Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft
File:                     utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json)
Hash identifier:          Kwv62Fe3eRqWeCC/ftZ5M+cwiTjBRiDshYTPPT39wBg=
Subject key identifier:   FC:FC:98:3A:B0:C8:4C:93:FA:1B:A7:23:8D:B1:46:B1:26:6B:F7:0B
Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A
Certificate issuer:       /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A
Certificate serial:       01F1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft
Manifest number:          01F1
Signing time:             Thu 03 Jul 2025 02:32:51 +0000
Manifest this update:     Thu 03 Jul 2025 02:32:50 +0000
Manifest next update:     Thu 10 Jul 2025 02:32:50 +0000
Files and hashes:         1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: oX6qs/l0yWwT1EvHyuY5yQ8UAEM0ab+DoJMj+LTtC7c=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl
                          rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 02:32:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 497 (0x1f1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A
        Validity
            Not Before: Jul  3 02:32:50 2025 GMT
            Not After : Jul 10 02:32:50 2025 GMT
        Subject: CN=6865ebd2-a59c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:1c:68:c2:d6:e7:38:38:07:6c:3a:61:f4:bf:
                    78:94:3a:c0:d8:51:fd:11:38:c8:57:18:88:83:5c:
                    e1:b1:f0:0a:e9:4b:58:02:52:99:28:75:7d:74:24:
                    e9:27:b5:5e:f7:91:da:83:6b:4e:5e:2a:55:8a:8e:
                    e2:69:54:4f:31:fd:cc:e0:67:35:84:eb:b1:e6:8c:
                    48:c9:80:91:9d:7b:3b:fe:50:69:0f:f7:ea:f4:07:
                    f1:ce:2e:13:4c:26:98:45:55:33:79:7c:9b:3d:a4:
                    36:ab:8c:9a:8c:5e:48:6a:c9:0e:2c:19:2f:d2:9c:
                    0c:72:f3:a4:7c:3d:13:e6:4f:57:64:10:75:fd:70:
                    34:8f:3f:cb:1b:11:48:a7:89:60:d7:55:ad:fc:15:
                    b9:c7:ae:e6:a1:00:2f:7f:85:cb:11:79:85:a2:d1:
                    21:62:7b:d7:06:ae:91:9a:f4:9f:a5:04:5e:fa:02:
                    ef:85:5d:ee:77:02:49:4b:2f:b1:45:8f:c4:c8:38:
                    d4:25:8f:80:06:71:00:c0:9e:56:34:ea:2f:e4:aa:
                    b0:14:0d:eb:09:b2:35:0f:6d:1e:b8:49:bd:8f:a5:
                    70:03:ca:06:5b:5f:41:53:ca:75:86:c4:fb:3b:91:
                    19:66:e8:f9:1d:8d:aa:9a:9b:8d:15:42:80:ba:f5:
                    68:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:FC:98:3A:B0:C8:4C:93:FA:1B:A7:23:8D:B1:46:B1:26:6B:F7:0B
            X509v3 Authority Key Identifier:
                keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c7:ee:71:00:63:74:ca:0a:25:a2:a1:dd:35:4b:a2:24:f1:0f:
         1b:c9:4b:68:93:59:d5:da:79:ef:5e:cc:3c:bc:23:f7:3a:99:
         05:88:be:19:02:de:d3:b5:f0:c6:3c:e9:2f:bb:44:f2:76:2a:
         98:9a:d6:77:c9:db:2c:56:dc:ff:3e:b4:70:a1:7c:d9:b7:97:
         01:02:b8:ad:3c:91:c4:eb:c5:e3:12:34:dd:4d:5e:86:b0:0c:
         cc:8e:8a:a9:d5:eb:ce:c3:0e:cb:3d:bd:c6:0f:58:28:7b:12:
         18:18:c0:be:b5:86:81:6a:dc:17:00:2b:42:60:d5:fd:4e:41:
         45:d9:e8:1d:19:a9:88:59:63:35:42:50:83:81:47:d2:e9:c3:
         f6:71:4d:61:c8:8f:67:e4:bf:c9:a6:f4:4f:62:a3:86:8a:d2:
         d5:25:50:0e:21:2f:f3:24:18:5c:d7:18:53:32:95:08:d1:c9:
         c6:4c:45:7a:93:6b:bb:a3:f8:57:7f:fe:b4:bb:c6:28:2e:a6:
         d4:79:ff:e4:ac:63:8a:c1:d4:10:96:b6:ad:16:ae:87:4e:a5:
         91:b2:66:06:7b:04:65:10:35:1d:15:7f:32:09:87:c1:42:81:
         06:cd:06:db:c5:6a:31:25:84:1e:be:55:b0:f6:86:70:59:bd:
         dd:8e:c6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 23:58:15 2025 by rpki-client