Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
File:                     XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json)
Hash identifier:          I+lwUjSBL9u9Jfr57jQefi8z998kTI6K1PyThvUomLA=
Subject key identifier:   9C:68:A2:7A:A5:E1:56:AB:02:6B:6B:A5:EA:9C:B2:89:56:32:4F:41
Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8
Certificate issuer:       /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8
Certificate serial:       031A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
Manifest number:          0319
Signing time:             Sat 09 Aug 2025 01:41:28 +0000
Manifest this update:     Sat 09 Aug 2025 01:41:28 +0000
Manifest next update:     Sat 16 Aug 2025 01:41:28 +0000
Files and hashes:         1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: ir07c0wiO8ZEIvscCywA7zMAXk0nX2S7KCQ5OziELgQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl
                          rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 794 (0x31a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8
        Validity
            Not Before: Aug  9 01:41:28 2025 GMT
            Not After : Aug 16 01:41:28 2025 GMT
        Subject: CN=6896a748-1c42
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:5b:ee:a5:42:31:01:7e:51:65:87:96:28:cf:
                    6a:78:23:23:e4:a4:d9:33:df:38:63:51:ae:60:43:
                    d9:2e:b3:4d:a4:d3:2c:31:65:f7:0c:4e:39:c3:a6:
                    e4:80:5b:26:91:cd:d6:34:cd:16:cc:8d:bc:38:03:
                    16:87:52:d8:8c:ce:ea:89:f2:a4:99:0b:9e:9b:ab:
                    8a:72:d3:7d:8a:b9:b6:15:13:ad:32:cc:a2:16:1d:
                    b1:aa:50:5e:b5:3d:5e:b9:e3:f3:d4:cc:63:98:02:
                    1a:c9:27:1a:4f:d3:56:f8:20:28:62:eb:b2:ee:12:
                    9f:99:27:c9:1b:c5:75:16:90:92:be:a8:84:06:67:
                    5d:e4:87:7f:25:a8:39:92:4d:71:d2:56:05:fe:7a:
                    1d:63:8a:db:ad:67:3e:67:e9:71:24:9b:8c:35:cc:
                    f2:8f:50:17:19:4e:b1:d8:ad:09:2b:71:48:3f:8f:
                    d8:b0:d9:65:e5:10:16:c4:e8:64:41:8e:7c:0a:57:
                    af:c4:af:fb:76:86:eb:50:b8:f7:04:09:61:86:da:
                    79:73:7f:ad:c3:d8:e0:b7:1a:97:15:1c:ba:6f:18:
                    b1:8b:db:a4:a0:04:c8:83:76:5a:34:94:c7:5d:7a:
                    cf:27:e0:03:eb:19:c2:37:fe:3c:04:79:4d:59:21:
                    59:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:68:A2:7A:A5:E1:56:AB:02:6B:6B:A5:EA:9C:B2:89:56:32:4F:41
            X509v3 Authority Key Identifier:
                keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:3e:88:45:85:e0:bc:ae:21:b2:95:31:c2:5b:40:67:c6:09:
         a6:07:1e:bb:1d:6d:e6:59:ca:80:c1:0b:f2:23:c5:0a:80:c9:
         67:b2:b4:3c:d1:14:57:af:c9:d3:a0:65:ee:f0:e0:ff:53:48:
         ae:5e:47:d2:1e:c4:cc:fd:6d:41:37:a5:8d:bd:5a:91:7a:e5:
         b8:30:c7:e9:b0:a2:fb:df:c6:be:ff:91:a5:4f:63:37:34:24:
         b3:ca:1c:87:36:84:c4:33:de:28:f9:9c:95:6a:4e:64:04:76:
         f1:12:75:e2:1c:c6:96:26:a8:3d:fd:bf:c3:e9:a0:12:5a:40:
         cf:64:78:15:62:f1:f7:ef:29:cd:1b:2e:e0:a3:4e:8b:15:2c:
         65:8f:cc:9d:08:13:d1:12:59:f5:98:e9:63:5c:f4:48:1c:f0:
         0f:b7:e2:71:2c:44:ba:3d:ad:7f:a7:8b:68:bd:49:07:0f:7b:
         7a:1c:2b:40:25:16:bd:4b:1c:21:87:49:71:99:2d:66:c3:b1:
         cb:5d:59:df:f6:60:7d:37:96:07:d1:6f:96:15:d6:6c:a4:30:
         d9:e5:55:eb:d7:e3:d3:1d:7c:71:b7:03:d2:a0:5d:c4:ad:ca:
         02:30:28:67:50:24:d9:8e:ae:0d:28:e0:d4:f2:c7:8a:dc:7d:
         8d:c1:6d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:51:14 2025 by rpki-client