Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
File:                     Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json)
Hash identifier:          cxoJikrkFQVbNpuln/zIdZt4NFDuQKFSIUTZUoBK+Ms=
Subject key identifier:   BC:DA:CC:D0:32:3C:40:1D:4F:C1:3A:9E:DF:93:17:CC:43:E2:F1:36
Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC
Certificate issuer:       /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC
Certificate serial:       63
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
Manifest number:          5E
Signing time:             Mon 21 Jul 2025 07:21:23 +0000
Manifest this update:     Mon 21 Jul 2025 07:21:23 +0000
Manifest next update:     Mon 28 Jul 2025 07:21:23 +0000
Files and hashes:         1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: WbzxxmApAOekXC/+aA32CIx1A128K6DTWPWFT95msZw=)
                          2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl
                          rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 07:21:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 99 (0x63)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC
        Validity
            Not Before: Jul 21 07:21:23 2025 GMT
            Not After : Jul 28 07:21:23 2025 GMT
        Subject: CN=687dea73-856f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:e5:b0:d8:be:b8:7d:46:96:35:f9:39:1e:3c:
                    f3:da:0c:28:e2:59:47:c1:69:2e:29:7d:a5:cc:94:
                    73:6b:16:f3:dc:82:e5:86:06:ac:8a:81:de:0a:ec:
                    77:40:ae:c0:77:bc:c5:77:6a:36:3a:8d:f5:81:9c:
                    07:eb:42:24:67:d1:7f:56:be:fa:3e:8b:d5:26:96:
                    1c:17:96:92:90:5e:f8:a5:c8:b2:c3:18:0e:13:bf:
                    bd:e8:77:b8:33:8c:3b:9a:18:c3:42:15:a7:b4:c7:
                    73:2a:09:81:91:e3:3d:6d:e8:8c:99:a1:f2:4b:94:
                    19:97:a9:91:32:14:d2:ab:a6:35:09:86:15:0f:99:
                    53:39:0a:cd:af:9c:89:c2:8c:00:ae:3e:01:f1:14:
                    62:13:cc:52:39:a4:e9:15:90:01:cb:e7:08:c7:24:
                    62:75:92:38:dd:2a:07:9d:15:01:c4:66:ad:e8:5f:
                    19:0b:cc:b2:f0:10:2a:2c:8f:48:82:84:61:1d:b1:
                    bb:53:6f:ba:d8:ff:55:b5:00:76:61:6c:28:97:40:
                    53:71:1f:23:0f:d3:17:19:4f:43:c3:a9:ab:53:a3:
                    aa:7e:2a:ae:a5:89:a8:59:be:40:89:ba:a7:41:d6:
                    b4:2d:b8:13:0e:d2:d1:91:ca:53:7f:d1:1c:2b:0a:
                    8e:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:DA:CC:D0:32:3C:40:1D:4F:C1:3A:9E:DF:93:17:CC:43:E2:F1:36
            X509v3 Authority Key Identifier:
                keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:b4:4a:86:07:98:c7:f6:b8:dd:74:41:67:a6:54:cd:9b:ad:
         52:06:86:78:17:60:ac:02:84:ff:22:41:51:9f:12:e9:f5:a8:
         2b:5c:20:97:c4:1e:c0:93:5b:5d:c8:fa:2b:95:45:36:68:8b:
         6f:3d:1f:9b:62:9b:e0:c5:eb:6b:44:a3:d7:31:eb:f0:6b:e5:
         c8:48:d7:de:7f:38:b2:7e:4b:75:aa:0c:5f:54:e7:13:17:c4:
         c7:5e:fa:23:68:52:20:55:4a:54:23:e8:e8:45:e2:6a:87:5c:
         2d:14:de:e7:8f:8f:89:94:ae:ec:ee:93:7f:89:2c:0f:9e:e0:
         97:65:8b:5d:2d:2e:fd:06:fe:57:ad:c3:3d:5e:16:72:9f:eb:
         54:bc:d5:2b:16:af:99:f7:87:31:e5:e2:8f:46:00:75:17:d3:
         35:f6:d3:ae:1b:ea:d0:65:25:6b:5a:4a:8f:7c:95:9c:bb:de:
         68:80:7b:0f:dc:ee:70:4c:96:3f:a0:63:ab:91:49:12:3c:20:
         23:d3:3e:54:36:c5:ae:05:7e:72:89:c2:e1:e8:3a:f0:d8:34:
         fd:a7:2f:20:71:2d:71:cd:2f:01:08:02:43:d8:fc:ce:fb:d8:
         09:f6:74:aa:83:eb:41:1d:4b:7c:0f:9a:85:2c:8c:a1:5f:bd:
         7d:f0:5b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 18:29:05 2025 by rpki-client