Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft
File:                     s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft (raw, json)
Hash identifier:          9UjlpM/IC1aibk3GJCI8JcWatYiPORa/AFMWlbPW/yo=
Subject key identifier:   7B:B2:1E:49:E5:07:BA:06:9F:23:C7:C3:E2:B2:08:9B:7A:02:E0:38
Authority key identifier: B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59
Certificate issuer:       /CN=A91EF17A/serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759
Certificate serial:       D2
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft
Manifest number:          C6
Signing time:             Thu 03 Jul 2025 06:07:33 +0000
Manifest this update:     Thu 03 Jul 2025 06:07:33 +0000
Manifest next update:     Thu 10 Jul 2025 06:07:33 +0000
Files and hashes:         1: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl (hash: 8FysuIOgfYQcESdYNIjvV6q10LZ1e2T2k4wp8cZ5fAU=)
                          2: B4F165084F1F11EFA3B1F709C4F9AE02.roa (hash: 6g7DJTli/YH5hSeeCwQn1OlBs7GZnC1wNbHw8krPxSQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl
                          rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 210 (0xd2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EF17A, serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759
        Validity
            Not Before: Jul  3 06:07:33 2025 GMT
            Not After : Jul 10 06:07:33 2025 GMT
        Subject: CN=68661e25-c9f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:27:05:c5:ae:e9:05:40:73:9a:cb:1b:ed:38:
                    6a:85:db:59:f6:50:f6:ae:10:a4:a1:a3:36:34:09:
                    b4:fd:a6:26:07:1d:a7:86:c5:a3:77:cd:46:a5:5d:
                    8a:90:4f:ad:4c:02:8f:7d:00:87:ef:f7:df:b4:82:
                    8b:cb:41:c0:b5:73:27:9e:fc:0d:d0:f6:3e:fb:ee:
                    85:74:62:65:56:2d:db:0b:3a:0b:c0:d9:37:df:00:
                    ce:2d:e8:f3:f6:7e:8b:c9:77:26:03:21:dc:79:86:
                    0a:1f:ca:00:b6:0d:28:1d:b1:a7:0b:bf:67:d6:65:
                    63:e1:53:bf:94:67:50:d9:06:f3:32:97:d6:a4:47:
                    74:5c:28:58:7e:d8:30:70:2f:64:8f:b8:9e:c1:11:
                    6b:f1:4f:b3:83:15:d6:37:cc:31:0f:7f:30:7e:fb:
                    ce:c8:73:df:33:6b:29:bc:c7:29:70:14:23:d2:a6:
                    3b:38:d0:92:2c:fa:31:b9:29:4e:ec:6c:be:c4:0b:
                    60:2c:3b:2e:3c:91:57:79:84:5e:8b:d9:27:da:e3:
                    ae:ca:d3:ed:4a:70:26:b9:42:e5:33:31:e4:4c:d5:
                    28:90:fd:ce:d7:c7:aa:44:4c:b4:33:64:73:df:01:
                    d3:24:ed:40:fa:eb:17:31:40:83:26:96:d0:23:b0:
                    2c:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:B2:1E:49:E5:07:BA:06:9F:23:C7:C3:E2:B2:08:9B:7A:02:E0:38
            X509v3 Authority Key Identifier:
                keyid:B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:af:62:98:a9:c7:27:e1:3f:7d:0e:3f:b9:15:b7:8b:ac:48:
         db:10:75:da:34:45:f7:c0:1a:e8:7e:d1:e6:8b:5a:0e:77:9c:
         8c:ba:e5:f9:39:1a:01:05:31:6a:18:fe:d3:31:1e:8f:2b:0b:
         ce:9f:47:09:b2:59:8d:fd:d1:32:ed:f4:d7:c2:ef:f6:78:2b:
         c9:0b:e7:0f:64:ce:59:66:aa:48:25:85:57:9a:db:5e:3e:00:
         bd:d5:7a:58:84:3c:03:b0:7a:10:68:16:04:17:3a:78:e5:ff:
         2c:e5:c7:d1:a2:c0:8b:72:3e:b8:fa:1b:90:ae:1c:df:42:1d:
         d9:76:ba:bc:55:e2:8c:d3:da:5e:f5:57:94:59:c6:da:4c:e2:
         6d:8e:ad:f8:ad:bf:ae:53:83:23:40:6a:7d:04:a2:f9:03:db:
         96:f9:7d:fc:4c:c7:ae:69:80:51:fc:70:76:a4:13:93:cf:d3:
         d1:e5:f4:c2:5f:95:c8:f9:9e:c9:b7:a7:b8:53:e6:48:7c:65:
         3b:c2:2a:22:a2:7f:ec:0e:7a:76:95:6f:9f:d2:06:f4:47:60:
         63:7c:99:f3:3e:75:b2:14:df:d0:a1:ce:92:23:80:4a:ce:b9:
         72:ba:ba:ae:3e:26:fc:d8:eb:0c:03:ff:cb:04:08:f9:da:cf:
         a8:7f:d4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 01:32:00 2025 by rpki-client