Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
File:                     ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json)
Hash identifier:          qb8bWGaaiHMuAh9GDvlCgTAOxR1JG7mXV2g3/vK0kao=
Subject key identifier:   79:C3:DA:23:70:4D:F6:D3:BD:F3:47:9C:37:A6:22:76:B8:82:BA:48
Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C
Certificate issuer:       /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C
Certificate serial:       F5
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
Manifest number:          F3
Signing time:             Wed 23 Jul 2025 05:30:27 +0000
Manifest this update:     Wed 23 Jul 2025 05:30:26 +0000
Manifest next update:     Wed 30 Jul 2025 05:30:26 +0000
Files and hashes:         1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: QAcH87EAP62sl4aQMso53vg52wJdFTFcqkH7gP3Cm1c=)
                          2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl
                          rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 05:30:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 245 (0xf5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C
        Validity
            Not Before: Jul 23 05:30:26 2025 GMT
            Not After : Jul 30 05:30:26 2025 GMT
        Subject: CN=68807373-6499
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:e3:14:ae:f5:35:d1:4b:f9:3f:e5:ae:3c:10:
                    ae:08:dd:66:c7:5a:32:73:e7:c4:35:66:f5:1c:9f:
                    f0:d1:a6:50:25:81:ea:b3:e5:6b:be:1c:c9:95:04:
                    3e:88:86:fc:0d:81:8c:81:b7:d7:fd:4e:80:4a:b5:
                    9a:02:78:d0:56:5c:79:11:1a:75:ca:5d:5a:b3:8c:
                    4f:a5:54:39:65:e8:62:44:25:c8:40:49:64:e8:84:
                    32:4e:29:c2:a7:c7:50:fb:57:bf:1c:5a:39:16:77:
                    ab:50:e7:4a:8d:72:73:05:73:9b:fc:c2:b4:69:25:
                    1a:83:d3:16:ea:d9:c6:fd:c0:05:24:87:f4:db:67:
                    06:13:cc:24:20:cb:21:da:de:34:03:50:4a:75:48:
                    22:43:5f:b9:67:99:e3:1c:75:02:e5:39:17:d6:6a:
                    69:0b:36:e6:4e:dc:4e:fe:8c:d6:7a:f0:c5:7a:51:
                    eb:32:53:4f:51:3c:1f:db:a3:4f:b0:66:93:3c:dc:
                    90:a6:f9:ea:2c:39:5e:2f:27:90:2d:a1:ae:df:9d:
                    40:39:23:aa:46:ad:3d:8b:13:9c:d2:3f:30:e4:fd:
                    66:e1:9a:e6:38:34:75:d3:10:95:f9:c4:95:69:fa:
                    81:1b:ea:41:d5:f9:98:05:da:25:e3:38:a6:28:15:
                    52:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:C3:DA:23:70:4D:F6:D3:BD:F3:47:9C:37:A6:22:76:B8:82:BA:48
            X509v3 Authority Key Identifier:
                keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:fe:c0:90:c5:cb:ac:08:e6:45:86:96:8b:87:f3:2a:cd:88:
         ba:bb:79:ea:55:7e:06:27:3a:22:f1:d1:e9:12:00:03:96:bc:
         b1:18:a8:24:a2:a0:c0:6b:e0:7a:e9:df:d6:e4:03:b1:da:38:
         ec:9f:91:7e:fc:0b:95:ca:46:fc:00:03:6f:f7:ec:8d:7c:89:
         14:d0:0d:4d:fc:e9:d1:c2:85:51:81:49:fe:8a:0a:50:8a:c7:
         02:b9:9a:da:bd:b0:27:1b:65:0b:47:00:18:c9:9f:8d:e6:ce:
         b9:11:8d:57:34:7e:fb:72:8f:ed:e4:5e:ad:3c:40:71:81:f1:
         8a:af:0f:f1:41:ea:e1:7f:be:09:88:53:b2:f5:1f:fb:d1:a2:
         54:b2:b9:5e:2c:f6:93:6a:04:f7:fc:89:a1:ed:fc:c5:53:4c:
         7c:10:07:4f:44:93:12:38:ed:a9:c8:5f:47:06:2b:9d:f2:d5:
         dd:a7:93:2b:a5:13:2c:e5:12:54:97:f4:6e:d5:b0:dc:09:2a:
         86:94:7f:8c:f0:8f:71:2f:93:f0:5b:e2:47:ee:f5:23:1a:6a:
         ea:7e:3b:ea:ad:00:ef:7a:f1:dd:5d:22:ae:79:19:26:08:86:
         c7:b5:32:6e:97:bd:85:76:aa:af:90:18:77:4b:5b:71:cf:a5:
         ca:ab:f9:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 08:32:14 2025 by rpki-client