Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
File:                     2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json)
Hash identifier:          OQFC1wIc9fMahT6M2Q9UWv9SE47miIw+/botoXH0Q3Q=
Subject key identifier:   95:CC:0B:31:D6:EF:1E:86:EF:CE:D9:C3:E3:B3:00:96:7E:4A:D4:E3
Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7
Certificate issuer:       /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
Certificate serial:       01A2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
Manifest number:          019A
Signing time:             Thu 03 Jul 2025 03:29:45 +0000
Manifest this update:     Thu 03 Jul 2025 03:29:44 +0000
Manifest next update:     Thu 10 Jul 2025 03:29:44 +0000
Files and hashes:         1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: WryuFfHY2wyrXiSDd79dlCA68opLyTBOw7OvKGhsIfg=)
                          2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=)
                          3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl
                          rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 418 (0x1a2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
        Validity
            Not Before: Jul  3 03:29:44 2025 GMT
            Not After : Jul 10 03:29:44 2025 GMT
        Subject: CN=6865f928-bddc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:3a:20:72:c1:d9:9e:d1:6d:1b:fa:a9:d2:36:
                    03:3e:51:7e:7c:c8:48:69:a0:e4:67:81:70:f6:1e:
                    ac:f3:da:25:2e:e6:18:1a:c8:a5:cc:35:b4:5a:7d:
                    9c:2b:02:7e:bc:97:7f:a9:30:ae:3c:14:a3:02:e3:
                    7e:db:9d:76:bc:29:f9:c3:01:1a:a9:a1:fa:85:b3:
                    d5:99:a4:df:de:08:cd:ef:0a:a9:56:89:0f:f2:bf:
                    5b:c8:86:9f:ae:33:a7:45:97:63:c1:2d:e5:78:0c:
                    d9:ab:e1:79:f1:05:41:7e:92:1e:4b:e7:2d:25:77:
                    42:95:cf:0b:c5:be:cb:dc:9e:0a:43:1e:67:a9:07:
                    56:43:b4:30:a8:1e:a2:83:65:f9:ab:d1:20:c1:48:
                    46:e5:9f:fd:44:cf:d8:de:fc:ed:81:03:89:17:94:
                    8c:16:7d:d9:e5:c4:6a:a1:4e:9e:3b:17:7c:3d:17:
                    45:58:b3:64:d5:d6:56:90:d0:0a:da:aa:7a:32:9e:
                    69:d9:a0:00:fb:62:e0:93:2e:b7:66:39:ae:83:90:
                    53:00:0e:90:6c:bf:ae:7f:5e:29:1a:ef:be:2c:bd:
                    b2:21:bb:83:a0:2d:f0:29:a3:c4:68:c9:cf:d1:75:
                    22:80:83:cc:e6:24:0a:90:41:b5:67:ad:e4:06:c2:
                    72:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:CC:0B:31:D6:EF:1E:86:EF:CE:D9:C3:E3:B3:00:96:7E:4A:D4:E3
            X509v3 Authority Key Identifier:
                keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:d7:24:91:f4:df:a9:9a:3d:44:92:a6:7e:d6:d9:67:7f:c5:
         71:a3:de:0d:68:02:42:b0:1e:57:76:f6:c7:12:26:17:bf:80:
         5c:6d:41:85:4e:3e:87:83:82:70:ec:af:b6:75:47:38:5a:61:
         b7:53:f2:a3:98:30:f7:f2:f5:53:69:9a:14:8b:33:c5:ca:02:
         9c:12:d2:14:0d:22:4e:88:58:9b:9a:4c:6b:fc:d9:5a:6d:c1:
         b6:61:d1:23:08:7f:33:05:80:af:e1:24:c6:22:5f:39:37:b8:
         54:25:dd:be:25:57:1f:ea:95:92:b2:27:c4:44:39:49:ff:fb:
         5b:8d:2d:9d:71:76:8e:2f:cf:fb:7c:1e:e5:f3:fa:d6:16:96:
         66:07:3b:03:9a:99:6e:91:d6:1a:9c:31:a3:9e:ea:55:7d:1a:
         6d:c4:23:4f:9e:dd:ac:e9:95:32:5f:4d:09:7b:ff:22:e8:a0:
         c6:f7:73:2f:6e:60:78:fa:09:fe:c8:03:30:21:a3:1c:14:f5:
         cc:69:9b:e5:04:16:f9:83:41:30:99:41:00:4b:7c:7a:7c:3a:
         34:cc:94:09:b0:9e:41:ef:8b:52:8e:17:d8:1e:91:61:ee:de:
         a0:24:38:6f:d1:ab:76:0a:b2:a3:db:d4:5f:06:6d:e9:84:24:
         5a:dc:ac:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 13:35:51 2025 by rpki-client