Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
File:                     7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json)
Hash identifier:          i1hrrEysGIrKfw0IfErSjjj5WH9Q71Nk0Qodw6IcltE=
Subject key identifier:   5F:F7:F5:F5:F1:AC:16:F5:15:FB:B4:7B:09:10:15:E8:47:66:C4:A8
Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40
Certificate issuer:       /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
Certificate serial:       01D7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
Manifest number:          01D1
Signing time:             Sat 31 May 2025 02:37:51 +0000
Manifest this update:     Sat 31 May 2025 02:37:50 +0000
Manifest next update:     Sat 07 Jun 2025 02:37:50 +0000
Files and hashes:         1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: xlIxwJdVIlh3+BsnN7HZGIOiLJjOYDLGpnePBsgVbNM=)
                          2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl
                          rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 07 Jun 2025 02:37:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 471 (0x1d7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
        Validity
            Not Before: May 31 02:37:50 2025 GMT
            Not After : Jun  7 02:37:50 2025 GMT
        Subject: CN=683a6b7e-4ba9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:43:70:c3:0e:cb:03:f1:30:bd:46:40:1b:a8:
                    c4:e9:b3:f3:1a:b3:32:c8:b6:f4:4c:6c:e1:2c:78:
                    34:87:48:d5:18:d4:a7:8a:6f:88:9c:b3:20:ca:22:
                    16:0b:e9:1f:19:f7:74:56:a5:56:78:6c:f8:43:c4:
                    ca:95:3e:7b:d4:45:78:33:70:4d:88:1b:d2:37:cd:
                    e4:7c:52:71:10:fb:ef:06:20:27:d1:4e:bc:33:e6:
                    c5:dd:fe:e0:dd:07:52:97:ad:24:21:34:76:4b:e3:
                    4c:e6:e6:4f:4c:47:b0:85:cf:7d:c1:cf:3f:cc:86:
                    4d:74:a0:a1:81:a2:9b:de:70:87:e1:8f:7c:02:39:
                    d4:ed:d5:e5:96:ca:d0:9c:19:bd:1c:1a:50:e3:ef:
                    0a:39:fc:3b:e9:f1:76:06:40:fc:43:f3:d0:a0:34:
                    d0:eb:0c:60:1f:23:3c:cc:93:e6:26:49:04:8a:60:
                    e0:31:b9:8c:b4:f7:12:2b:38:e7:fe:3e:d3:83:dc:
                    f9:33:f1:0d:62:2a:a4:04:26:81:d1:dc:1a:03:85:
                    c6:49:61:ca:1f:8d:53:96:18:9c:5f:c4:e4:3d:0b:
                    1d:1a:03:48:8c:ac:55:cc:65:e4:d5:b3:6e:22:f4:
                    86:09:e9:50:61:17:78:53:a5:c6:73:57:9d:55:70:
                    92:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:F7:F5:F5:F1:AC:16:F5:15:FB:B4:7B:09:10:15:E8:47:66:C4:A8
            X509v3 Authority Key Identifier:
                keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:58:85:4a:e9:e5:7e:ed:d6:a9:82:3c:3b:70:83:68:87:97:
         de:e6:fc:1f:f5:ad:49:34:7d:f0:06:c8:b7:71:d2:29:ea:3e:
         cb:90:12:c2:47:e9:c9:3c:1d:6c:9f:3a:22:4b:5f:a4:18:19:
         83:ac:b3:e6:33:11:7c:34:20:cf:1a:28:49:32:22:3d:5a:b0:
         24:96:cd:6c:af:75:09:7b:de:a0:b2:07:16:39:47:1a:ed:4d:
         a3:03:79:04:c7:b4:6c:31:2e:3d:8e:d4:d7:c6:e6:ff:7e:b5:
         53:aa:4e:e1:89:09:06:86:34:2a:5f:54:56:4b:7b:8e:61:e4:
         c8:49:2f:17:2f:13:44:23:43:0d:19:68:63:bc:d3:d0:94:a1:
         c9:f4:c7:08:e2:01:e5:b6:e6:5f:a6:e3:1b:c3:d3:f5:a0:64:
         7b:51:5c:51:de:ed:9c:d4:98:23:80:c4:6c:e4:c7:74:a2:14:
         ad:1d:ef:c5:37:b3:81:22:49:35:7a:1a:d3:32:ed:17:eb:11:
         d7:5d:03:80:31:86:65:26:39:10:7d:65:52:f1:39:bf:04:8c:
         54:26:5c:f0:7a:6b:ca:26:14:ae:aa:68:92:56:04:36:ab:9c:
         9a:30:23:e2:bb:b5:2b:c8:fd:04:0d:79:11:30:f0:2c:3e:35:
         65:a7:1c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 31 17:27:55 2025 by rpki-client