Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
File:                     BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json)
Hash identifier:          QU3Ad6obpOEqILzuEao1RP6WMK6IhC+dKliBCWZYIUA=
Subject key identifier:   2E:85:14:30:FD:DD:D8:A0:60:D3:05:AB:70:30:56:20:29:E5:DE:57
Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57
Certificate issuer:       /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57
Certificate serial:       06E8
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
Manifest number:          06CC
Signing time:             Thu 24 Jul 2025 21:54:56 +0000
Manifest this update:     Thu 24 Jul 2025 21:54:55 +0000
Manifest next update:     Thu 31 Jul 2025 21:54:55 +0000
Files and hashes:         1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: gKvoUJVWPE+kzmbbKAEFp5wZL4Uco0xjzUuubCWr46Y=)
                          2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: k3Hyvnta3NTSihzOI6GhNOzxp4Li4ZxAgK0C//8NE4o=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl
                          rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 21:54:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1768 (0x6e8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57
        Validity
            Not Before: Jul 24 21:54:55 2025 GMT
            Not After : Jul 31 21:54:55 2025 GMT
        Subject: CN=6882abb0-fe16
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:d4:1f:fc:b8:59:26:02:5c:23:d0:ae:96:1e:
                    e9:ed:a3:1b:09:ea:76:9d:18:f3:75:52:80:cb:d4:
                    9b:f9:df:0d:4d:89:52:0d:a5:8b:f8:e9:84:5d:e5:
                    ff:f6:ab:fd:fc:e5:9f:4d:c5:49:32:b9:85:8f:ae:
                    ff:90:b6:ae:e3:5f:09:68:b7:a1:62:e5:50:87:08:
                    69:39:90:de:90:cc:d7:19:00:9a:b5:57:3b:f7:17:
                    8a:aa:14:82:89:6b:58:71:5e:3c:91:59:86:3f:77:
                    01:b7:67:a0:65:f6:da:01:e2:07:65:73:9c:43:70:
                    e0:88:54:39:c7:c4:92:06:be:87:0d:58:ed:b2:e6:
                    99:36:76:40:1e:1d:58:fa:6f:02:37:30:a2:5b:76:
                    ff:92:6a:36:d1:eb:d5:08:86:e8:9b:15:0e:36:22:
                    36:e9:97:fd:36:91:cb:5b:0b:b2:26:27:fd:a3:c0:
                    86:54:52:a6:7d:cb:33:8d:64:88:10:e0:8c:9a:eb:
                    42:be:5b:1b:7a:c1:b5:c1:9a:7b:f9:b7:43:ad:a6:
                    33:a9:a3:fa:20:9e:3f:0d:de:e0:2b:66:01:8c:dc:
                    88:2b:f8:39:54:bc:c6:da:d1:17:ca:3f:69:0d:dd:
                    df:45:c8:00:4e:19:53:56:81:a0:96:8e:65:fd:69:
                    82:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:85:14:30:FD:DD:D8:A0:60:D3:05:AB:70:30:56:20:29:E5:DE:57
            X509v3 Authority Key Identifier:
                keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:33:6e:d3:fb:8b:98:04:ad:7a:c7:e4:eb:10:92:f5:46:59:
         c4:d9:7b:3b:ab:74:4e:fa:3a:cc:43:8a:46:71:35:fe:88:34:
         41:76:ee:17:b7:61:45:13:e2:07:dc:12:bc:46:2b:89:47:bf:
         07:7e:2d:95:4d:89:a1:f5:a7:d9:1c:a1:09:50:06:1b:33:e7:
         52:83:b5:12:da:3d:e8:3e:fb:7c:d7:f8:13:6d:e9:03:62:53:
         41:56:b1:cf:41:2b:9e:81:2d:27:0d:f3:4b:44:56:2d:33:4f:
         0e:51:57:52:34:ce:30:0a:ac:bd:c2:1d:f1:ee:de:53:02:d6:
         d5:51:85:30:64:04:46:f1:96:07:4e:0a:f9:22:11:03:10:43:
         b6:9e:4e:41:9b:24:d5:75:0d:e1:b3:76:fb:c1:2a:11:b5:55:
         f2:54:cb:4f:0b:dc:dd:05:8f:1a:29:70:ea:b1:8c:3c:8c:89:
         10:02:ff:92:50:a7:68:5c:11:0b:08:30:d9:87:c8:98:37:98:
         81:18:80:fc:24:67:5b:22:5e:f6:9d:0f:94:d3:de:19:39:2d:
         6a:f2:79:d6:59:ab:56:f6:19:f1:50:f8:b8:45:ed:7e:f0:1d:
         86:57:80:ae:c3:49:4f:62:63:dd:1f:e9:72:04:18:e9:6f:7a:
         03:07:f2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 01:59:38 2025 by rpki-client