Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft
File:                     NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json)
Hash identifier:          bioXvU/fanKvvPOohO91dGUpR8ZhANzXcxZtklczWFE=
Subject key identifier:   E7:88:B0:C4:A7:FD:C6:3D:8E:17:31:ED:EA:FF:43:A1:AF:C6:13:AB
Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA
Certificate issuer:       /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA
Certificate serial:       0729
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft
Manifest number:          0701
Signing time:             Wed 02 Jul 2025 22:18:21 +0000
Manifest this update:     Wed 02 Jul 2025 22:18:21 +0000
Manifest next update:     Wed 09 Jul 2025 22:18:21 +0000
Files and hashes:         1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: YKj0gjn5lbAgQtWNfa6S2gQgsSRunLjefe5A0sUHMw0=)
                          2: 0A81888851C011F08C31DF3FC4F9AE02.roa (hash: 1yPuP1g8YZqvnHf524WkUbhoEmWrAxZBELmM8pADlg8=)
                          3: 7B3EE1DC524811F0B02FCD27C4F9AE02.roa (hash: NOszZQVplnPpRn57635/o7+RgEVvlc3t2csfhNsghIY=)
                          4: 4594F026524811F0B86E6427C4F9AE02.roa (hash: 9vMxDfxZcecTBNMP0xoJf/aShTkktCzlUi2w0tCp2go=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl
                          rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 09 Jul 2025 22:18:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1833 (0x729)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA
        Validity
            Not Before: Jul  2 22:18:21 2025 GMT
            Not After : Jul  9 22:18:21 2025 GMT
        Subject: CN=6865b02d-5d50
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:01:9d:9e:31:0e:c1:45:0c:71:80:13:32:a9:
                    96:5b:2b:66:3a:9d:47:b0:41:94:26:a6:38:16:2e:
                    9a:0b:c5:8b:a8:a1:07:7b:16:d7:88:7d:56:c3:08:
                    21:12:07:e8:6c:f8:4b:a8:1f:09:ba:1d:e7:6e:6f:
                    6d:17:2a:45:18:b3:4b:7b:05:65:60:60:14:3c:d3:
                    f9:f6:83:00:1f:4c:82:ce:7e:e1:42:e0:3e:f9:ab:
                    5a:89:27:55:35:d1:fc:d0:a5:7b:47:1b:f7:58:69:
                    80:9f:f1:cc:d6:85:a5:4a:7d:51:f8:71:4d:6b:04:
                    5c:52:46:12:b3:86:dc:6f:2c:ff:91:83:bc:d8:45:
                    9e:41:a3:0e:97:5c:ed:fe:dd:68:67:70:be:06:c9:
                    0b:16:a1:0d:37:a2:6c:62:03:b1:76:6f:e0:2e:9e:
                    4d:c0:cd:7d:7f:a3:6e:0b:e4:f4:10:07:c4:3a:2d:
                    be:b4:69:83:de:b0:d8:2e:23:d9:f8:85:bd:0f:ee:
                    22:71:0f:b3:09:ef:35:3a:a4:df:20:5b:c4:bc:c9:
                    03:3e:71:5b:33:d8:bf:65:c4:02:37:da:27:94:f3:
                    8d:55:71:f9:70:8f:7a:80:84:7c:b7:04:15:57:00:
                    3b:79:79:67:f0:28:37:ba:55:70:7a:30:e0:5d:f0:
                    4a:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:88:B0:C4:A7:FD:C6:3D:8E:17:31:ED:EA:FF:43:A1:AF:C6:13:AB
            X509v3 Authority Key Identifier:
                keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:c2:81:b5:7d:c7:ed:0f:bc:14:2f:e9:61:69:cc:3c:fb:17:
         d0:0b:06:5f:40:70:b2:39:f1:e9:1b:20:79:0e:d5:1b:76:0e:
         dc:10:71:35:f7:ff:a7:4f:65:2c:29:11:02:83:5b:41:52:c5:
         f2:5c:e0:c8:fc:30:40:72:9b:29:e5:02:41:cb:db:5f:97:76:
         f5:e6:93:e5:f1:fc:65:4b:5e:64:91:a4:7a:62:d2:d3:e1:ba:
         cd:c5:58:eb:13:5a:0a:b3:c9:de:fc:13:47:4e:96:77:6a:4e:
         40:ad:d2:2e:72:73:fb:60:43:52:9d:eb:df:2f:75:da:9f:02:
         23:45:ee:5e:06:4a:61:6b:64:a2:d0:b8:a3:cb:b7:11:fa:db:
         cd:b2:1b:93:f7:9b:7f:bf:eb:39:26:a1:a8:1c:f7:58:49:29:
         90:0f:1d:05:89:d7:0c:05:d6:65:a6:a1:1d:e3:42:26:12:e3:
         af:07:c4:d4:51:2b:62:79:95:87:f2:b5:34:68:db:59:0c:45:
         87:08:c4:f8:fd:d4:3b:43:38:3f:e8:91:ea:7b:7d:11:17:06:
         5e:62:d4:e8:1d:69:e9:1f:21:a5:8e:f2:ef:7f:dd:74:19:b7:
         56:93:0c:14:5c:5a:ed:df:09:30:78:86:8f:87:06:dc:b3:ea:
         0d:d9:83:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 07:57:14 2025 by rpki-client