Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft
File:                     1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json)
Hash identifier:          ufjcITWSkguUQqsV+3fpvMdfP+CdJnEepq7rDGRdyrM=
Subject key identifier:   45:EC:52:75:EB:74:03:E6:0F:57:FA:A9:CF:60:4C:63:79:1B:D4:91
Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19
Certificate issuer:       /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119
Certificate serial:       8A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft
Manifest number:          8A
Signing time:             Sat 09 Aug 2025 07:01:04 +0000
Manifest this update:     Sat 09 Aug 2025 07:01:04 +0000
Manifest next update:     Sat 16 Aug 2025 07:01:04 +0000
Files and hashes:         1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: qhWiG+ra5WpC1IXfu/0pSCOSNhLbjx9Qt5S9HILP5vM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl
                          rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 138 (0x8a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119
        Validity
            Not Before: Aug  9 07:01:04 2025 GMT
            Not After : Aug 16 07:01:04 2025 GMT
        Subject: CN=6896f230-95ef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:5a:07:fe:24:10:ae:94:5e:b6:d1:d1:ea:4d:
                    25:64:db:49:23:cf:af:92:32:d5:b8:0e:3e:57:88:
                    a7:47:12:eb:e0:f7:a6:04:f5:d6:bd:fd:21:da:1e:
                    c2:5d:44:f8:46:82:44:bf:d4:00:30:64:6f:24:82:
                    e2:7f:1f:8a:0b:d1:6b:84:77:eb:ce:53:95:08:8b:
                    68:a3:e2:b6:78:9f:95:ed:8e:87:98:ab:5c:12:60:
                    d0:69:79:b5:27:cc:92:10:ba:b1:a2:1f:d1:5d:2d:
                    5e:ae:d5:c3:43:fc:82:b9:05:27:91:70:61:33:76:
                    8d:b6:2e:19:40:c5:27:54:1f:02:63:96:5c:c6:e5:
                    64:ae:ee:2a:d5:f9:b0:3a:a4:2a:31:7f:93:7b:a8:
                    5b:37:ab:60:0b:30:ba:c0:fa:56:8f:81:19:df:6f:
                    46:66:c8:6b:ea:c7:40:69:68:92:3f:5d:ca:e5:e1:
                    6f:c2:24:8f:04:5b:e1:68:82:0a:63:61:88:7b:7c:
                    77:a2:ed:c6:1b:2e:37:d0:2d:1b:8e:8d:7b:0b:e4:
                    42:a0:0f:95:5a:c0:af:57:52:65:8f:3f:80:bf:0e:
                    7d:74:55:5e:b7:da:f4:2b:85:dc:c6:e1:c4:4d:20:
                    c0:ad:3a:a2:a0:8b:60:b1:ca:6e:b7:2e:ce:c6:74:
                    16:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:EC:52:75:EB:74:03:E6:0F:57:FA:A9:CF:60:4C:63:79:1B:D4:91
            X509v3 Authority Key Identifier:
                keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:c7:2f:0d:e6:f6:16:c1:98:a0:69:49:54:01:d4:bf:f8:06:
         f7:f0:87:cf:7f:76:91:e7:6e:ad:17:d2:69:fc:94:2a:0b:16:
         29:81:29:79:63:08:c0:67:86:02:43:60:53:0f:b7:e5:1b:8a:
         7b:7e:e4:4d:e1:08:58:cb:a4:2d:b2:9c:e3:77:9a:62:34:34:
         54:68:d8:d1:43:0a:83:02:9c:68:04:2b:90:47:e5:58:40:73:
         3c:5c:bc:a1:7c:eb:14:ee:4e:68:7c:72:e2:cf:b0:64:67:e1:
         e6:2c:79:6a:93:4b:c1:3c:f1:5b:dd:0f:58:c5:63:f6:f8:a8:
         ec:1a:ff:5c:aa:89:37:63:9e:e5:e1:81:44:f0:ba:da:2c:ea:
         14:54:a0:af:f3:56:fe:77:58:c4:83:29:07:e9:bf:68:ac:3c:
         9c:bc:60:6a:04:02:55:d1:9b:ac:2c:26:7d:83:22:2b:76:8f:
         44:c5:f4:8a:43:af:00:3f:f5:e8:a7:d9:f4:54:3e:c7:e8:a7:
         77:8f:f6:33:a1:c4:54:79:38:e2:21:69:f3:c9:26:0b:1d:88:
         f9:9f:56:80:84:40:e1:6d:51:3d:63:23:c5:ff:c3:61:35:52:
         f7:b3:b6:1f:fb:ee:1b:cf:6e:50:39:cd:30:b6:f0:13:fb:0b:
         e7:4e:9f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:06:20 2025 by rpki-client