Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft
File:                     1m4Cgid2-1UUPQyeVJAyhlal4I0.mft (raw, json)
Hash identifier:          FkxTdn/ra+Pep2MB8mxY1fRSKEty4bu7ZtTHpZZDtWE=
Subject key identifier:   94:D2:1B:3A:A8:AD:35:73:F6:7D:85:4C:4C:66:3B:08:A6:BF:99:D2
Authority key identifier: D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D
Certificate issuer:       /CN=A9123180/serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D
Certificate serial:       0C61
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft
Manifest number:          0C59
Signing time:             Fri 08 Aug 2025 18:42:27 +0000
Manifest this update:     Fri 08 Aug 2025 18:42:27 +0000
Manifest next update:     Fri 15 Aug 2025 18:42:27 +0000
Files and hashes:         1: 1m4Cgid2-1UUPQyeVJAyhlal4I0.crl (hash: 3LCCgoX/2rXbq0YMfejmfDBliL17YJEnaj0/MNHFNUQ=)
                          2: 0EE3438A07FC11EABAD90A47C4F9AE02.roa (hash: o6uzXxi45nuYDCicVYaDwUO/XE7Lp0WVGghWkgO8ZII=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl
                          rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3169 (0xc61)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9123180, serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D
        Validity
            Not Before: Aug  8 18:42:27 2025 GMT
            Not After : Aug 15 18:42:27 2025 GMT
        Subject: CN=68964513-24b5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:d5:c8:2a:d5:fa:bb:aa:96:3c:2e:88:8c:09:
                    d0:66:c3:f8:2d:71:a2:44:34:76:40:38:e3:c3:81:
                    42:49:46:1e:00:a0:cc:3e:cb:55:53:dc:36:46:d7:
                    1d:66:8e:c0:42:57:72:27:ca:ca:aa:d5:36:01:b5:
                    0f:7b:dd:53:4e:c6:d2:73:33:63:28:bd:90:39:e6:
                    a5:a0:76:47:59:e4:6d:38:71:5d:e0:31:90:52:f8:
                    b9:13:ca:e4:ce:47:ba:ac:5a:53:c8:7f:4d:86:7d:
                    51:59:86:c3:56:03:7d:db:6e:ba:ae:2a:27:60:6a:
                    cc:f1:f4:22:4f:cf:79:e9:db:15:c5:96:76:5f:31:
                    0e:ff:16:ab:44:53:da:9e:b1:85:5f:dd:d1:4c:76:
                    ff:5d:f1:69:18:cf:83:93:e4:71:ce:c3:cd:78:aa:
                    de:26:82:6d:64:48:dd:a1:4c:62:a4:55:92:cc:f6:
                    de:04:2a:b6:4f:77:60:ab:4d:87:66:db:71:81:14:
                    1b:0f:b0:b3:08:79:56:c8:f9:2f:5f:5c:74:ec:bd:
                    f5:6c:5a:a7:09:7f:3c:e8:b3:7c:41:bd:97:12:08:
                    03:b9:28:8e:52:b2:26:26:f6:ac:e8:75:01:38:df:
                    45:46:42:70:ad:45:58:d3:09:dd:4d:06:e3:b6:ad:
                    7e:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:D2:1B:3A:A8:AD:35:73:F6:7D:85:4C:4C:66:3B:08:A6:BF:99:D2
            X509v3 Authority Key Identifier:
                keyid:D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:7c:92:b1:7e:51:dd:35:76:ea:c8:ef:98:fc:80:fc:c3:42:
         a8:8e:a9:e9:6f:e4:05:e9:c7:ab:95:ba:66:2c:0c:5a:1c:ca:
         a4:31:f7:a5:45:33:58:a2:d6:92:42:e8:8e:26:41:5d:eb:be:
         cc:78:e1:1e:23:99:07:37:46:87:44:18:ae:a1:97:18:2f:77:
         14:6d:1b:43:20:67:94:a9:e7:e0:f2:26:04:e4:a7:9b:66:a4:
         d7:84:19:63:cd:60:e2:e5:c5:d3:c4:1c:d2:09:d0:8d:08:0d:
         1f:90:a7:d1:81:f7:27:99:7f:33:a0:a9:cf:64:d2:b6:3d:e2:
         af:ee:2f:28:60:08:39:97:5d:11:00:46:1e:92:44:cb:f3:2b:
         4d:69:d2:2e:96:63:8f:cf:02:4b:7f:a5:ba:1f:97:98:6a:02:
         8a:13:f0:47:29:26:c6:e8:af:de:ad:1b:f6:ba:01:fb:7c:1f:
         1a:9d:83:78:55:10:42:9f:24:f0:15:1c:ce:d7:29:3f:1d:5a:
         f5:ac:7b:5b:88:47:57:89:4a:70:2a:3f:fa:06:0e:42:95:14:
         83:2f:8a:c9:d1:96:e7:de:be:7f:69:4b:eb:82:6b:0c:4f:df:
         95:fc:ec:22:f7:69:bb:40:21:70:33:06:05:0b:1d:ba:26:e9:
         7d:90:83:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:04:32 2025 by rpki-client