Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
File:                     YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json)
Hash identifier:          xBjgkxo0WusOPp4SUy1JEhZpV2sJSucNxUS6H3AzubA=
Subject key identifier:   21:41:97:DD:4E:B5:57:C8:BA:28:CE:7A:F0:C4:D5:BF:5E:28:A2:BC
Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60
Certificate issuer:       /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460
Certificate serial:       04B4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
Manifest number:          04B2
Signing time:             Tue 05 Aug 2025 00:21:52 +0000
Manifest this update:     Tue 05 Aug 2025 00:21:51 +0000
Manifest next update:     Tue 12 Aug 2025 00:21:51 +0000
Files and hashes:         1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: jqutDtgfYCg1QSRGATClgXgpKyc6otCcWURStTsNpng=)
                          2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl
                          rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 00:21:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1204 (0x4b4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460
        Validity
            Not Before: Aug  5 00:21:51 2025 GMT
            Not After : Aug 12 00:21:51 2025 GMT
        Subject: CN=68914ea0-c519
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:e8:02:c5:bf:9b:5d:0a:3a:7f:ff:c3:fc:1a:
                    80:01:1b:53:ab:5c:12:cb:3d:0a:4a:2e:fd:b7:3d:
                    38:de:74:f6:fc:a7:0f:05:a1:fc:7b:79:7d:9d:04:
                    d2:e8:b7:c9:c6:75:81:86:43:96:35:f3:a2:3b:34:
                    ae:58:5a:0f:21:27:04:68:3a:df:56:fb:41:cb:a4:
                    8c:68:f4:d0:52:d7:cd:85:84:55:8c:cf:38:98:cb:
                    5e:fc:7d:b9:14:e0:5c:47:09:c5:55:45:42:6c:bd:
                    31:9b:c0:27:0f:9f:47:88:7a:30:a8:f1:bd:83:b8:
                    33:ac:7e:bd:d2:a4:fd:c8:88:6b:c9:46:6f:4a:04:
                    84:28:a5:fa:7f:52:95:1e:b5:b3:9e:fc:9c:31:1d:
                    6d:18:3f:36:2b:ab:94:72:02:52:5f:77:3f:c0:19:
                    bc:7b:09:8c:1c:2c:ad:50:a6:10:81:0a:54:a0:10:
                    82:dd:87:8c:7c:72:a5:34:d6:be:47:15:47:74:22:
                    35:d6:a3:2b:d2:24:67:cb:da:1d:39:24:fa:2a:cc:
                    c5:d5:51:53:9a:9f:23:10:56:a1:be:e1:ee:71:da:
                    19:d2:46:f8:d4:8a:33:7f:99:fb:97:df:d5:92:ee:
                    c1:c3:50:85:c7:e8:6d:42:59:ce:4a:90:f7:32:14:
                    ea:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:41:97:DD:4E:B5:57:C8:BA:28:CE:7A:F0:C4:D5:BF:5E:28:A2:BC
            X509v3 Authority Key Identifier:
                keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ca:b9:6c:fc:5b:6b:67:7c:ff:95:4c:8d:b1:66:da:0c:52:69:
         e9:4c:41:3a:57:5f:3c:a4:fd:3a:68:e1:88:b0:e1:71:db:a2:
         fd:fd:37:87:52:2e:80:ac:ed:e1:63:cc:0d:2f:c3:d3:0f:fe:
         6d:d2:aa:be:1c:6a:74:6e:5a:d9:87:7c:98:c3:26:89:09:0b:
         44:f5:82:f9:f1:e3:cf:a0:29:5c:de:2b:2d:b3:16:09:0b:82:
         c6:36:f7:ac:cf:dd:94:8d:90:96:4a:61:0f:ef:86:20:48:9d:
         3a:e5:cd:16:ce:78:b6:91:3d:72:21:fc:ea:87:54:89:1c:7b:
         58:f5:a3:53:af:fe:f4:3e:41:3c:ef:28:13:4a:2f:55:86:de:
         2d:41:82:b2:3e:38:21:27:36:2e:6e:e9:b0:ad:1f:18:65:d6:
         f2:76:0a:8c:5b:1c:19:d8:d8:1a:31:2c:7a:48:54:1f:28:3e:
         b9:28:29:ed:f6:81:99:8a:18:0e:dc:e4:89:60:32:a4:6f:55:
         1b:70:0a:cf:6d:4e:65:51:86:9d:6b:88:f9:73:ce:2e:18:d7:
         6b:cf:7e:8d:3f:14:ec:ab:4b:8c:82:36:8b:24:e9:96:66:b5:
         98:87:23:45:e0:46:40:c6:45:9d:2b:57:58:58:1e:b4:b1:53:
         cd:7f:02:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:14:26 2025 by rpki-client