Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft
File:                     VAR9J873NG9Bde-sc0SUrbsFe1U.mft (raw, json)
Hash identifier:          P2IIIgzBv3gV6nwQp/GHy3wOnPde1VD56Gn2d5mX/I8=
Subject key identifier:   2D:15:DB:99:F9:01:80:F0:83:BF:70:E9:3F:71:73:0B:B1:F5:84:00
Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55
Certificate issuer:       /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55
Certificate serial:       09D6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft
Manifest number:          09CF
Signing time:             Wed 02 Jul 2025 20:12:06 +0000
Manifest this update:     Wed 02 Jul 2025 20:12:05 +0000
Manifest next update:     Wed 09 Jul 2025 20:12:05 +0000
Files and hashes:         1: VAR9J873NG9Bde-sc0SUrbsFe1U.crl (hash: wveTuMzu327o3dBmg8EIDOzEom4/QdtNpyZrL2VddEg=)
                          2: 3492D2F083BA11EA8728F076C4F9AE02.roa (hash: KDJ+ohVUY2aGK5rtHUQLiPRKWsZuV9h/W6r/Y+qQ0VM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl
                          rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 09 Jul 2025 20:12:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2518 (0x9d6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91127C1, serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55
        Validity
            Not Before: Jul  2 20:12:05 2025 GMT
            Not After : Jul  9 20:12:05 2025 GMT
        Subject: CN=68659295-43d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:84:6a:cb:7c:d3:5c:f1:c4:51:d4:1b:89:e6:
                    e6:29:b2:7b:37:a6:1e:c1:92:fb:41:8e:50:fa:54:
                    81:78:6b:e1:51:e1:65:54:0f:7d:90:6c:1d:a6:07:
                    58:5a:7f:69:d3:a0:4f:e6:0b:61:9d:3d:04:bb:0e:
                    8f:13:a0:85:7e:ea:99:70:10:37:f9:1f:ee:cd:b5:
                    82:03:35:40:4c:ce:0c:1d:7f:2a:4c:cc:35:96:b7:
                    43:2c:be:85:39:b9:d4:d6:c9:31:af:1d:45:a7:ba:
                    5f:85:e8:55:b1:e4:6b:1b:90:f3:ca:e2:61:8a:af:
                    8e:55:ad:2b:3d:ee:6a:68:68:df:12:b5:9c:46:c4:
                    59:d3:cb:2e:f1:c2:3b:61:23:61:6e:43:b9:f3:ef:
                    7c:22:e2:68:9f:1c:74:de:d5:ca:65:be:c4:30:a2:
                    55:ac:44:ac:13:af:90:79:71:b1:a1:14:9a:12:3a:
                    0d:a3:9c:ed:24:8b:9b:3f:6a:fc:64:0e:3c:7d:e9:
                    a4:9d:07:36:1c:2b:6a:6b:76:02:c9:e7:af:cf:d8:
                    08:91:24:6c:5e:7d:02:a8:e2:19:1f:ef:5c:f9:e1:
                    8b:a4:e5:27:f3:a4:09:7a:ae:ac:77:1b:7d:fe:97:
                    cd:75:d1:2d:74:71:67:0e:ed:e3:40:ae:89:2c:e7:
                    8e:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:15:DB:99:F9:01:80:F0:83:BF:70:E9:3F:71:73:0B:B1:F5:84:00
            X509v3 Authority Key Identifier:
                keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:3a:70:21:64:6f:03:2a:63:cd:54:8e:0a:f0:ec:5e:f4:25:
         eb:34:05:41:f7:ba:58:1a:9d:0b:50:27:a3:b6:ee:39:2d:e9:
         23:1d:5a:cd:79:c7:ce:19:b7:0e:6b:10:17:86:e8:ab:f9:e4:
         28:b2:49:3a:61:13:20:7e:81:9f:a5:1f:ab:14:03:9b:45:2e:
         7d:9f:a3:b9:61:5c:b3:ec:1f:5a:46:26:cb:5e:a6:4f:eb:2d:
         0d:e6:c3:98:a1:dc:b0:81:c8:8e:4d:25:b6:0e:3c:be:5d:a4:
         f5:16:f1:84:e7:c0:90:11:7c:63:65:38:22:69:a2:26:67:5f:
         e8:6f:bb:ee:54:47:4e:11:d4:67:96:72:0a:a3:7e:14:2d:f5:
         50:c4:b9:ec:14:56:44:d0:81:8c:c3:00:f3:7b:a3:15:ca:87:
         db:98:cf:c9:f9:37:46:5b:db:bd:1d:77:ca:ef:74:cb:3e:cf:
         3a:c6:40:9d:a0:e4:b5:35:dd:7b:43:84:0c:ff:62:44:eb:ab:
         29:73:68:48:19:93:dc:9d:90:cd:01:56:c7:30:63:97:24:6b:
         fd:99:0a:e5:77:70:01:9f:be:07:46:7a:71:0f:2a:7e:d9:90:
         22:c2:dc:32:5b:22:77:bd:33:d7:1f:c0:43:df:ba:13:36:e5:
         76:d5:72:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 17:59:43 2025 by rpki-client