Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft
File:                     kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json)
Hash identifier:          rLAzneel+hDsAl+TpTEugyh/oSBfmHDIUmShF05+XkY=
Subject key identifier:   A7:BF:5F:8F:0E:E6:42:96:E8:6B:B4:26:FE:70:C5:B9:27:33:FC:F4
Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7
Certificate issuer:       /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7
Certificate serial:       025F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft
Manifest number:          025B
Signing time:             Fri 25 Jul 2025 02:11:37 +0000
Manifest this update:     Fri 25 Jul 2025 02:11:37 +0000
Manifest next update:     Fri 01 Aug 2025 02:11:37 +0000
Files and hashes:         1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: 3H5CdzKnnfCch7R762lri6DSsqd96TNiLhTTevFeSlc=)
                          2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl
                          rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 02:11:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 607 (0x25f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7
        Validity
            Not Before: Jul 25 02:11:37 2025 GMT
            Not After : Aug  1 02:11:37 2025 GMT
        Subject: CN=6882e7d9-97c0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:74:20:6c:85:36:c1:13:6c:2a:51:3f:af:f1:
                    24:33:db:f4:b6:d5:e6:22:44:92:2b:df:df:c1:93:
                    bb:86:1e:1b:00:de:8a:88:1d:0e:b5:ce:96:66:f1:
                    c8:75:7d:0a:93:be:4b:19:5a:57:4a:18:1f:99:60:
                    ff:17:a2:9b:15:00:32:09:c3:1a:dc:08:c7:00:4b:
                    0a:28:ae:25:90:8f:f8:0c:ad:e1:f3:52:47:0a:e7:
                    9f:39:85:89:00:4e:b6:01:c9:a1:2f:0d:1c:ff:60:
                    a4:66:9f:5e:d1:85:3d:f8:87:e7:9b:08:8a:9f:e9:
                    47:b8:69:23:52:bb:5a:6e:78:a9:18:4c:c5:97:ed:
                    0c:79:69:f1:37:35:cf:16:63:87:10:42:6a:4a:fb:
                    0d:c5:d1:bf:cf:30:0c:be:35:0d:30:48:5a:51:1c:
                    70:63:37:f1:7c:f9:a9:13:7f:38:1f:f7:7d:80:a3:
                    8f:3a:81:f3:b0:56:4a:15:1b:a6:8e:f1:68:37:51:
                    f0:ff:26:c8:6a:00:f1:a2:0d:1d:57:f7:64:14:11:
                    14:67:fc:86:b0:d4:5f:5b:e7:09:99:c2:3d:0a:2e:
                    4a:0d:88:26:54:b2:0e:47:26:30:0b:aa:dc:7d:76:
                    3f:af:14:0e:a2:b0:22:08:e5:54:f5:b3:65:3f:c9:
                    17:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:BF:5F:8F:0E:E6:42:96:E8:6B:B4:26:FE:70:C5:B9:27:33:FC:F4
            X509v3 Authority Key Identifier:
                keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:e3:44:1d:ce:da:d1:a4:90:62:51:ef:7c:57:56:c2:62:d3:
         a0:40:55:48:95:b1:98:ea:06:ff:00:f4:40:d3:ef:d4:9c:0b:
         b2:a7:0c:f0:83:bb:30:2d:2e:79:4e:50:4b:61:37:29:aa:42:
         7a:df:a8:b8:3b:3d:0a:e6:67:50:85:e1:0c:51:76:4e:92:47:
         2d:3f:81:50:04:cd:1b:ad:a1:69:34:3b:d6:f9:68:b7:7d:9f:
         89:2d:85:98:ee:21:d8:92:d2:25:73:e8:96:e1:a9:a8:ad:d3:
         61:67:b8:2c:04:3f:01:e4:b3:7c:ce:ac:c8:b9:d4:e8:ff:0d:
         6e:a8:f8:b8:00:4b:68:91:6c:90:77:eb:52:20:08:97:84:02:
         ee:cc:2e:69:4e:5f:40:80:44:0a:38:77:55:d7:93:ea:1c:8a:
         61:58:5d:12:f4:98:75:3f:23:cb:8d:9d:95:90:02:96:8b:cf:
         7c:2b:a3:ce:ba:bb:16:7f:f2:34:f8:83:98:a9:a3:49:18:09:
         9b:68:f2:7e:75:aa:21:70:30:1c:34:a1:e6:ac:fa:cf:8f:18:
         9c:82:03:5b:af:c8:56:ec:4c:00:c5:6f:06:4d:3a:b8:50:fc:
         63:2c:50:8d:ae:6b:3b:a8:ed:63:c5:87:60:6c:b5:85:5e:24:
         43:c1:10:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:00:14 2025 by rpki-client