Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft
File:                     7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft (raw, json)
Hash identifier:          ULxuAJA1zJH4YFCajHx40Nt8QqzMmCynx3S92wuWeE8=
Subject key identifier:   51:3C:25:B2:03:7C:98:11:E0:43:7F:44:D3:58:D7:6A:3E:BC:FE:46
Authority key identifier: EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6
Certificate issuer:       /CN=A91982B6/serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6
Certificate serial:       67
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft
Manifest number:          66
Signing time:             Wed 23 Jul 2025 07:19:36 +0000
Manifest this update:     Wed 23 Jul 2025 07:19:36 +0000
Manifest next update:     Wed 30 Jul 2025 07:19:36 +0000
Files and hashes:         1: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl (hash: 59LisUaqXs0c5PwvG/VGIn0sLghSgPNyD2WE9i9ZQIc=)
                          2: 739C8BDECB5A11EFBEE64062C4F9AE02.roa (hash: WVqv1JuSt8hSNNolUiV5z8//m1vJSnq0q+Q8Ooe/S0g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl
                          rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 07:19:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 103 (0x67)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91982B6, serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6
        Validity
            Not Before: Jul 23 07:19:36 2025 GMT
            Not After : Jul 30 07:19:36 2025 GMT
        Subject: CN=68808d08-0e6f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:83:ab:bf:93:a1:03:64:2d:1d:56:60:42:d4:
                    ed:77:91:ca:2a:08:ba:2e:83:a8:a3:5d:e5:7b:73:
                    8c:cb:f2:5e:1c:7c:6b:51:6a:b7:4d:28:4c:ec:de:
                    89:ff:b3:19:2e:5e:8a:30:81:f6:ef:53:ec:64:4a:
                    b0:26:8c:04:0e:8e:69:94:87:fe:62:80:81:d8:b4:
                    b1:7d:88:8f:43:d8:b8:9a:7a:95:35:62:18:98:34:
                    92:eb:41:11:0c:46:8f:56:dd:5e:25:70:1e:dc:cf:
                    9b:0e:cc:cc:a2:fd:b0:02:f7:c9:98:c9:44:98:46:
                    e2:7f:e0:d5:82:dd:03:87:50:7b:82:ab:4c:f8:a0:
                    f4:03:77:9a:5a:da:27:92:0d:3a:23:e1:bf:b1:be:
                    31:8b:c2:aa:b4:f0:f5:fb:43:c7:c6:6e:93:25:1e:
                    93:50:0c:cc:f9:9f:a6:da:00:8a:29:da:19:f0:13:
                    67:2e:2a:48:c3:39:c6:fe:44:4d:32:76:73:e8:5b:
                    cb:99:75:7a:3d:b9:4a:f3:ce:c0:b0:67:9e:c9:1e:
                    3a:73:a3:5d:a2:44:b4:30:71:7e:01:93:da:85:cb:
                    ce:02:d7:35:f9:01:d8:cd:ff:0f:d7:f2:76:53:91:
                    5b:83:bd:23:72:91:97:6a:1d:a1:76:9a:34:33:c2:
                    b0:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:3C:25:B2:03:7C:98:11:E0:43:7F:44:D3:58:D7:6A:3E:BC:FE:46
            X509v3 Authority Key Identifier:
                keyid:EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:8b:9b:fd:ff:d3:69:1e:ab:9d:b4:13:c3:3e:e0:00:8f:9e:
         3a:e8:5b:cc:09:96:bd:53:38:91:f6:b7:7c:a0:e1:9d:66:54:
         b4:cb:7a:85:bb:98:f3:95:bc:3a:a8:f4:5b:61:06:f9:f9:e8:
         f1:ed:ff:7b:7d:77:41:98:95:5d:60:c7:05:ea:3c:85:67:08:
         1b:0b:68:4d:71:49:27:4a:2d:49:f6:34:bb:51:53:26:44:89:
         c1:05:68:be:bb:eb:ec:d3:d3:da:a2:55:4a:a7:44:00:8f:38:
         94:3f:e2:04:f4:b2:8e:79:39:e5:5a:fb:d2:0f:6b:3a:31:af:
         73:99:b0:6e:ae:2e:fc:72:a7:74:16:34:d6:c6:68:e1:fd:d6:
         22:1e:38:d1:bd:aa:19:9c:c7:de:0d:e3:ae:17:35:50:73:39:
         94:17:af:31:03:8a:6c:9b:62:8e:20:dc:c9:2c:f1:bf:8a:37:
         de:90:00:c8:82:2a:8b:28:97:66:0f:bf:9b:ce:3b:04:f4:79:
         b1:4d:f1:f3:65:62:af:ec:79:ec:a1:1a:92:04:3d:50:a6:74:
         60:f1:5d:d5:48:d1:d9:55:db:0b:4f:28:9f:63:04:60:cd:f7:
         70:ba:6d:4e:4d:c6:50:bc:3f:1d:9f:4b:fb:fd:44:60:8f:32:
         43:2b:9d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 12:19:48 2025 by rpki-client