Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft
File:                     rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json)
Hash identifier:          pw3d8a6uGOQTWEJKOS4hgxlqgo1kUb6k851Ndk0TX00=
Subject key identifier:   39:38:C8:94:32:11:91:06:56:86:37:98:82:56:99:05:5D:17:45:7C
Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75
Certificate issuer:       /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75
Certificate serial:       87
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft
Manifest number:          84
Signing time:             Tue 05 Aug 2025 07:14:03 +0000
Manifest this update:     Tue 05 Aug 2025 07:14:02 +0000
Manifest next update:     Tue 12 Aug 2025 07:14:02 +0000
Files and hashes:         1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: H3Qk3O2cEAURBeAq0GF+3b+ZM864Q8Wpy5q98uQ/wAI=)
                          2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl
                          rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 07:14:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 135 (0x87)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75
        Validity
            Not Before: Aug  5 07:14:02 2025 GMT
            Not After : Aug 12 07:14:02 2025 GMT
        Subject: CN=6891af3a-f9e9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:b9:c1:72:8e:2c:0a:d9:a9:ad:bd:67:18:f2:
                    d8:71:fe:e4:db:62:9e:ad:a7:b6:4d:dd:f0:76:1e:
                    2a:fd:a1:f3:32:24:79:b3:3d:f2:82:31:e5:b7:39:
                    c8:af:98:80:80:f7:b8:a7:a1:d6:46:44:db:33:6f:
                    82:de:49:53:56:c7:60:5c:a8:16:26:9b:d5:b2:62:
                    b2:88:f8:19:4d:cc:d9:93:44:8f:68:de:13:0f:ff:
                    97:02:7b:97:f3:88:fb:39:48:bf:c1:99:52:82:92:
                    5f:95:ba:ea:38:82:90:1f:2a:fc:2a:89:de:cd:0a:
                    d6:20:e0:92:d3:31:63:a7:42:13:29:c8:15:26:6a:
                    81:89:fa:03:12:57:03:7e:14:94:b8:8d:c3:b8:b6:
                    ef:64:f4:23:e7:c5:03:15:40:c1:2d:44:9c:b6:7e:
                    ba:ec:6c:47:46:d7:3a:48:e1:37:8d:9f:4e:da:10:
                    65:c1:db:86:6d:60:df:52:35:99:56:aa:48:7e:3c:
                    13:18:9c:7c:48:8e:15:81:4d:38:8a:11:19:e4:03:
                    65:05:d5:07:e7:0a:56:41:b1:db:16:8e:36:6d:00:
                    6d:aa:03:b1:8e:af:04:05:5c:56:3d:de:15:68:cd:
                    ef:d7:d4:42:07:07:03:b4:b7:6a:99:bd:ef:af:0d:
                    a8:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:38:C8:94:32:11:91:06:56:86:37:98:82:56:99:05:5D:17:45:7C
            X509v3 Authority Key Identifier:
                keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:60:dc:fe:6b:f4:51:9c:f7:c8:ca:97:13:d4:e7:8e:6a:53:
         12:a5:73:fb:66:74:09:60:90:a7:32:1c:70:67:66:99:db:77:
         a4:5b:5a:b9:14:ad:4a:06:df:74:98:33:d3:51:e1:c9:37:41:
         92:4a:73:11:de:5e:b5:3b:64:ac:d3:72:fc:5b:e5:18:8d:04:
         58:22:b0:20:89:cb:ee:20:82:03:a0:0e:01:bb:90:1e:d4:8b:
         cb:5c:37:7d:ce:fa:f2:71:e7:68:73:ba:dc:95:7e:11:75:19:
         55:5e:9f:b5:c7:be:7e:3a:2f:21:1c:d0:fb:ab:f8:a9:79:a4:
         f5:b8:18:82:fb:5e:fa:02:5e:1a:65:5e:af:8c:57:cb:6f:aa:
         39:b8:9a:39:08:86:35:6d:5a:cf:ff:dd:df:36:29:8c:d5:99:
         fa:2a:af:d5:b0:5a:8d:c6:6a:8e:81:31:08:ec:db:b4:80:5f:
         d1:fb:5a:8a:55:2c:be:49:60:85:21:e5:f7:42:29:fc:1d:bf:
         22:82:7f:50:a9:60:9b:78:a5:dc:5e:d4:ff:60:ea:44:56:78:
         87:98:4c:45:c6:37:31:47:61:1e:4f:42:2a:62:8e:b6:22:76:
         99:d7:3c:ee:ef:0d:50:ab:53:23:6b:f2:2e:ad:c9:d7:80:d2:
         c6:eb:d8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:08:16 2025 by rpki-client