Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft
File:                     5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json)
Hash identifier:          ddqwiooIUenAQXb9QzCintTlBIfu3lmo6CFutVYAsxw=
Subject key identifier:   8A:39:14:34:68:AA:3E:53:8A:78:E6:13:A6:58:8B:A0:A4:EB:27:97
Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99
Certificate issuer:       /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999
Certificate serial:       57
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft
Manifest number:          55
Signing time:             Mon 11 Aug 2025 07:30:16 +0000
Manifest this update:     Mon 11 Aug 2025 07:30:15 +0000
Manifest next update:     Mon 18 Aug 2025 07:30:15 +0000
Files and hashes:         1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: dZUIYLbZHBhRJcqmtH7iAZgbQ0As9++vQNxttpI0DIA=)
                          2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl
                          rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 87 (0x57)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999
        Validity
            Not Before: Aug 11 07:30:15 2025 GMT
            Not After : Aug 18 07:30:15 2025 GMT
        Subject: CN=68999c07-1823
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:e4:10:28:3d:40:be:a6:49:10:cc:43:72:fe:
                    56:fe:b8:21:1a:f4:08:72:05:c7:9d:f3:45:7c:33:
                    1d:b7:4c:34:c3:20:48:f6:f6:ea:45:94:f3:8b:7f:
                    a5:c7:e2:b2:0e:71:19:73:e8:f7:44:a2:73:78:b6:
                    f3:86:30:0e:68:3f:21:27:ad:60:c8:15:78:03:9a:
                    fc:b6:66:e0:c1:e4:8e:7d:74:b1:89:c8:30:f4:99:
                    72:7e:53:a4:c2:66:ea:a3:4c:15:9a:c0:e1:3b:cb:
                    a7:9b:48:62:87:b6:6b:3b:e1:32:59:4d:b5:74:63:
                    fb:4f:1c:fa:d0:8a:74:84:21:c0:cb:98:23:40:a8:
                    bf:23:f4:e3:f9:52:72:3c:67:e6:ce:63:2a:be:ff:
                    38:ff:70:fe:bf:75:7e:6e:1a:a7:f8:79:7a:49:c2:
                    07:27:b6:e3:ab:49:2b:cb:e2:c0:ff:6b:91:56:5d:
                    c1:0f:47:ab:15:9d:74:37:9f:d9:fe:5a:88:ef:bb:
                    c4:dc:44:8c:da:62:12:e7:50:cb:e8:2c:49:05:d3:
                    93:b5:48:86:50:21:18:8b:c4:01:57:ab:5f:79:ea:
                    fc:56:60:b7:05:67:a1:8d:62:57:5e:74:51:d4:35:
                    1f:ba:cb:26:9f:a6:c0:c5:00:99:0e:56:d1:89:b4:
                    5b:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8A:39:14:34:68:AA:3E:53:8A:78:E6:13:A6:58:8B:A0:A4:EB:27:97
            X509v3 Authority Key Identifier:
                keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:25:59:a6:37:01:a4:0a:fa:e5:37:48:f4:c2:4e:00:21:93:
         f7:c5:6d:98:2a:09:a6:b0:a3:1f:e0:54:31:bc:a4:38:a5:16:
         fb:43:d3:e2:5d:dc:a3:81:7f:57:cf:6f:85:59:33:c3:b4:13:
         15:81:4e:e9:af:74:7b:95:e3:eb:02:7b:7c:41:c6:26:dc:c8:
         c3:ba:d5:26:df:66:23:51:fa:af:17:38:d6:27:ed:f2:5c:04:
         1c:6c:f7:a9:cb:e2:af:19:82:d0:a1:16:53:78:e6:32:45:33:
         68:02:91:07:69:f0:a6:4d:3f:c1:14:21:31:5b:fc:ff:7d:47:
         36:77:89:41:fc:05:0e:89:a8:9f:bb:ce:cc:f1:b9:aa:10:a8:
         1f:50:39:9e:43:88:79:0f:a7:f0:39:43:e1:59:29:b2:17:19:
         d0:22:91:76:d4:f4:c3:7a:07:23:3b:eb:ec:c3:f3:ca:0a:80:
         e2:25:83:37:3c:a4:88:df:ef:bb:b0:ca:7c:34:04:76:97:36:
         d3:58:a3:b9:26:a8:18:42:54:72:63:91:13:82:b5:5d:b9:3f:
         95:33:ac:1e:4f:bb:c6:9e:c5:90:5a:d6:eb:3b:fc:33:2e:6d:
         3c:85:55:86:86:c1:d1:67:b8:8c:5b:76:f0:2f:1a:83:fc:45:
         10:5c:91:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 09:02:48 2025 by rpki-client