Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft
File:                     gOknW25uvGrXWF12r7akALUULD8.mft (raw, json)
Hash identifier:          eD/s7Zm4D/2sWv6hwKDfyXfAPqJSnccYCoaZ93qwT3Y=
Subject key identifier:   1C:A9:4C:BF:EB:F7:73:96:5F:6B:C4:7D:BC:38:78:E1:8B:18:CB:78
Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F
Certificate issuer:       /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F
Certificate serial:       B5
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft
Manifest number:          B3
Signing time:             Thu 03 Jul 2025 06:12:50 +0000
Manifest this update:     Thu 03 Jul 2025 06:12:50 +0000
Manifest next update:     Thu 10 Jul 2025 06:12:50 +0000
Files and hashes:         1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: b+Fy7oP4rGdIyeqHZ6zNS5822kRXnNZEMmIaAzIkaMQ=)
                          2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl
                          rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 181 (0xb5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F
        Validity
            Not Before: Jul  3 06:12:50 2025 GMT
            Not After : Jul 10 06:12:50 2025 GMT
        Subject: CN=68661f62-e4a3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:f8:6a:f2:90:f1:8c:e9:41:fc:ea:4e:85:19:
                    d9:8b:41:2e:48:e3:0b:cc:41:25:d3:9e:c3:a4:3a:
                    c3:0a:d5:ed:d7:07:e1:5d:58:e2:a4:81:9b:fd:52:
                    2c:ef:45:d1:a4:54:c5:5d:a8:6c:aa:c4:13:41:f9:
                    0c:3c:5b:4f:48:3c:8f:c4:a8:30:72:4c:d5:75:61:
                    9d:79:fb:a6:7c:ce:10:07:08:7c:22:c7:99:b2:e1:
                    74:b2:4e:64:f7:b8:54:f5:6b:bb:01:3f:fd:30:4a:
                    ed:03:e2:83:bf:41:1e:97:0a:e4:71:a6:88:4d:93:
                    ae:ab:94:b0:ff:b7:22:3c:c3:b0:57:f3:e7:b8:13:
                    40:6e:86:85:eb:b7:42:ed:e1:42:d3:39:61:02:dc:
                    23:59:b1:1d:75:99:61:bc:35:99:ab:65:bf:5b:49:
                    8b:17:f3:60:58:2e:1b:80:73:63:4b:55:e2:10:13:
                    4a:f3:eb:9d:3f:6e:dd:aa:f3:34:c7:17:cd:1e:12:
                    d5:7a:71:52:ea:28:a7:42:c8:5c:f5:6a:87:49:e2:
                    c2:74:7b:f7:be:77:20:9c:c1:8e:34:e5:bf:a0:d6:
                    f2:dd:24:37:82:e6:8d:a8:5f:08:ca:38:1e:02:a5:
                    19:b3:8a:45:bc:ea:8b:c2:c2:d7:39:4c:f1:30:46:
                    2c:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:A9:4C:BF:EB:F7:73:96:5F:6B:C4:7D:BC:38:78:E1:8B:18:CB:78
            X509v3 Authority Key Identifier:
                keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:b1:27:c5:f2:b3:41:d7:7a:52:93:79:3c:0e:a8:d0:0b:9b:
         57:1d:67:9a:72:00:a8:44:fe:e7:ee:cd:d0:45:08:0c:2c:a3:
         00:98:d2:7f:e0:0f:36:24:44:1b:09:b0:c0:d0:f1:d4:77:32:
         d7:45:cf:34:97:38:72:86:d7:bc:40:d7:dc:82:7b:64:8d:bd:
         3c:49:39:f7:03:75:a7:7b:ea:7c:e2:df:55:14:0f:0e:d9:16:
         72:df:20:97:d4:d2:90:47:02:22:52:e8:81:24:fb:b0:39:a0:
         c2:2e:28:d9:22:cb:ec:a9:c9:06:d3:fd:ee:b7:3a:9a:80:c5:
         f5:18:d6:88:f0:ba:c2:fa:26:f2:1e:e7:e8:45:ce:e5:ab:4d:
         19:09:a9:5f:37:13:29:5e:18:3e:35:69:e0:19:0e:3c:5f:e4:
         86:50:aa:18:ac:25:b5:5e:39:e5:bc:a4:e9:92:e2:0d:a2:44:
         37:0a:8e:25:01:e9:bb:48:91:23:d2:49:58:b5:76:58:23:27:
         9e:9c:06:b2:54:05:ed:b5:34:9d:be:cc:9a:41:37:31:4a:43:
         eb:af:be:0f:35:e7:cc:55:f6:a6:53:db:22:23:e4:a7:50:3e:
         cf:b6:c9:b8:1f:64:2f:f4:7c:0f:6b:4f:f4:f9:b9:35:66:5b:
         b2:aa:ee:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 19:45:31 2025 by rpki-client