Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft
File:                     7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft (raw, json)
Hash identifier:          aZ1/hA/sBa+A6hQeJpOWsocgUa1YknpArikoz/osh8A=
Subject key identifier:   A0:74:42:06:82:59:B8:28:3E:50:C3:2F:31:A9:E3:4A:12:B6:D7:14
Authority key identifier: EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6
Certificate issuer:       /CN=A91982B6/serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6
Certificate serial:       66
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft
Manifest number:          65
Signing time:             Mon 21 Jul 2025 07:10:25 +0000
Manifest this update:     Mon 21 Jul 2025 07:10:24 +0000
Manifest next update:     Mon 28 Jul 2025 07:10:24 +0000
Files and hashes:         1: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl (hash: gAxU4kfpV49b0JA1aQxDe31UpMqnusBzDYoNSTe++98=)
                          2: 739C8BDECB5A11EFBEE64062C4F9AE02.roa (hash: WVqv1JuSt8hSNNolUiV5z8//m1vJSnq0q+Q8Ooe/S0g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl
                          rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 07:10:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 102 (0x66)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91982B6, serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6
        Validity
            Not Before: Jul 21 07:10:24 2025 GMT
            Not After : Jul 28 07:10:24 2025 GMT
        Subject: CN=687de7e0-aa64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:e7:5d:86:e2:59:56:5a:86:1f:be:f9:14:bb:
                    df:1f:e3:c7:54:ae:dc:e5:b8:22:88:d4:66:06:7d:
                    04:e7:06:a4:eb:04:b3:7d:dc:96:c6:a6:76:3b:69:
                    28:b1:65:e8:2d:06:e1:a8:93:f2:64:45:43:ab:90:
                    86:d8:cd:0e:c6:c4:56:9e:20:26:52:f5:01:6d:ae:
                    3a:03:da:c6:6b:be:a6:df:a4:68:b0:84:37:fc:4b:
                    04:18:d3:ac:48:d6:48:e0:f5:f7:1b:0b:e4:99:38:
                    d3:b3:a2:fd:98:ae:08:f0:31:c7:7f:ba:80:27:be:
                    b0:0f:ef:c2:d9:fd:b2:79:9d:3e:4e:37:50:8a:23:
                    d9:e1:3f:16:7f:bb:43:57:b8:42:98:e6:33:ef:56:
                    75:7d:57:ef:75:12:73:36:ea:a7:ca:a4:80:5c:f3:
                    da:ff:b6:aa:db:cd:98:7e:13:da:d8:3c:03:8c:27:
                    ba:6e:81:6f:b1:ca:f8:c1:61:80:d3:ac:66:f4:2b:
                    ae:b2:6d:78:b4:0b:c9:32:e5:a3:da:38:3a:ee:89:
                    33:4a:70:5a:c6:57:aa:44:94:5f:4c:2b:25:cb:ad:
                    02:db:c7:9a:59:7a:4a:25:dc:0b:fb:b1:53:09:82:
                    b8:d2:98:92:a1:2b:82:bd:d7:26:68:1c:e9:10:82:
                    1c:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:74:42:06:82:59:B8:28:3E:50:C3:2F:31:A9:E3:4A:12:B6:D7:14
            X509v3 Authority Key Identifier:
                keyid:EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ba:a7:14:78:d7:2e:78:0a:47:a1:81:ff:64:a8:8f:d1:fd:98:
         2f:ca:58:0d:f1:7c:76:87:30:ce:04:e4:db:cc:66:af:f8:89:
         dc:5a:d9:54:8f:12:d9:cb:3a:d6:64:36:e2:24:67:47:63:57:
         d0:9e:a4:14:7b:32:35:48:2d:50:79:0c:ac:d9:bc:fb:e8:dc:
         91:6f:ec:cc:d7:89:5c:00:b9:3f:ec:ae:5b:ef:d4:1f:b9:c3:
         29:80:25:f7:21:ec:d5:2d:1a:a1:4a:dc:e6:d0:54:92:fe:ff:
         6b:6c:82:24:59:2f:bd:32:fa:a0:4b:4d:2b:e5:d8:81:bd:bf:
         fd:f2:bb:5f:de:c3:a3:fb:70:ac:f8:85:40:68:e3:3c:b8:d8:
         68:db:68:0a:76:17:b1:e5:79:3a:c9:6b:08:29:80:05:71:45:
         16:25:7b:a8:01:85:c8:f5:f9:bf:fb:23:36:d6:f6:20:6d:2f:
         75:18:a5:7c:ff:93:25:6f:b9:60:c1:32:ec:ad:7e:ae:33:d3:
         6a:b1:25:2f:98:75:8e:d0:67:e5:e5:eb:f7:2b:5c:65:3c:8a:
         22:8b:f7:f3:9d:03:da:3e:3b:97:e7:e0:fc:a8:bc:d6:04:bb:
         65:aa:d2:5e:58:96:88:1a:d7:a2:60:7b:08:8f:dd:ea:3d:c3:
         84:98:92:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 04:20:22 2025 by rpki-client