Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft
File:                     uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft (raw, json)
Hash identifier:          c4I5zTqxmTVII4c6FyY19yEwXliWFJlpClsfiHtp/3o=
Subject key identifier:   A0:99:72:0F:BE:67:E1:E5:62:A5:25:6B:8B:CF:BD:31:2E:D3:8D:D7
Authority key identifier: BB:30:07:8C:F6:87:78:7D:3A:5B:3E:53:4C:08:97:16:A8:6B:13:BB
Certificate issuer:       /CN=A9113217/serialNumber=BB30078CF687787D3A5B3E534C089716A86B13BB
Certificate serial:       0177
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft
Manifest number:          0174
Signing time:             Thu 03 Jul 2025 03:52:57 +0000
Manifest this update:     Thu 03 Jul 2025 03:52:56 +0000
Manifest next update:     Thu 10 Jul 2025 03:52:56 +0000
Files and hashes:         1: uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl (hash: Ezt+jBixoBmUNthQjYCMKNPZdjTwzcvTiynX2bdkS/o=)
                          2: 859871F2215D11EE963E9A52C4F9AE02.roa (hash: HHHOwt/fdM7W7+F6fEKQDH5IL/vBD99o4H9HkpME2xk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl
                          rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 375 (0x177)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9113217, serialNumber=BB30078CF687787D3A5B3E534C089716A86B13BB
        Validity
            Not Before: Jul  3 03:52:56 2025 GMT
            Not After : Jul 10 03:52:56 2025 GMT
        Subject: CN=6865fe99-f1f1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:8f:13:50:79:2e:84:88:e3:80:0e:42:d0:8e:
                    50:2d:3b:95:d4:62:48:3c:b2:f1:11:4c:41:dd:a8:
                    ce:61:c4:22:a2:10:09:bc:1b:ce:c7:6f:75:54:51:
                    05:04:b2:c2:75:25:9c:27:9c:7f:e5:b0:c8:80:9a:
                    80:3c:37:98:f3:0e:6e:52:28:98:a8:fb:54:a3:57:
                    f2:17:ab:9e:aa:93:e1:d9:3b:99:53:f8:27:e9:89:
                    74:ca:0c:c7:e9:d7:b2:b1:5b:51:38:3e:a2:e0:75:
                    d4:1c:95:da:ee:ad:52:45:1d:84:6a:be:bd:d9:01:
                    a0:02:43:be:dc:0b:0a:79:21:61:09:2a:dc:1e:0a:
                    1c:c1:b8:90:2b:e0:03:cc:bc:29:2f:0d:21:97:b6:
                    1d:45:76:67:ab:ae:f4:25:fa:4d:f6:fc:50:15:0c:
                    d0:dc:5f:5e:ae:c3:b7:f2:04:69:6f:6b:bd:82:ed:
                    61:81:96:c3:08:5c:bb:93:9e:58:87:a9:dc:5a:f4:
                    44:94:f9:f1:0e:ab:d9:99:69:3d:06:0b:33:9c:31:
                    30:38:aa:de:87:ae:c9:7c:3c:bf:c9:82:dc:9b:c4:
                    f0:45:70:1d:3c:e4:7f:a1:55:06:bf:8b:03:b7:d6:
                    c6:77:8f:b9:16:6d:30:18:09:bc:7f:f2:8b:61:07:
                    86:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:99:72:0F:BE:67:E1:E5:62:A5:25:6B:8B:CF:BD:31:2E:D3:8D:D7
            X509v3 Authority Key Identifier:
                keyid:BB:30:07:8C:F6:87:78:7D:3A:5B:3E:53:4C:08:97:16:A8:6B:13:BB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:ac:c4:ea:45:dc:90:cc:9e:34:b8:de:71:64:88:c8:8c:dc:
         4a:24:b9:81:59:76:14:5e:53:b0:68:60:93:c6:80:95:e1:ec:
         81:26:bd:a0:b3:03:59:15:e3:8b:3c:d3:0a:aa:a0:b9:e7:3a:
         75:f9:f7:ae:ef:2e:fd:8c:db:f6:39:5a:e4:2a:65:32:8a:9f:
         ba:14:37:18:ce:e9:1a:8e:9f:28:9c:7f:c3:b3:e6:9e:86:9a:
         70:88:7b:9f:00:7c:1b:9c:7a:8a:c2:6c:6c:f1:eb:49:7f:11:
         ec:46:25:88:89:2b:d1:e3:72:04:4f:7e:b3:94:b0:56:0b:bb:
         de:46:6e:a7:6e:44:38:57:1c:aa:13:af:12:f1:ce:b0:06:93:
         68:92:e4:5e:e5:c7:06:02:02:80:ce:73:4e:9a:65:18:4f:74:
         06:de:dc:49:62:26:12:3f:71:36:18:2f:e3:5d:18:01:61:72:
         80:be:50:ff:56:c2:52:fb:9a:50:12:4c:f8:09:66:87:41:f4:
         8d:f5:13:e7:b1:d1:05:9c:a0:d1:3e:81:67:88:7b:2f:5a:3f:
         8e:6b:65:0c:22:3d:24:e2:5f:b7:b6:56:19:51:1d:98:1c:8d:
         c9:db:67:24:26:68:56:bc:99:12:50:13:21:a9:1d:af:93:3e:
         ce:aa:94:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 14:57:39 2025 by rpki-client