Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft
File:                     3IDIXlEBCJqyQl0_yRd5haASXG4.mft (raw, json)
Hash identifier:          nD5LyufRXECnIJ8zzlFvJqLZcDzRxfWI7V/dxJ7AdaE=
Subject key identifier:   1F:ED:B3:FA:00:03:65:10:EA:4F:70:EC:2E:5D:E6:1F:12:5D:0E:1F
Authority key identifier: DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E
Certificate issuer:       /CN=A91D74A6/serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E
Certificate serial:       7F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft
Manifest number:          77
Signing time:             Thu 07 Aug 2025 07:33:19 +0000
Manifest this update:     Thu 07 Aug 2025 07:33:18 +0000
Manifest next update:     Thu 14 Aug 2025 07:33:18 +0000
Files and hashes:         1: 3IDIXlEBCJqyQl0_yRd5haASXG4.crl (hash: JBZ5dhLO57NsoIOWHDtii3b/PPLCUKKSYPQtdSyn5nU=)
                          2: 727850D8D3EF11EFB596E00CC4F9AE02.roa (hash: hvte1LGzH8lQs5HlVIeT4otbezAzwXIr7d7vqIECmd8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl
                          rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 127 (0x7f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D74A6, serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E
        Validity
            Not Before: Aug  7 07:33:18 2025 GMT
            Not After : Aug 14 07:33:18 2025 GMT
        Subject: CN=689456be-2c66
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:d7:18:27:d8:81:dd:4b:e9:8c:93:18:3e:f7:
                    a2:6e:42:6f:bc:a2:51:80:07:10:ea:8c:10:8b:e6:
                    f2:fb:76:49:48:45:6c:8b:cc:57:c9:47:6a:64:f2:
                    ec:cb:3f:19:71:ee:d1:89:ff:bb:1c:a8:08:9a:8e:
                    a7:f3:04:da:9e:c6:d4:bb:af:1a:fd:4a:d0:2c:d2:
                    30:4d:01:3f:d2:51:28:6f:03:f0:16:4f:b9:6b:a9:
                    0f:0f:af:15:1a:0a:dd:dc:c5:15:90:b8:3d:37:bf:
                    5a:d9:b5:b2:d6:8e:79:74:b4:67:0e:a9:15:be:9d:
                    67:55:be:06:05:1c:62:91:ad:73:b8:57:d0:e9:49:
                    84:35:c0:53:7a:1f:f9:1e:7b:2f:8b:8f:16:3f:c6:
                    e9:ac:1a:10:93:f4:aa:4c:f6:48:ca:c6:d5:14:5e:
                    9f:9e:d7:bf:0b:27:f8:73:69:0a:19:87:4c:6b:9e:
                    29:c5:b8:6e:3e:98:06:a2:ea:e0:48:d2:a0:4f:92:
                    9c:dc:06:51:d5:64:0c:59:6d:f5:51:09:5a:5f:dd:
                    11:d5:e3:32:32:36:7e:9e:1c:cb:ab:c9:38:d8:fc:
                    15:24:cf:f2:a0:44:aa:ac:d8:f9:57:83:dd:91:ca:
                    08:ad:82:9e:bf:d1:f7:00:6c:29:5f:f0:d3:99:9f:
                    53:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:ED:B3:FA:00:03:65:10:EA:4F:70:EC:2E:5D:E6:1F:12:5D:0E:1F
            X509v3 Authority Key Identifier:
                keyid:DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:c7:c0:00:1c:ed:fb:71:77:8a:59:83:ea:03:51:3f:40:e9:
         54:da:8b:1b:d5:43:5d:ba:56:ec:52:dc:ff:25:6b:4a:33:74:
         e2:26:cd:b3:cd:f8:ed:52:3b:58:26:d6:bb:0c:ae:5c:37:fa:
         2d:cb:b1:45:99:80:22:bf:e0:b3:76:5a:ec:62:41:70:ff:65:
         d4:38:29:f4:4c:30:57:87:c1:05:4d:8f:f5:6b:ab:a7:87:c7:
         ae:83:3f:8f:d1:ed:c4:b3:67:98:f7:73:78:ee:67:fd:70:32:
         50:cf:e4:76:eb:21:82:75:14:3d:cf:58:d9:16:71:81:82:92:
         4a:13:91:49:c8:5a:ac:3e:fd:e2:5a:59:b8:1b:62:b2:9a:fd:
         ca:91:88:98:b7:ae:2e:d0:3b:2d:af:f5:40:56:1f:77:b8:15:
         fd:64:23:79:ce:26:b2:fe:93:65:d4:fa:a0:f8:f0:4e:2d:50:
         e7:cb:ae:e6:8e:af:49:87:88:2c:37:e5:31:ee:e4:33:be:7f:
         57:21:70:70:79:20:1a:73:8d:57:71:65:74:38:4c:85:cf:04:
         97:f7:f2:b4:e3:f3:15:fd:80:3e:9f:cc:77:31:77:67:d2:97:
         15:9c:d0:16:52:fe:f5:7e:ae:06:26:9c:6c:d4:10:9f:b6:4c:
         1c:52:65:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:08:11 2025 by rpki-client