Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
File:                     zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json)
Hash identifier:          fAiLkpV7eIe/6nR/2nxb3N5x9Zz9oHaQy6lewNQJJo8=
Subject key identifier:   AA:43:F5:69:F2:D2:76:DF:A1:A8:16:00:4C:F9:B2:F8:4D:82:7B:8F
Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09
Certificate issuer:       /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409
Certificate serial:       1163
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
Manifest number:          1144
Signing time:             Sun 20 Jul 2025 17:16:49 +0000
Manifest this update:     Sun 20 Jul 2025 17:16:48 +0000
Manifest next update:     Sun 27 Jul 2025 17:16:48 +0000
Files and hashes:         1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: LZadEEfJLINurSJYehiEBZGtF3xXPeWJ9Y61ImzpueY=)
                          2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: LI5814/1mo8RhGHDIyDmTnyAaT8jPK8eiZW8nnVoECM=)
                          3: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: KE984DbFRTO0XDJnJvkUh9nTQI9OdADddfHh/b8sXns=)
                          4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: tG0xAoHX5Jrg4VXIV0PMgN27hGtGNiwPzNpPEMcc5ZU=)
                          5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: NlRxG3SgenSihBb1Uz1mdp6In7PIY3SWzoat7OXr7O8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl
                          rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 14:50:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4451 (0x1163)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409
        Validity
            Not Before: Jul 20 17:16:48 2025 GMT
            Not After : Jul 27 17:16:48 2025 GMT
        Subject: CN=687d2481-aa50
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:5e:b4:f1:7c:d4:e1:14:5c:a0:93:e6:69:47:
                    84:f2:ce:21:e9:a9:15:79:64:8d:bb:6e:b1:6b:33:
                    b9:2d:fa:48:16:0b:1a:21:a2:28:01:46:57:30:b0:
                    37:31:70:d7:17:3e:60:7e:70:87:b4:88:bb:62:41:
                    8c:99:f5:1d:37:86:33:64:8b:26:74:04:f0:24:33:
                    c1:d0:74:6a:47:91:51:0b:98:f9:31:b6:76:0e:ad:
                    9d:57:51:04:95:36:85:0f:4d:88:fb:d3:d3:f8:20:
                    a6:a9:0e:6c:63:48:b1:b8:fe:b1:e7:22:48:75:b8:
                    57:21:1a:08:a0:84:c0:ec:3e:00:a6:98:1e:19:c8:
                    04:17:c4:8d:d9:b3:a6:b0:a5:d8:18:a5:90:0c:e0:
                    29:ed:c1:e1:29:66:f4:a2:53:49:dc:51:25:f9:c8:
                    5d:e6:5d:b5:03:cd:0c:02:e0:79:f3:c1:6b:91:b4:
                    5e:f8:d7:31:ef:fd:db:05:e7:fe:b8:a8:69:72:c0:
                    04:98:2b:5f:6f:50:62:b5:2c:1a:63:29:a2:22:ab:
                    22:c8:1c:d2:c2:6c:43:cb:8e:43:28:ac:ec:ad:06:
                    ef:0f:0e:54:ae:35:71:d5:b2:d1:c4:94:e1:2f:61:
                    22:bc:77:d1:14:19:5e:73:03:55:a6:06:a1:3e:fe:
                    fc:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:43:F5:69:F2:D2:76:DF:A1:A8:16:00:4C:F9:B2:F8:4D:82:7B:8F
            X509v3 Authority Key Identifier:
                keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:ce:d6:09:a3:6e:73:62:c8:c7:1e:c7:8d:36:79:5c:c2:2d:
         ac:dd:b2:16:9d:89:43:63:38:9d:84:92:cf:42:34:c3:b0:23:
         08:6e:1b:e1:87:09:e6:83:f7:53:a3:28:09:c3:6f:70:ef:2d:
         10:29:f3:29:e5:f8:29:85:15:3f:49:91:57:5d:37:d1:f3:c3:
         4e:79:68:5e:db:23:37:2a:bf:f0:bb:dd:1b:5e:7e:a6:96:ba:
         cf:27:6d:39:dd:6b:4b:93:3b:d4:38:f3:8e:35:db:dc:25:25:
         49:b4:50:29:1f:54:ff:03:6e:c0:d3:61:fe:24:cc:7f:8d:b4:
         c8:33:f1:6f:28:19:e9:ba:81:d1:6f:fc:4e:34:23:a3:0e:c6:
         1e:fa:b3:9c:9d:28:8b:63:f1:7f:52:8a:7d:e0:32:a4:fb:da:
         64:36:48:52:a8:22:e2:83:35:d8:b4:e5:8b:c9:1c:b3:bb:0e:
         b9:f7:39:fa:74:02:a8:f4:94:92:89:a2:bf:2f:e8:59:aa:a6:
         f3:07:c6:b5:31:35:f6:e7:d6:a1:60:be:51:bb:e4:dd:77:f9:
         2d:19:45:58:92:34:57:f3:b5:3a:6a:3e:41:bc:32:54:6b:fa:
         db:d8:d2:c6:e2:f0:d3:cf:9c:ab:7d:63:2a:d5:1c:cd:36:09:
         1c:88:d1:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 18:39:19 2025 by rpki-client