Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft
File:                     Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json)
Hash identifier:          GQYcpGfK8JCrenzVLKABayAjCByYx7wzJ39UCPAsF6c=
Subject key identifier:   52:A7:6F:1D:15:AE:73:1D:E3:23:C3:3C:1A:F8:AC:D9:FB:26:26:AF
Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82
Certificate issuer:       /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282
Certificate serial:       075E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft
Manifest number:          074B
Signing time:             Fri 08 Aug 2025 22:08:43 +0000
Manifest this update:     Fri 08 Aug 2025 22:08:43 +0000
Manifest next update:     Fri 15 Aug 2025 22:08:42 +0000
Files and hashes:         1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: AMgDcVondX91UB5yzZ8dfyh+b4LJojde7A6MVT3NL6s=)
                          2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl
                          rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1886 (0x75e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D3834, serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282
        Validity
            Not Before: Aug  8 22:08:43 2025 GMT
            Not After : Aug 15 22:08:42 2025 GMT
        Subject: CN=6896756b-6608
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:30:ae:21:cc:50:7d:6c:7e:d5:a7:f3:7d:53:
                    e3:dd:18:0c:86:fd:ee:19:3d:31:88:66:e0:8e:6f:
                    19:20:d7:e6:6d:4c:90:c9:34:a2:e4:6f:13:72:79:
                    62:35:fa:38:de:31:b5:4d:72:30:da:a6:79:97:0f:
                    dc:3f:04:00:c9:0d:b5:66:43:b6:82:79:cb:aa:e8:
                    db:59:59:78:90:be:8a:38:b3:e8:ae:de:a1:db:07:
                    7a:ce:7b:d5:06:31:d3:7c:6f:5e:0c:b2:c2:5a:7f:
                    ce:03:60:f6:8d:f3:ef:14:89:30:12:d7:df:57:7d:
                    40:d0:96:ef:3f:a5:93:7b:32:83:7c:01:fa:6c:50:
                    fd:c2:05:61:e2:65:b1:da:df:c8:4a:6e:ab:51:a4:
                    2d:5a:63:9d:b6:69:4a:6f:1f:91:08:6b:62:2a:6e:
                    a0:7d:ec:02:59:4d:f8:1c:99:c5:f9:3b:cc:67:09:
                    6b:f2:c1:63:c4:34:03:12:f4:e5:9c:69:e7:39:0d:
                    68:be:64:62:4b:ed:3c:6c:eb:d0:19:2c:14:61:e7:
                    eb:21:62:59:32:f4:ea:4f:ec:eb:56:f4:27:01:60:
                    e3:c2:b1:92:3a:67:61:d6:e1:ee:a7:9d:f3:bb:ce:
                    4a:43:ce:f9:7e:60:6d:80:4d:70:98:60:02:c4:45:
                    32:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:A7:6F:1D:15:AE:73:1D:E3:23:C3:3C:1A:F8:AC:D9:FB:26:26:AF
            X509v3 Authority Key Identifier:
                keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ca:22:5c:5c:1d:4a:fa:4c:00:f7:1f:5f:e1:54:dd:1a:aa:8f:
         35:70:b0:14:93:cf:9a:ab:12:47:0a:4d:1b:06:c0:26:36:fa:
         22:67:50:03:a6:db:61:b4:81:06:92:0f:bb:96:fd:0e:96:04:
         68:8c:79:10:8c:02:67:29:92:33:1b:1e:e4:8a:9c:92:5f:19:
         b3:f7:0a:b7:d3:04:dd:20:3b:a9:31:50:cd:d8:25:fa:1e:7a:
         3f:b0:d7:11:e0:a5:b4:01:e5:5e:4c:13:ac:5e:f8:19:2f:6a:
         31:c2:58:c4:7a:d7:fa:84:9b:a7:16:82:6f:62:31:58:80:d6:
         f7:6e:8e:e8:c5:3d:a9:9d:d3:87:b3:f7:d8:f3:69:8a:c6:af:
         b7:3e:4c:94:ec:ee:d3:73:d9:7a:97:e3:f5:3f:b2:44:90:c3:
         ac:cc:7f:66:01:06:67:be:60:ea:58:87:81:b6:a9:e3:dc:1a:
         a3:46:e6:bf:97:85:00:da:a1:e5:81:bd:e0:ed:89:9e:26:b8:
         01:08:03:ec:82:49:4d:28:86:7a:40:fb:6f:d6:82:b9:1e:4a:
         ee:07:ab:37:82:36:11:aa:1e:f3:74:08:6c:5f:94:08:45:16:
         41:2b:6e:e5:85:d8:06:9b:d0:f0:43:cf:25:8e:d4:d5:ef:88:
         6f:f3:3f:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:06:02 2025 by rpki-client