Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
File:                     5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json)
Hash identifier:          SgTlQKqpuTJlpuKOwEgzV/n/F7s/RvJDw6e1I9acC9c=
Subject key identifier:   ED:E7:05:27:57:5F:94:0E:4B:C6:20:42:58:28:91:83:C7:78:FF:92
Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE
Certificate issuer:       /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE
Certificate serial:       0715
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
Manifest number:          219B
Signing time:             Tue 08 Jul 2025 16:05:54 +0000
Manifest this update:     Tue 08 Jul 2025 16:05:53 +0000
Manifest next update:     Tue 15 Jul 2025 16:05:53 +0000
Files and hashes:         1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: RMWHdJwtSQOgxLIOCzkzNno3cEn3RCFnhleoWYkXkfk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl
                          rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 15 Jul 2025 16:05:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1813 (0x715)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE
        Validity
            Not Before: Jul  8 16:05:53 2025 GMT
            Not After : Jul 15 16:05:53 2025 GMT
        Subject: CN=686d41e1-5148
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:aa:22:95:ee:8e:ca:1f:f6:b9:42:e6:bd:62:
                    85:1f:f0:bf:1b:22:56:0d:b3:89:8e:24:c6:95:4f:
                    b4:31:69:7e:cd:45:e2:a9:34:69:fc:d5:ab:de:ba:
                    ec:09:42:36:89:f4:b7:c8:7e:60:20:9c:2c:69:e3:
                    f1:28:67:cd:1a:7c:7e:d9:06:bc:90:25:50:43:2e:
                    a4:3c:fe:47:32:63:20:75:11:cd:dd:95:fd:21:7d:
                    0c:3c:fd:0c:e2:e7:2b:2e:d8:fd:d4:48:47:e9:46:
                    c4:9a:0b:fe:67:f8:d9:05:14:cb:66:98:e5:bc:08:
                    ff:80:5a:45:57:7f:0b:a0:53:a4:f6:e0:59:40:34:
                    c6:5e:95:80:09:01:0b:84:7d:d1:5b:e5:18:c9:8c:
                    43:46:a1:ff:8f:d2:a9:07:aa:37:fc:46:72:a2:b5:
                    88:a0:67:e4:10:ec:58:70:74:10:b7:09:10:9d:70:
                    9a:7e:c8:a4:98:5b:69:4c:f1:87:58:00:3f:20:9f:
                    18:ea:09:1f:a8:41:30:c8:7c:bd:a9:db:e3:24:11:
                    56:1e:4e:3e:58:d3:ed:b9:0e:19:e9:cf:65:22:22:
                    0c:81:e4:8c:6c:71:08:e0:0f:78:13:a6:bf:0f:d8:
                    40:77:73:7a:7a:0f:3f:5f:3c:c9:80:86:31:00:17:
                    cd:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:E7:05:27:57:5F:94:0E:4B:C6:20:42:58:28:91:83:C7:78:FF:92
            X509v3 Authority Key Identifier:
                keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:8a:42:88:63:5b:91:fb:0c:22:cd:f6:50:d4:66:84:65:a4:
         19:b5:97:a7:3a:7c:3a:76:e0:ee:7e:ea:2b:c5:42:ce:02:bc:
         48:11:50:34:30:f3:bd:d0:fc:9a:a8:aa:f6:09:33:40:52:17:
         a1:d7:f1:82:65:e5:7d:6c:6e:b5:d5:b5:f4:3c:2f:8b:c4:f4:
         6f:34:d8:2a:ad:8c:fc:00:56:ab:88:91:90:cb:22:63:1a:3a:
         7b:42:b6:0a:cf:45:33:44:68:e6:ef:e1:4d:65:77:bb:e3:93:
         94:66:14:6b:28:e4:a6:cf:dc:f4:6a:2c:69:83:c1:ea:b7:d5:
         be:9b:5f:1b:fa:df:1b:67:24:5d:b9:11:e6:37:cb:54:0f:07:
         ed:0a:56:c4:09:b3:a1:04:09:a9:5a:ed:6f:83:3d:1f:dd:cc:
         f3:af:fc:38:c1:3b:1d:eb:15:2d:79:66:61:b7:a6:c5:61:4c:
         02:8a:2a:a3:4f:7d:39:3b:39:85:e3:d4:8e:58:0f:f0:69:be:
         e2:8e:26:57:6c:45:ab:dc:af:40:05:2d:50:9b:ee:47:4c:0d:
         91:c0:33:f3:b7:43:35:d0:7f:74:78:3d:5f:be:fb:8a:51:81:
         b7:7c:fb:09:72:09:9b:75:9c:8c:e1:9a:27:65:d5:5d:8f:11:
         16:e0:ab:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 9 10:08:46 2025 by rpki-client