:5e:d3:58:08:73:
                    39:de:d9:03:e6:c9:ad:0d:ec:a7:4c:c7:79:28:b1:
                    32:e3:cf:e3:4f:6a:54:4b:f2:ca:64:66:0a:15:b6:
                    e4:e1:1d:40:79:01:b4:37:c2:e3:89:d6:84:2e:c7:
                    12:b9:fc:40:3c:e7:61:5e:80:1a:05:cd:c4:25:15:
                    cc:89:32:7e:17:89:82:cd:9f:e7:1f:23:a3:c3:50:
                    84:73:2f:f0:a0:64:8c:18:93:92:5a:f6:1c:5d:98:
                    43:12:ed:d6:ae:ff:6b:6c:35:97:fe:73:f4:89:06:
                    7d:2b:0b:98:ab:65:dc:d9:df:66:63:c0:40:f6:29:
                    ba:90:66:1d:66:c2:0e:b9:be:c6:ae:24:47:fb:f1:
                    72:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:2D:08:2D:98:FD:DF:EB:96:E5:CF:0F:66:D9:51:FA:09:F2:BC:05
            X509v3 Authority Key Identifier:
                keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:55:13:b3:9f:58:42:b8:f7:01:98:05:5a:ec:32:84:cc:ac:
         8f:4d:2c:6a:aa:39:72:4c:7e:24:e5:e4:fd:7c:44:b8:0a:87:
         c3:0d:2f:7e:46:24:9f:47:29:18:5f:9d:d0:55:20:f6:8e:a9:
         c0:a1:54:06:b5:c0:85:e2:e1:a0:6b:9a:af:36:dc:22:f7:13:
         fa:f5:fb:e7:e8:9f:64:9b:63:0b:74:11:98:4f:90:b1:2e:17:
         9d:7e:b6:cd:5a:e8:96:3a:68:91:97:4b:7c:60:bf:ea:c7:70:
         7b:7a:df:01:45:f1:3d:ca:b9:69:a7:d3:ef:c8:03:5b:1b:85:
         d2:62:ec:df:2c:ea:ca:d0:6c:f4:1f:aa:ff:6e:c6:0d:93:a2:
         ca:86:b5:f0:07:7c:1b:3e:6a:37:2c:34:05:78:80:50:b9:b6:
         62:3a:3f:35:08:53:ee:01:4e:46:f3:5e:a8:c2:85:b7:13:aa:
         af:0c:b3:39:b8:fe:9f:25:c3:9c:2b:5f:ed:cb:ad:dd:98:2b:
         f4:73:b2:5f:1a:63:2e:10:a3:5a:ac:a0:22:6d:40:50:40:41:
         9f:35:86:4e:dc:e6:bf:a7:e9:70:68:4f:79:6e:f7:2c:92:53:
         62:39:6c:7b:c7:ff:51:27:4d:ac:8c:77:33:d7:57:3f:f5:e0:
         a0:71:70:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:17:28 2025 by rpki-client