Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
File:                     YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json)
Hash identifier:          GN5jG28Gta7+OO0FuT7xihcW+/U8HA0XVUHhxbxBqxY=
Subject key identifier:   AC:5E:BA:65:03:24:D3:3E:AE:14:38:2A:50:42:E0:EF:1D:02:4E:73
Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E
Certificate issuer:       /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E
Certificate serial:       81
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
Manifest number:          80
Signing time:             Sat 19 Jul 2025 06:53:11 +0000
Manifest this update:     Sat 19 Jul 2025 06:53:10 +0000
Manifest next update:     Sat 26 Jul 2025 06:53:10 +0000
Files and hashes:         1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: ig2SMqGqM+x8Rpk5cMeCTxmVsZb1hqpbSOeWgoP3f/o=)
                          2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl
                          rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 06:53:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 129 (0x81)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E
        Validity
            Not Before: Jul 19 06:53:10 2025 GMT
            Not After : Jul 26 06:53:10 2025 GMT
        Subject: CN=687b40d6-859e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:15:a9:13:8d:50:0b:29:07:06:8a:3a:3e:64:
                    03:d3:8d:9b:4a:a7:74:5b:0b:5b:94:0a:da:76:a2:
                    d8:e0:68:65:1b:b6:33:ba:d3:db:1f:c2:d8:06:2a:
                    4f:2e:7a:f9:6e:ec:49:5b:5b:6b:8d:0a:9d:47:a1:
                    fa:c7:1e:19:bb:79:25:fe:46:ce:32:76:6b:b3:73:
                    f5:ce:89:d2:c8:c7:d2:ef:c9:e1:44:56:e7:b8:88:
                    ac:87:f6:ec:49:70:7f:21:e9:77:32:6c:1a:08:02:
                    d0:b1:cc:cb:eb:4a:40:62:3f:a7:f8:7b:74:83:5f:
                    62:8b:05:0c:19:24:d4:db:b7:46:5a:c9:0c:2b:23:
                    72:06:ba:45:8d:8c:5e:44:5b:27:ad:bf:60:89:f0:
                    8e:4c:91:1e:de:66:69:f8:15:ba:61:6b:5d:52:bd:
                    b0:04:bf:40:34:ff:cd:02:47:65:18:cf:f4:e5:ff:
                    8d:9c:9c:2e:a2:e7:38:3c:db:17:0b:8f:d0:3a:51:
                    ad:db:87:c8:60:68:b5:5b:cf:50:5a:27:c3:59:6b:
                    63:18:df:93:d3:9d:85:fb:7e:03:95:0c:c3:5c:9d:
                    b9:81:7a:2e:80:7a:23:67:cd:20:52:f9:d8:7b:d2:
                    7b:47:a9:19:31:be:ad:e3:93:c1:1d:71:ce:37:9d:
                    72:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:5E:BA:65:03:24:D3:3E:AE:14:38:2A:50:42:E0:EF:1D:02:4E:73
            X509v3 Authority Key Identifier:
                keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:36:83:6a:65:3d:9a:b7:a0:01:b9:76:b3:40:21:47:04:77:
         29:cb:c8:e9:90:2f:b6:8d:4c:3a:d0:7f:53:ab:ab:a3:d2:91:
         ce:e7:d3:c0:0e:4b:63:22:3b:e9:22:8c:05:a3:95:b3:15:3d:
         43:5f:72:33:8a:16:25:8d:27:65:ba:cd:e8:fa:d9:ec:85:3b:
         bf:c5:c5:5e:87:47:55:47:b1:6e:14:91:45:d8:ec:3f:83:06:
         bc:10:42:9b:4b:26:67:49:d6:1e:6b:40:e7:0b:cc:9d:03:67:
         1d:83:fc:17:5a:4f:19:98:55:8c:f1:76:7a:dd:3f:c6:eb:45:
         c3:75:7f:07:23:42:23:5c:86:54:43:d7:86:29:4f:78:63:1e:
         97:b7:2e:5a:7c:4c:75:56:a1:e9:fd:ec:f8:82:92:32:77:32:
         84:53:cb:9d:d2:2b:32:6c:8b:74:40:a3:57:a4:1e:82:b5:74:
         aa:4d:91:1c:04:87:47:43:eb:3f:44:a2:58:c1:23:6a:79:52:
         ce:79:7e:78:0a:e8:ab:ac:ea:b0:c4:48:0c:70:d6:07:7d:5f:
         ba:c5:bd:1c:5c:c6:ff:f6:9b:ac:72:8d:50:7d:f6:42:aa:11:
         30:a0:0e:a7:8e:8b:fa:cf:c7:45:63:55:dd:aa:5e:f0:ce:ac:
         00:e8:58:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 21:56:48 2025 by rpki-client