Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft
File:                     RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json)
Hash identifier:          U5TSHODFfAhjCz5Imkt94dpX4x4YtyVr00n7oTajS+8=
Subject key identifier:   4F:71:14:EF:CA:67:BA:4B:50:8E:5D:A4:A2:DA:82:A4:50:DF:3F:97
Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76
Certificate issuer:       /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676
Certificate serial:       5D
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft
Manifest number:          5D
Signing time:             Wed 02 Jul 2025 16:15:39 +0000
Manifest this update:     Wed 02 Jul 2025 16:15:39 +0000
Manifest next update:     Wed 09 Jul 2025 16:15:39 +0000
Files and hashes:         1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: YSnEfSwBKwtpiNFni5KLYygaFH6XMhbXWMF215BhkWI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl
                          rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 09 Jul 2025 16:15:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 93 (0x5d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676
        Validity
            Not Before: Jul  2 16:15:39 2025 GMT
            Not After : Jul  9 16:15:39 2025 GMT
        Subject: CN=68655b2b-5c9f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:4d:a4:4c:b4:96:bd:01:a9:c9:3d:4a:2d:0d:
                    77:e9:0a:11:8a:0f:7b:ed:a6:11:bb:07:31:0b:5c:
                    4a:ae:1b:9d:32:37:56:6f:de:50:c1:30:ab:74:97:
                    59:dc:d2:91:87:bf:e1:1c:3a:cb:40:98:39:1f:97:
                    e1:37:7f:06:27:94:ca:bc:20:d5:72:0e:f9:82:c1:
                    3f:84:e5:94:a8:d0:2e:88:f7:65:5d:01:59:36:d9:
                    0c:30:d8:ed:bb:8a:21:2f:17:ce:30:09:f8:ab:34:
                    5a:75:ac:7a:26:64:01:a9:a0:36:4f:61:10:0c:a0:
                    e8:d4:44:ee:0b:df:ba:e6:ed:79:d7:08:8e:9b:18:
                    80:fa:b8:f5:11:94:55:38:cf:26:b6:b3:b3:09:c9:
                    5d:2d:e6:44:79:b3:a2:01:5c:cf:33:94:27:f7:c3:
                    61:be:58:dd:a0:a1:25:6c:6c:31:75:94:65:4f:48:
                    26:ba:ae:7f:6d:d5:a7:7d:31:18:48:f6:73:9a:9b:
                    13:73:aa:54:db:2e:21:3a:ab:d0:18:a6:f5:32:05:
                    3b:63:e1:28:45:b5:a7:8a:0b:6d:1a:c8:fe:40:86:
                    aa:10:99:98:b2:1c:89:fc:f9:ae:a9:5c:8a:f3:bb:
                    7d:a5:38:d9:a9:8e:f1:18:76:80:97:eb:1f:aa:83:
                    df:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:71:14:EF:CA:67:BA:4B:50:8E:5D:A4:A2:DA:82:A4:50:DF:3F:97
            X509v3 Authority Key Identifier:
                keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b9:1c:dc:d0:da:c1:82:34:b2:cc:ec:25:fb:5d:04:e5:d2:b8:
         23:1c:45:3f:5f:fe:d2:6b:74:16:f9:9d:a6:62:2e:15:f2:4f:
         94:ce:d8:f9:ca:c5:dc:1e:8d:83:02:a4:e3:3d:70:09:ee:af:
         e4:ee:21:ff:eb:d5:d5:cd:95:49:29:6a:00:57:42:27:db:1a:
         89:fb:66:ae:46:65:85:3c:5e:dd:5c:22:d9:83:bd:9e:88:88:
         a3:8a:0a:5b:da:f2:3a:f3:1e:b8:e3:f0:fa:fc:5e:47:c5:43:
         3b:69:82:07:d4:b6:ff:60:80:99:d2:4f:b2:1e:8b:5b:d9:bf:
         48:54:6a:48:42:3f:60:43:76:57:6b:ca:ac:50:be:30:a6:85:
         ec:40:9e:8c:d7:c5:ad:a6:55:ab:1a:f7:3b:a3:88:9e:5f:ad:
         c8:a8:00:d9:20:e6:3b:7b:18:73:1f:ef:ca:1a:60:20:7a:b0:
         3d:be:ca:c8:73:83:1c:1a:8c:d6:00:61:8f:28:ff:ba:d0:76:
         f7:9d:ac:d1:59:53:ea:3d:ee:1f:a9:89:15:72:8d:28:4a:f2:
         f0:05:fe:3b:1c:43:bd:2d:ff:f3:84:df:f5:2b:c0:8b:ca:30:
         37:d0:a1:de:ca:f9:4b:3e:5d:75:4d:d4:d2:b6:47:f0:2d:a7:
         cf:ed:67:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 23:37:51 2025 by rpki-client