Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft
File:                     ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json)
Hash identifier:          guyzcHE79PsVN86DP2rah++BBV8hKBu6d9o8GUK9Q9o=
Subject key identifier:   D1:9A:7E:F5:D4:E8:AC:89:F0:48:4B:8E:F8:31:D4:73:64:98:10:5F
Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35
Certificate issuer:       /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35
Certificate serial:       0633
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft
Manifest number:          062E
Signing time:             Mon 04 Aug 2025 23:09:33 +0000
Manifest this update:     Mon 04 Aug 2025 23:09:32 +0000
Manifest next update:     Mon 11 Aug 2025 23:09:32 +0000
Files and hashes:         1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: awYVJ0aV/SRyw3kkrBQHOCzIMl9tepkas/0zHVxlSAY=)
                          2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl
                          rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 23:09:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1587 (0x633)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35
        Validity
            Not Before: Aug  4 23:09:32 2025 GMT
            Not After : Aug 11 23:09:32 2025 GMT
        Subject: CN=68913dac-53e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:74:0e:ac:07:90:07:70:b1:ad:fb:2f:50:1a:
                    3d:12:c9:a5:a0:89:0c:a3:51:31:51:d0:bc:32:a8:
                    c0:a7:6f:ac:84:2f:ce:71:11:7f:aa:5d:93:0b:ed:
                    86:40:55:89:f1:3d:52:43:b7:3d:47:05:e2:1e:88:
                    71:74:ee:82:06:69:47:a0:1d:1b:56:20:32:e3:74:
                    17:68:f9:06:d1:ca:73:14:77:72:34:d0:90:0a:a1:
                    15:0c:b9:99:b2:a7:71:1a:09:27:ec:2e:e8:95:da:
                    0f:fa:fa:35:34:75:7e:70:57:fa:c1:99:20:4f:37:
                    29:2c:a0:6f:ae:60:8c:dc:11:1b:df:fe:ff:5e:e0:
                    e5:d4:30:2f:ad:d6:3f:13:7d:1a:60:c6:4a:08:c7:
                    93:d3:4d:b1:df:78:ea:55:f1:69:be:88:38:e8:f0:
                    a5:9e:94:7c:ec:b3:fd:e5:20:88:24:e4:2c:7e:ad:
                    b6:22:48:be:7c:32:ed:d8:38:48:41:35:cb:b6:40:
                    e6:78:a2:8c:e4:ef:e6:ff:ad:6e:9b:73:1f:b2:09:
                    3a:34:76:98:04:9f:3a:69:cf:84:49:23:13:af:17:
                    ec:5a:7d:98:8b:af:6d:bf:78:47:44:9f:6c:3e:a0:
                    ca:3d:bb:59:b7:34:a0:42:8f:b5:a9:2b:cf:c4:9a:
                    48:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:9A:7E:F5:D4:E8:AC:89:F0:48:4B:8E:F8:31:D4:73:64:98:10:5F
            X509v3 Authority Key Identifier:
                keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:82:1b:72:50:7c:15:80:cb:80:b2:1f:af:62:bb:38:d7:10:
         2b:79:c4:c7:4f:59:44:91:38:34:9f:49:86:7e:92:ff:a5:a4:
         65:54:72:f9:44:85:f8:36:a0:88:9b:c2:b2:f3:e7:42:1e:a7:
         fa:ad:2f:af:0b:60:50:e8:53:98:95:36:41:96:41:fc:b3:28:
         3c:ef:c3:36:cb:0c:16:f8:b1:a2:cd:9e:00:77:94:ca:bd:af:
         46:c1:ca:f6:c6:1c:fe:b6:57:c8:ac:51:dc:e7:5b:ff:53:74:
         b4:49:64:57:cd:3d:bf:0d:66:d6:8a:b6:18:94:40:59:80:fb:
         b0:7b:59:b6:f3:c3:1d:98:43:ed:05:da:63:d8:43:04:1c:21:
         df:c1:4d:b5:68:e4:39:9f:07:ef:f7:96:f2:fc:3e:a0:ba:80:
         e2:ff:4d:13:5d:6e:8e:d3:33:9c:61:0b:47:51:1a:21:f9:00:
         2c:a3:03:19:4a:52:13:18:38:46:32:9d:a2:1c:39:b3:0a:18:
         ab:55:de:ca:ea:38:3c:31:63:16:26:aa:4a:45:4a:39:47:97:
         7d:12:29:10:19:05:6a:89:52:d5:07:30:d5:43:e8:29:97:cf:
         36:29:f7:f6:d1:e6:1d:40:a5:f8:91:62:31:87:8c:50:36:d2:
         4a:b7:1e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:17:07 2025 by rpki-client