Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft
File:                     pYrazvnSRVOlVka1puvM6rGfL7w.mft (raw, json)
Hash identifier:          2c+K6+QL+UgBlMVBcf0LTOk+11vZBcTmtayu8HNh74w=
Subject key identifier:   47:40:20:76:B8:AE:DF:DC:DE:DB:29:8C:34:CB:46:8E:9C:00:3B:63
Authority key identifier: A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC
Certificate issuer:       /CN=A9174C7A/serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC
Certificate serial:       2C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft
Manifest number:          2B
Signing time:             Sat 23 Aug 2025 07:58:05 +0000
Manifest this update:     Sat 23 Aug 2025 07:58:05 +0000
Manifest next update:     Sat 30 Aug 2025 07:58:05 +0000
Files and hashes:         1: pYrazvnSRVOlVka1puvM6rGfL7w.crl (hash: VdAqfWMWpXnDyTV75xbT2d925rtzwC6LvKSF0Mo8XgI=)
                          2: 8D052914404911F0A4BD357BC4F9AE02.roa (hash: WkC734Z9YLqp46ED9zzrP9DX1ES2VdVVIimzvDKW6/8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl
                          rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Aug 2025 07:58:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 44 (0x2c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9174C7A, serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC
        Validity
            Not Before: Aug 23 07:58:05 2025 GMT
            Not After : Aug 30 07:58:05 2025 GMT
        Subject: CN=68a9748d-dea4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:93:7d:2b:cc:f3:a1:09:53:2d:31:cc:66:29:
                    6c:49:29:94:2a:73:9f:ed:c4:5c:9b:a8:50:9b:8f:
                    56:d2:ba:92:f3:73:78:61:74:0e:d3:49:b9:1a:7d:
                    a5:b7:22:21:c6:03:9c:09:fb:2c:82:4b:e0:3b:cb:
                    11:18:76:d8:9a:80:73:5a:b6:3a:9f:46:32:c1:cb:
                    bf:f6:43:7a:52:dd:0d:52:df:89:8b:f5:ea:69:a7:
                    01:42:2f:1c:58:4c:81:01:d3:b8:e0:59:87:34:b3:
                    3c:5d:3d:2d:e2:4e:0a:ee:fd:ac:a8:44:ad:5d:e0:
                    f2:45:c9:03:d9:f8:c0:27:2a:c4:2d:01:4e:08:df:
                    7d:92:12:d5:00:ba:d3:8f:c5:c9:7f:da:3a:ec:b5:
                    33:4a:eb:f8:8d:2e:b4:ae:de:18:55:c2:0c:df:0a:
                    58:92:26:1f:1a:e7:d4:e8:b1:1f:8f:b6:74:42:64:
                    d1:f2:7f:6a:17:41:a6:38:e6:e7:55:38:8f:9e:8a:
                    41:47:a1:4d:a8:42:f8:06:46:79:29:8d:72:84:b1:
                    04:f6:a3:7c:3f:d4:da:c6:c1:e7:c4:93:33:a4:ac:
                    6b:62:bf:84:12:d5:c9:10:84:1e:c3:e1:f7:ea:11:
                    71:f3:eb:99:97:9d:86:93:cb:64:fc:6e:34:83:8e:
                    45:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:40:20:76:B8:AE:DF:DC:DE:DB:29:8C:34:CB:46:8E:9C:00:3B:63
            X509v3 Authority Key Identifier:
                keyid:A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:a6:b1:4f:cd:7f:d3:94:5c:e6:74:e6:2c:5d:5c:76:5f:4b:
         71:16:35:44:4d:b2:43:41:85:ab:34:c3:61:97:2b:cd:ea:58:
         92:64:6b:5a:4d:f9:26:52:80:ec:3c:bf:d7:1f:5a:10:63:1d:
         32:8b:09:b0:a4:21:04:f5:c6:c4:83:2a:76:5e:83:4f:e6:d2:
         2b:88:89:58:71:a9:23:56:1e:b0:26:f4:7d:00:39:47:31:6c:
         bc:a4:4c:5b:73:1e:5e:06:1a:f4:db:0a:16:4d:62:b6:1c:45:
         1d:b3:5b:46:82:7e:4e:32:df:2c:a4:b3:58:44:41:fc:f4:b0:
         35:26:34:a7:e9:82:b1:9f:f1:a4:a3:51:a6:92:2a:85:23:35:
         44:58:b0:b3:f2:2f:bc:60:db:e7:3e:6b:0c:ef:94:64:f1:54:
         d3:a6:d2:da:25:e7:e9:65:f4:f5:d2:5e:87:d2:16:80:c9:11:
         0e:a4:5f:79:0c:98:d8:9f:70:79:b7:b3:a3:ec:b7:a5:9c:f3:
         26:c6:70:45:93:96:b0:f6:b4:a6:b8:6e:d6:02:2b:db:03:12:
         fa:f8:9b:e0:71:b7:99:5a:46:a6:02:32:dc:76:da:b8:2d:1b:
         c0:58:c8:8d:fa:c6:82:bf:1d:19:86:a4:c1:95:30:50:ad:d8:
         31:87:b8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:25:30 2025 by rpki-client