Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft
File:                     cDaiAHf_h_76NADX-QdrfhmDiy4.mft (raw, json)
Hash identifier:          k2qqykC5SO8boFPOo8DukdK0/R9Azoa2z0sv+1Rt9X4=
Subject key identifier:   77:30:8B:27:F8:3E:67:1F:3F:B8:8A:5D:E6:D6:34:99:E0:05:1D:27
Authority key identifier: 70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E
Certificate issuer:       /CN=A913F124/serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E
Certificate serial:       0215
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft
Manifest number:          0211
Signing time:             Tue 05 Aug 2025 02:37:43 +0000
Manifest this update:     Tue 05 Aug 2025 02:37:42 +0000
Manifest next update:     Tue 12 Aug 2025 02:37:42 +0000
Files and hashes:         1: cDaiAHf_h_76NADX-QdrfhmDiy4.crl (hash: nUvgmwyMyew4pOUsRBIz89Jxra41rhDHrYApD/e1rQg=)
                          2: B13C376049EC11ED9EAEAC0CC4F9AE02.roa (hash: 3aaeEi1YrA3uSceTUOZGuJZHBHy8WbpEjF+B/7Isrys=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl
                          rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 02:37:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 533 (0x215)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913F124, serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E
        Validity
            Not Before: Aug  5 02:37:42 2025 GMT
            Not After : Aug 12 02:37:42 2025 GMT
        Subject: CN=68916e77-b301
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:ba:d4:18:51:91:c7:59:78:b4:bb:8b:ea:18:
                    ce:9c:16:97:69:37:c6:10:fd:de:7a:26:8f:6c:e5:
                    7b:1d:00:3b:e2:19:26:3a:bb:9f:82:7b:d8:98:4b:
                    44:25:49:42:1d:5b:8d:60:ba:16:fa:2c:da:54:da:
                    dc:2f:f7:d9:b3:03:ae:5f:2a:2e:8c:c3:7b:37:17:
                    be:58:79:00:25:54:72:fc:d5:52:17:22:00:50:ca:
                    43:ca:f1:15:8a:0e:ea:06:b7:18:8d:e6:05:f3:b3:
                    f5:5b:2d:0c:f6:b5:e4:98:f3:5a:68:30:33:ae:60:
                    4b:e2:29:37:6f:cf:1d:f6:02:be:6e:f7:d9:b7:87:
                    b9:78:2f:a3:10:80:48:19:6b:7b:04:b0:ca:4c:e4:
                    5c:b4:b3:09:b0:24:14:c5:a0:7e:fc:a1:c4:cd:49:
                    a5:e3:6e:a0:18:84:fb:ce:44:4f:81:0a:25:80:6b:
                    1c:93:9d:9c:ff:00:f3:26:97:b8:71:26:54:7c:af:
                    f4:61:a9:04:74:dd:64:a4:0a:b9:88:ac:9e:f2:4b:
                    5a:87:0f:e8:19:5a:ce:1a:e5:d2:50:1a:6e:7c:5d:
                    ae:55:9e:cd:13:d5:9a:9f:ae:5b:94:ad:7b:dc:7a:
                    01:80:f8:d4:58:11:48:60:d2:7e:e3:a7:03:f8:1f:
                    96:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:30:8B:27:F8:3E:67:1F:3F:B8:8A:5D:E6:D6:34:99:E0:05:1D:27
            X509v3 Authority Key Identifier:
                keyid:70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:d0:5d:d1:09:e2:96:33:26:e2:80:0f:12:6a:89:21:11:e7:
         64:3f:6d:50:31:b4:69:63:c6:01:0b:bc:e6:31:1f:4b:06:7d:
         86:85:8a:98:c3:7b:8a:5b:c7:a4:d6:3c:0b:d7:89:25:3b:02:
         36:d7:94:1a:c2:a7:ad:e1:87:c7:bf:25:d2:8a:37:f6:2a:54:
         63:86:c9:f4:de:96:e6:e2:20:fc:42:d8:f5:7b:7b:33:8a:4a:
         e6:bf:77:a2:a1:8e:e3:c4:38:1b:53:e1:ee:08:37:ce:bb:58:
         ea:96:95:7c:ec:1a:85:2a:c4:f1:ad:12:e7:a7:c0:c5:56:50:
         61:dd:cf:8e:e7:a8:36:68:73:34:43:49:4d:19:f0:f9:c6:d9:
         72:e8:c9:34:fe:69:c8:58:69:fd:af:a4:a5:2b:70:e2:11:0e:
         6e:a8:d6:6c:8c:29:41:72:24:c2:fa:3c:05:cf:53:fe:31:49:
         9b:ab:87:b8:1e:b4:ac:dd:11:79:2f:d6:ec:f2:16:c4:65:cd:
         4b:ec:9e:4c:d8:cd:02:0f:2a:92:c3:7d:e4:86:b2:7c:b0:14:
         9a:48:54:70:41:71:73:81:bc:7b:1b:3a:97:25:3c:e7:ab:2d:
         55:c8:05:3f:1f:85:a0:e8:48:60:c1:29:a9:96:d2:8e:96:f0:
         d4:13:1d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:17:17 2025 by rpki-client