Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft
File:                     o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json)
Hash identifier:          HppdfkuiIplg5/CSG8rwiJNo/+gl2OFj+yPsGzpk+Pk=
Subject key identifier:   57:A1:43:B3:E4:35:5E:3C:02:85:07:71:71:33:62:6A:DA:45:D9:C2
Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9
Certificate issuer:       /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9
Certificate serial:       0235
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft
Manifest number:          0231
Signing time:             Sat 23 Aug 2025 02:07:56 +0000
Manifest this update:     Sat 23 Aug 2025 02:07:55 +0000
Manifest next update:     Sat 30 Aug 2025 02:07:55 +0000
Files and hashes:         1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: ZF03cgprJRjYHz1MKv4W/gxWKgXlgoV/KY25S8Fjcbk=)
                          2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: JUU9x04r0AO1GN2PUUX6ELgHywTKgyrE2nXs4Tcl03M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl
                          rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Aug 2025 02:07:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 565 (0x235)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9
        Validity
            Not Before: Aug 23 02:07:55 2025 GMT
            Not After : Aug 30 02:07:55 2025 GMT
        Subject: CN=68a9227b-80f4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:26:53:de:ac:3d:de:45:6a:d3:70:31:55:e4:
                    e4:5a:8c:af:72:d4:aa:f7:8a:96:f4:bd:87:45:22:
                    d2:2c:c9:0a:e2:4d:72:eb:fe:88:2d:41:f8:3e:4d:
                    3f:d9:73:b8:10:6c:53:92:8a:95:09:13:c2:fb:67:
                    be:c7:ac:36:26:fa:79:12:0b:aa:00:97:5e:6d:9f:
                    3b:0a:6a:d1:ed:37:55:2c:cc:5a:1e:c5:b0:58:fe:
                    bd:f1:dc:36:cb:aa:cf:ab:73:2f:0f:87:76:e0:86:
                    81:b0:ba:03:32:39:0c:b4:9b:cd:90:38:19:e0:97:
                    51:e4:30:da:51:25:fa:a3:8b:80:55:0d:62:e2:2c:
                    e6:54:9d:66:8b:a1:12:c8:14:e4:13:29:b1:9b:03:
                    9a:3e:92:3c:63:5c:48:4b:92:55:36:68:f4:44:4b:
                    ff:7e:89:a0:d9:d4:c0:61:3d:31:f7:b3:58:d4:8c:
                    c2:3b:fe:76:a9:7a:5d:e2:ea:e0:b1:4d:f1:85:98:
                    ac:fc:82:66:81:e6:da:07:8f:e7:48:1e:e0:11:62:
                    31:b2:46:c2:06:85:ad:9e:de:85:b7:a2:e3:d9:fd:
                    78:e7:fc:24:15:f8:0f:5f:37:24:67:11:6a:39:20:
                    34:f5:a9:64:10:82:c0:1d:64:c3:82:24:d8:e4:b3:
                    15:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:A1:43:B3:E4:35:5E:3C:02:85:07:71:71:33:62:6A:DA:45:D9:C2
            X509v3 Authority Key Identifier:
                keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:3a:36:ed:fc:36:00:30:f8:7d:a7:05:12:68:b8:fb:04:00:
         b1:ff:5a:0b:0b:59:69:c5:97:f9:5b:af:4c:c7:97:23:4b:8e:
         52:34:e6:df:b5:ab:9a:99:68:8a:cf:c1:b2:9c:3c:72:83:92:
         eb:f7:3d:40:03:0c:a7:5e:a1:b4:8a:00:00:b9:56:d4:d5:ce:
         35:53:8a:73:24:a3:f9:ea:0a:54:0c:f6:f2:eb:db:d0:f9:7a:
         90:43:c3:8e:2b:42:53:ca:f9:ea:1e:6c:59:bc:d8:f5:75:2b:
         68:72:ee:8b:3c:27:5a:6c:a7:ec:9c:69:17:7a:4c:a7:26:93:
         25:12:f9:0a:2d:92:b4:a0:d5:22:8b:a9:b8:b1:68:5b:68:c8:
         3a:41:27:af:f0:01:f0:d7:91:ca:12:11:ed:34:50:4a:2b:87:
         71:26:6c:4c:cc:9f:e0:4d:5f:98:c1:b2:81:35:ac:d1:72:6b:
         69:c4:1f:18:ef:f3:b6:72:5e:85:bf:36:ec:b6:61:7b:4c:c7:
         2f:5d:a8:99:8b:6e:c1:69:45:3c:44:0f:88:7a:b2:cb:45:e8:
         f3:6a:0c:74:0e:2d:c8:69:a6:f1:cc:92:66:7b:70:42:87:14:
         b3:c9:90:ab:3a:bf:f4:d3:21:46:1a:07:3f:2b:e7:9f:a4:31:
         94:46:74:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:25:03 2025 by rpki-client