Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft
File:                     nIFHHxiq7s35RafJF_2KiYXXw6w.mft (raw, json)
Hash identifier:          8mDb1XKbLpZcs2U7a5vwoYZXLtPfXPAG/mc16wzliN8=
Subject key identifier:   7B:EB:21:CB:4A:8A:3A:2C:0F:F7:6F:F3:00:F5:AF:04:5D:65:01:4E
Authority key identifier: 9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC
Certificate issuer:       /CN=A914C33A/serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC
Certificate serial:       2AB7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft
Manifest number:          2A79
Signing time:             Fri 22 Aug 2025 15:37:00 +0000
Manifest this update:     Fri 22 Aug 2025 15:37:00 +0000
Manifest next update:     Fri 29 Aug 2025 15:37:00 +0000
Files and hashes:         1: nIFHHxiq7s35RafJF_2KiYXXw6w.crl (hash: lFekIuF0EUHlNJPI7GE0/I6xtAu8m4vLpfvplr4KjKM=)
                          2: FB405D86900E11EAA43BB21FC4F9AE02.roa (hash: xBHGq+I+gC6mBEO7iAqcoK3D8WpSvv5eSxXQn/j0Q60=)
                          3: 3118E43E966B11EAAA23047CC4F9AE02.roa (hash: gq6V0/TIcAAKvh2pY9bQTg3IwnYpN56MDdlGTWJZ3cM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl
                          rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Aug 2025 15:36:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10935 (0x2ab7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914C33A, serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC
        Validity
            Not Before: Aug 22 15:37:00 2025 GMT
            Not After : Aug 29 15:37:00 2025 GMT
        Subject: CN=68a88e9c-9ae0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:66:ad:13:14:f1:6c:11:d4:83:ae:ea:ea:75:
                    8c:0c:5b:09:ee:9c:3b:30:91:6b:22:cd:10:9f:e7:
                    0c:c3:9a:77:79:9e:ab:63:bc:4c:90:fc:f2:4b:d7:
                    5e:af:41:4b:de:e4:13:b6:fe:ad:40:3b:33:b8:14:
                    83:d5:e2:88:92:95:68:18:39:83:27:65:fd:f5:78:
                    27:a1:72:f9:65:12:60:00:8a:dc:5b:ab:a1:8d:f8:
                    ba:63:e5:5f:70:ac:29:23:4b:d9:28:a4:8f:7c:18:
                    8d:ef:23:ad:14:7e:d0:22:4b:34:2d:f8:7a:b3:6c:
                    8b:40:a6:cd:38:1b:69:25:d0:62:05:a7:da:03:b4:
                    52:83:70:3f:e8:94:2c:0d:88:87:7c:03:a7:ad:79:
                    50:5a:4d:17:1c:f0:5c:78:29:9f:c8:bd:26:eb:29:
                    71:ce:25:d6:52:7a:52:61:bb:60:ce:0b:29:3f:e8:
                    66:b4:6a:f0:35:c2:66:88:1a:86:ec:90:a8:5b:52:
                    ba:93:0d:0c:a3:7d:e2:40:7d:5f:e6:d6:45:5f:a6:
                    06:9c:a9:ab:1e:df:c3:e3:ad:2e:6b:b8:a1:1a:80:
                    a3:bf:6f:b3:c3:4a:ba:16:6a:c5:ea:25:bd:f3:bb:
                    12:ac:be:7f:54:40:eb:b0:35:04:fb:f7:3a:1f:10:
                    ad:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:EB:21:CB:4A:8A:3A:2C:0F:F7:6F:F3:00:F5:AF:04:5D:65:01:4E
            X509v3 Authority Key Identifier:
                keyid:9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:ab:47:78:d6:90:ec:c7:90:f0:f8:30:ae:80:fe:c3:b9:74:
         95:20:69:9f:e3:1e:fa:d8:86:8e:ef:28:7d:ed:d1:6f:9c:d1:
         c7:ff:1f:c1:03:ef:c6:63:cf:ca:23:7f:6d:1e:d6:7d:7a:0e:
         8d:5c:aa:36:8e:1e:65:d3:20:dd:0e:a1:a6:68:06:96:21:09:
         ee:0b:82:86:1a:f8:ad:17:23:87:c7:09:12:82:d5:c8:78:ab:
         dc:07:6e:8e:10:4e:2c:34:61:69:18:ae:93:e2:58:a8:b3:26:
         88:3e:1f:2f:68:ce:02:33:65:48:44:4e:e9:db:9d:41:6c:70:
         6e:5c:48:81:ab:8b:62:7f:72:4a:d3:fd:c3:04:4e:a6:b9:fc:
         81:f5:53:fb:57:cd:0c:b7:65:08:5d:0d:97:80:1b:88:3d:c5:
         ff:37:99:ab:04:d6:68:66:56:47:7f:ac:0a:60:65:f1:c0:b6:
         69:47:61:a0:ad:18:e0:df:75:4f:1c:f1:56:0c:b8:0f:3d:22:
         99:64:d6:5c:84:d1:73:61:f7:54:f7:55:74:e0:4d:d6:a6:b1:
         19:c5:e6:3e:a4:5d:52:7f:aa:a5:cf:22:b8:a9:8d:54:d6:8e:
         54:1b:12:65:6a:66:f2:ba:83:12:32:35:df:86:95:22:61:4e:
         aa:98:0f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:25:50 2025 by rpki-client