Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft
File:                     yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json)
Hash identifier:          s78XUTfEDqoVXoImAN+veNRcHAQACgE2v936bIdOqfo=
Subject key identifier:   F9:50:97:F6:EE:CF:88:FF:E3:47:42:66:24:D9:2B:F7:30:7D:D9:67
Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01
Certificate issuer:       /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701
Certificate serial:       05D9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft
Manifest number:          05BE
Signing time:             Wed 02 Jul 2025 23:30:16 +0000
Manifest this update:     Wed 02 Jul 2025 23:30:16 +0000
Manifest next update:     Wed 09 Jul 2025 23:30:16 +0000
Files and hashes:         1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: 29W/5DAYFy11+Fvjxc0XSzZxEk5XXqIAJ/ZMBCG+ht8=)
                          2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: ui8GmB9i/5pnYfd6MeCxTJj3Yjz4hQKs4XNWYMcqflM=)
                          3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: vtLAm7IVt53zIg8Nc5apkEjvAOJhd3yNQjgM+aQMRxs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl
                          rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 09 Jul 2025 23:30:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1497 (0x5d9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701
        Validity
            Not Before: Jul  2 23:30:16 2025 GMT
            Not After : Jul  9 23:30:16 2025 GMT
        Subject: CN=6865c108-0bed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:61:18:87:6e:05:57:ce:3e:11:e5:52:bd:94:
                    b8:fd:52:4f:ae:48:37:71:14:31:75:44:8a:3c:e4:
                    07:bb:f8:3b:1b:32:c5:49:23:59:48:1b:23:e6:6d:
                    f3:ad:df:06:8d:21:29:81:ee:ac:3b:97:ad:31:4c:
                    53:49:88:40:bf:e2:a5:ff:c5:82:21:84:9d:e7:c4:
                    de:a3:f4:00:20:f7:7e:bc:3e:73:5e:01:64:bc:f8:
                    9f:e0:d7:84:6e:25:0a:e4:82:8d:b1:91:70:1c:7d:
                    65:45:c6:4e:96:d4:22:bd:e1:b0:6e:e7:49:64:74:
                    5b:ca:6a:c0:a4:50:37:ad:ac:28:84:e3:92:89:59:
                    76:d2:2f:f1:d0:5d:7b:32:64:fb:9f:3e:ae:e8:eb:
                    fd:b2:d3:f9:0b:43:a0:19:70:e1:84:02:2f:ca:3c:
                    9c:c2:5b:42:b3:03:c0:49:2b:d7:d5:3e:dd:91:92:
                    05:c7:7a:b0:4d:08:c4:4c:fe:7a:e1:d5:4d:fa:f1:
                    58:52:36:d4:4a:ea:21:aa:e5:78:ee:8a:5b:6f:cb:
                    a9:61:c6:bf:c0:dc:52:7f:73:b9:c8:ec:26:2b:40:
                    01:cb:15:fc:51:15:d8:f9:f1:b5:3d:76:11:ea:ca:
                    ea:29:2c:37:a9:2d:56:05:ba:cf:e8:9e:2c:90:7e:
                    f2:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F9:50:97:F6:EE:CF:88:FF:E3:47:42:66:24:D9:2B:F7:30:7D:D9:67
            X509v3 Authority Key Identifier:
                keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:8d:50:6f:16:fd:7b:62:d4:38:bb:33:5d:97:19:0f:38:a3:
         30:f3:55:50:31:8b:22:72:c6:66:53:c2:c3:b9:4c:86:8c:af:
         ee:96:d2:18:4a:f1:9e:4d:65:41:23:6c:75:10:67:ab:f5:13:
         6c:84:23:ae:1e:2a:ee:67:cf:0e:4f:19:03:73:06:e3:c7:a3:
         b8:fc:a5:da:03:12:81:23:61:3b:36:4e:86:6e:ea:d1:21:ce:
         ab:f8:be:82:e7:bf:46:9d:3b:71:46:ec:34:5a:d7:dc:17:bf:
         36:31:1c:32:c7:b2:3e:11:0b:1a:a6:23:6a:75:d6:63:bb:73:
         f3:87:59:e2:06:ab:95:cc:71:f8:3a:bf:f7:94:fe:85:30:a9:
         83:a6:e4:b1:ed:2c:92:7a:b5:bf:51:fe:e1:b4:90:f1:d9:d5:
         30:de:02:0b:2d:97:c0:08:30:8e:69:f3:be:a6:db:c1:6a:5e:
         0f:58:4a:58:64:8e:8f:1c:17:4c:fe:38:04:bd:69:14:0b:f6:
         60:6a:da:8b:d2:45:bc:77:cc:e0:89:6e:ec:7a:7e:74:09:d3:
         a7:c1:fe:48:20:f3:0a:7b:2d:b8:fd:79:a5:8c:5f:4b:ab:26:
         fd:ee:b9:e5:a8:63:28:b4:e7:d8:85:e2:ed:8f:7e:d5:1e:09:
         ad:24:f1:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 07:02:20 2025 by rpki-client