Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft
File:                     HT2u99J4g3Pt38sa1cTCNWxXre0.mft (raw, json)
Hash identifier:          3G2wW3O/mas5/kBbik78XmknRFHQyYqjQBnF3PyPhc0=
Subject key identifier:   B8:EA:8F:F7:FD:35:EE:A7:4D:EF:C6:D6:C9:E5:77:F7:BF:2D:BF:E8
Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED
Certificate issuer:       /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED
Certificate serial:       75
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft
Manifest number:          71
Signing time:             Sat 09 Aug 2025 07:23:38 +0000
Manifest this update:     Sat 09 Aug 2025 07:23:38 +0000
Manifest next update:     Sat 16 Aug 2025 07:23:38 +0000
Files and hashes:         1: HT2u99J4g3Pt38sa1cTCNWxXre0.crl (hash: LPJRvmHchPH99pjUwyRXlKhprsZ/Yb34ruAAhTls0CY=)
                          2: 8B349526E61B11EFA5CFAA1CC4F9AE02.roa (hash: ne8tUgudan5gCr0Fj4AbK9IugW5sTtsGHmdJgQPhqp8=)
                          3: A22E9E42CF3D11EFB2075D13C4F9AE02.roa (hash: vLRSLWwCPlw1XgMXqIwjNZRh5iifhLT67LBNrNkXRO0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl
                          rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 117 (0x75)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F0578, serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED
        Validity
            Not Before: Aug  9 07:23:38 2025 GMT
            Not After : Aug 16 07:23:38 2025 GMT
        Subject: CN=6896f77a-3d95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:4e:43:00:25:00:2c:57:21:f0:ef:52:d5:e7:
                    08:6b:43:1f:a6:62:ea:7d:13:eb:64:8c:35:61:55:
                    49:fa:30:78:93:1b:9c:ab:e6:82:ed:1c:f3:db:16:
                    e9:32:5a:b1:25:25:9b:82:a3:8c:d7:c1:0c:d8:6b:
                    ab:b7:63:9b:46:67:38:53:48:07:97:de:56:d8:93:
                    00:87:06:4d:d0:48:40:73:d7:fb:f2:1a:8b:29:61:
                    23:44:7f:12:90:81:59:c3:47:7e:38:61:4e:08:93:
                    60:15:4d:40:15:e5:bf:b4:27:26:f6:33:bd:d1:e4:
                    51:a8:b8:d7:1f:04:d3:96:5a:9c:a4:70:52:9f:a9:
                    4a:48:a0:1d:9b:01:f5:c6:5f:9a:45:b8:39:5e:60:
                    33:99:fb:e8:cd:bf:48:e3:4f:05:45:a4:04:23:9e:
                    2e:80:c6:0f:7a:06:0e:2e:1d:56:e2:f2:1b:b9:39:
                    a6:98:09:90:cf:72:e8:c6:06:ef:be:73:a8:3f:24:
                    3b:90:1f:b8:01:b7:37:75:be:1c:7a:55:dd:f8:94:
                    20:58:76:84:90:2f:c2:64:5f:e8:cd:f3:fc:a5:d3:
                    0d:ba:c4:e1:0d:be:63:03:75:3c:d9:e3:e6:91:b7:
                    65:b8:18:e1:57:a2:a4:f8:ed:7b:2f:a1:1e:34:1f:
                    d3:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:EA:8F:F7:FD:35:EE:A7:4D:EF:C6:D6:C9:E5:77:F7:BF:2D:BF:E8
            X509v3 Authority Key Identifier:
                keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:59:67:42:93:62:0b:17:8f:ed:e6:3b:71:d3:f3:a0:6d:fc:
         7a:b5:35:33:d6:a5:38:8c:f9:fd:02:6c:fe:c6:f7:96:7d:83:
         db:b6:3f:a7:2e:e6:fd:a5:bd:19:a0:7e:3d:be:e3:64:74:07:
         08:af:88:95:ca:d5:ac:c2:53:a5:ce:eb:64:e7:3e:66:e7:a1:
         ae:ad:dc:1b:a4:1d:1e:1d:17:5e:96:8d:0a:01:42:c2:12:26:
         9c:5c:94:ee:1e:d4:7f:97:77:04:ba:4f:e1:17:bd:c2:d4:26:
         52:1e:39:a3:a1:5a:6a:73:ed:d5:a9:11:d4:0a:23:34:c8:93:
         58:84:b1:2d:9b:80:ea:00:00:1d:d7:31:d4:1e:83:f5:f8:93:
         6a:7d:b9:11:0d:2e:cf:a1:1f:7f:eb:1d:3b:1f:84:59:aa:1b:
         0d:bf:f7:80:f0:68:cb:cd:16:0d:e3:df:9f:23:65:89:1a:ee:
         e0:dc:e2:20:dc:f5:6e:0c:8e:75:b9:d2:b9:d0:25:b7:b9:2e:
         00:fd:82:d9:1c:1e:49:e7:fe:b5:ca:c0:68:8d:7a:c7:76:ee:
         d3:9b:bf:7d:4d:3e:81:85:d0:e9:81:3f:5a:9c:29:a7:08:d8:
         6d:5c:4a:62:b3:0b:10:82:f1:22:da:2c:90:3e:58:28:d0:74:
         32:62:b9:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:09:00 2025 by rpki-client