Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft
File:                     ldziG17K3rBp3IG5JAXUdN5BwgY.mft (raw, json)
Hash identifier:          GP17H6KW7noo4aI1FmemLdGUcw3By7clDy+T3xB7470=
Subject key identifier:   7F:29:E3:2C:8F:1D:AB:BC:BC:A4:5B:07:91:C3:9F:A9:1E:88:E3:0B
Authority key identifier: 95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06
Certificate issuer:       /CN=A91CD174/serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206
Certificate serial:       0C53
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft
Manifest number:          0C48
Signing time:             Fri 08 Aug 2025 18:47:01 +0000
Manifest this update:     Fri 08 Aug 2025 18:47:01 +0000
Manifest next update:     Fri 15 Aug 2025 18:47:01 +0000
Files and hashes:         1: ldziG17K3rBp3IG5JAXUdN5BwgY.crl (hash: ergielvDYkqLviV2DuHxZh3pD3Wwp491bA4dlOHT3pI=)
                          2: 54AD60AE0C2E11EABBBFA158C4F9AE02.roa (hash: /1zN6Gwwi0zP2Xs45slEdMpw3TT72EUNYyQ6n/qRBPQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl
                          rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3155 (0xc53)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CD174, serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206
        Validity
            Not Before: Aug  8 18:47:01 2025 GMT
            Not After : Aug 15 18:47:01 2025 GMT
        Subject: CN=68964625-d490
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:96:cc:09:04:bf:d0:b6:ed:55:84:de:2e:b9:
                    34:a6:b9:9b:ab:47:a5:d7:8b:da:dc:40:8a:be:89:
                    75:06:4d:6b:f4:2e:63:f3:ef:00:59:1d:17:42:cf:
                    eb:52:fd:85:f1:a2:01:ff:90:77:b7:79:8f:c4:36:
                    a1:9a:4c:b1:08:5e:13:2e:28:5f:c9:1b:44:bd:20:
                    05:ac:93:64:58:73:2a:bb:01:dd:61:4c:1f:99:bc:
                    65:2f:c5:27:a7:ea:a6:80:02:16:62:42:2d:88:95:
                    e8:ff:b6:bc:29:9d:85:17:95:47:27:5c:8f:30:48:
                    15:b4:61:a1:30:b8:4e:07:ac:d6:51:b4:19:ec:5d:
                    fb:e1:bd:7e:74:69:83:fe:a1:7a:4e:52:6a:07:6d:
                    de:07:c9:65:21:e6:71:7d:7a:23:00:97:2e:a2:03:
                    21:e9:be:23:d4:8d:50:5c:5c:19:6c:52:9f:a8:de:
                    97:47:84:74:74:bd:5a:c4:f1:c8:38:78:03:ee:a1:
                    37:2e:61:c5:af:ff:39:3a:30:d7:4e:f8:f1:b0:1b:
                    2d:54:49:62:c4:79:92:c6:fd:63:1c:37:4d:f6:8a:
                    1d:0a:b3:4d:11:09:10:52:1c:51:b8:64:f0:b2:2c:
                    62:4c:28:b2:dd:d0:a2:ac:35:ab:ca:17:23:43:1c:
                    c1:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:29:E3:2C:8F:1D:AB:BC:BC:A4:5B:07:91:C3:9F:A9:1E:88:E3:0B
            X509v3 Authority Key Identifier:
                keyid:95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:0b:ee:c5:06:f7:40:c8:96:85:89:97:46:43:3d:c2:38:2a:
         a0:65:1a:71:c1:cb:fc:04:8b:27:3e:bc:fa:54:fc:bf:62:33:
         fb:8b:ae:48:77:1a:2d:83:65:88:60:0e:35:24:bb:36:2f:28:
         34:25:f6:a4:75:aa:1f:30:4c:81:6e:24:19:31:63:52:8f:5a:
         e9:3a:f5:54:9a:66:43:c2:7d:39:74:f5:2f:b3:a6:a3:9c:25:
         26:8a:16:89:b6:88:82:ed:22:72:85:a9:28:0c:c5:82:ed:cf:
         2f:79:c9:54:a5:c6:60:c1:66:b1:e8:35:d7:c0:fe:d2:45:6e:
         9a:d3:fe:95:3d:51:9e:ab:4f:60:a5:7f:61:91:99:c4:50:23:
         75:62:ef:1c:cb:01:ea:eb:f0:98:d1:46:f0:ce:cf:ea:ba:f5:
         b5:22:ae:0c:54:74:63:de:8b:7a:73:73:12:fb:59:83:24:e2:
         1d:4f:39:e3:f8:14:02:91:f0:24:21:dc:db:b8:66:44:a7:73:
         ed:f5:d7:d1:b2:d7:fb:4a:f7:dd:1b:c4:dc:64:63:86:7f:74:
         c5:82:e5:69:af:a3:a5:4b:ef:89:9a:89:95:a1:48:e6:7c:c2:
         6f:a8:3f:5d:36:9b:cc:9c:71:ed:c0:51:c4:4e:08:2e:7b:16:
         00:23:07:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:24:04 2025 by rpki-client