Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft
File:                     1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json)
Hash identifier:          EjTlYigbduafm1+BakhlDsWMvY2C2EQryt5UsaIjp4s=
Subject key identifier:   7B:49:DE:95:1C:5F:29:13:6C:4A:B3:86:BA:98:7C:84:C4:1B:67:D6
Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19
Certificate issuer:       /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119
Certificate serial:       77
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft
Manifest number:          77
Signing time:             Thu 03 Jul 2025 07:00:42 +0000
Manifest this update:     Thu 03 Jul 2025 07:00:42 +0000
Manifest next update:     Thu 10 Jul 2025 07:00:42 +0000
Files and hashes:         1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: jpXC7ZpXvI+/Y6q/ioSLBaJbYwECyofSpxreyufpOZ8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl
                          rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 119 (0x77)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119
        Validity
            Not Before: Jul  3 07:00:42 2025 GMT
            Not After : Jul 10 07:00:42 2025 GMT
        Subject: CN=68662a9a-2e02
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:e6:12:5b:83:53:72:c9:a4:67:cb:1f:aa:95:
                    f5:9c:8d:01:b8:83:e8:fc:d8:0c:67:c9:83:0f:c0:
                    86:1f:f8:1c:3a:b2:2b:76:b6:67:a6:86:7f:f8:59:
                    88:4c:a0:e1:00:40:b2:50:72:44:13:31:b7:75:b2:
                    e5:51:b4:9a:86:3d:f9:b3:37:44:21:38:f8:a2:7e:
                    03:32:ba:33:c4:c9:ea:2a:c6:33:1e:f0:ae:99:07:
                    40:35:26:75:84:4f:56:d2:c1:29:dc:2f:23:8e:3c:
                    06:01:6d:28:e4:45:22:83:76:92:e8:4c:55:d0:2b:
                    60:68:48:10:00:1c:27:93:b8:18:62:34:3d:e7:c9:
                    fd:38:5d:1e:4e:94:72:11:78:4a:e6:33:53:de:ce:
                    e9:09:83:83:6e:e1:bb:70:fc:cb:ae:bb:13:5e:77:
                    0a:6e:01:24:72:eb:85:87:e7:ec:d9:04:d6:a2:f0:
                    c6:a2:fd:e3:8b:f0:cf:e2:c2:60:50:b9:c3:1e:13:
                    d5:60:60:9a:7d:d3:ee:09:94:06:3f:00:ce:3b:71:
                    09:f8:a6:7f:79:dd:c6:1f:46:16:5f:2d:3b:13:7c:
                    1f:ad:81:a2:c2:fc:e2:72:1f:e2:41:f1:dc:c4:72:
                    3b:a6:14:fe:e8:2f:8c:86:4b:69:97:25:78:30:52:
                    75:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:49:DE:95:1C:5F:29:13:6C:4A:B3:86:BA:98:7C:84:C4:1B:67:D6
            X509v3 Authority Key Identifier:
                keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:f5:b8:0b:76:f3:85:ef:5b:67:af:2a:93:8e:ee:13:80:15:
         35:16:88:33:c8:81:91:a5:ed:5e:9c:0e:f9:26:9b:49:e9:b7:
         f5:98:80:4f:f0:76:60:2a:a7:bf:f0:34:6d:46:dd:24:5a:0b:
         d0:b2:bb:05:ca:e3:92:15:3d:0c:e2:f3:74:8d:46:d1:9a:25:
         c5:90:e6:b4:27:f9:64:8c:c1:ad:e5:1f:67:09:99:1a:45:74:
         e8:aa:4c:0c:26:a5:66:61:33:14:38:2b:e6:9c:4f:71:b5:4c:
         a9:a3:40:c5:c3:f2:36:43:98:a7:d1:5c:ad:68:87:1e:ec:ac:
         e9:b6:e8:58:36:64:e2:8b:1a:62:7c:99:c4:c0:f3:bc:ba:54:
         69:f0:6c:92:d1:da:9c:9b:16:0a:e7:68:a0:f3:f2:94:78:c2:
         ad:a1:5e:09:c8:39:6a:af:aa:52:94:bf:de:f7:3b:48:5f:ab:
         8d:a4:9f:97:63:81:de:85:b0:8f:85:e1:f9:45:d2:18:01:8f:
         58:5d:11:bf:ee:e0:bc:a3:44:d1:db:a1:37:c1:87:cd:9a:33:
         c8:26:91:4e:c2:dd:5f:ab:2a:b3:7a:f7:be:86:ab:53:9f:34:
         a3:20:ab:6d:5e:70:c9:aa:05:a2:18:62:b6:7c:b1:c9:45:82:
         bf:c4:84:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:22:28 2025 by rpki-client