Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft
File:                     tGadMNIQ5JB80oiL50uJpt08tsg.mft (raw, json)
Hash identifier:          M+yEAJdOvYMvdTOq6QBJYccbQFX1wZ7TroXMpLXlUSI=
Subject key identifier:   C9:5D:7E:78:44:FD:8F:B7:A0:EA:61:C1:6F:E7:BE:89:B3:1F:47:63
Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8
Certificate issuer:       /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8
Certificate serial:       0943
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft
Manifest number:          092E
Signing time:             Thu 24 Jul 2025 20:26:28 +0000
Manifest this update:     Thu 24 Jul 2025 20:26:28 +0000
Manifest next update:     Thu 31 Jul 2025 20:26:28 +0000
Files and hashes:         1: tGadMNIQ5JB80oiL50uJpt08tsg.crl (hash: 2YJqh2SXAlyqJwI6ngaKW9flTMnqT5LaC+ttQDxDXDo=)
                          2: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (hash: p54CFofowbUbktzQ5l2cM2w3M6idGp06vDW+Qt3EoTM=)
                          3: B350B67E964611EDA10D8777C4F9AE02.roa (hash: dqgw7Vjah1kgl1Eb2Qsi3T+K4Ggh+1iUdEI4VBpnCIA=)
                          4: D7120558A7ED11EA95BED565C4F9AE02.roa (hash: 69e6c/vHo1P1XZkYWN+UCZupbdC0oSmCyhIpttIVtDU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl
                          rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 20:26:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2371 (0x943)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9161A58, serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8
        Validity
            Not Before: Jul 24 20:26:28 2025 GMT
            Not After : Jul 31 20:26:28 2025 GMT
        Subject: CN=688296f4-54a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:4b:23:e3:97:a5:a2:e1:74:66:a2:75:9e:55:
                    7d:f2:c7:5c:98:bc:24:31:4b:46:ac:bd:e5:7a:9c:
                    35:35:a3:43:01:d5:c6:c2:7a:27:cb:3c:44:8c:53:
                    02:59:a0:22:7f:f8:a6:bf:ff:15:79:b6:16:3d:4e:
                    ea:b3:25:7e:81:b5:6a:b7:36:bc:6e:5f:cb:f6:1a:
                    34:54:87:a2:64:d6:1c:ce:67:35:8a:6d:db:27:16:
                    41:46:90:45:b4:1b:43:60:28:cc:cd:aa:45:84:4a:
                    8b:77:ab:1c:a2:02:d8:90:48:3d:ef:0e:73:a7:77:
                    4c:e2:b2:46:73:b7:24:47:2c:e7:65:07:88:2a:68:
                    67:8e:fe:b0:95:3b:37:d7:aa:d1:c2:32:69:e3:44:
                    f9:4d:ef:f9:0b:54:10:7c:b0:81:db:0e:65:ac:a1:
                    2f:38:28:c0:30:37:6e:e6:fd:4b:91:ce:bd:63:f9:
                    a4:d6:28:17:e9:8d:f1:cd:fd:49:1d:82:11:d2:55:
                    2a:32:a9:ce:1b:85:8c:f3:f1:cd:54:7d:66:5b:4b:
                    29:b3:68:0d:bc:f7:b9:52:54:08:cf:8d:01:92:6f:
                    51:08:79:60:f4:99:61:67:50:b0:31:e7:c7:21:84:
                    a1:a3:29:52:e7:2e:c5:30:23:54:2b:00:9f:d6:62:
                    e2:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:5D:7E:78:44:FD:8F:B7:A0:EA:61:C1:6F:E7:BE:89:B3:1F:47:63
            X509v3 Authority Key Identifier:
                keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:97:8e:77:3e:28:e2:d1:87:56:c2:67:20:14:b7:e2:6b:a9:
         00:83:de:36:69:8d:19:a7:54:57:af:29:12:fb:e8:ce:f2:85:
         ee:29:0a:8f:6a:ae:56:d9:c9:40:eb:57:be:15:58:e0:a0:2a:
         8b:96:1f:1c:de:c2:90:72:2b:d7:e9:97:93:16:7a:93:33:f9:
         e9:35:6b:86:54:68:c3:0b:6e:bb:f4:20:63:a5:47:30:41:21:
         54:15:5f:61:20:75:c0:d4:fb:a0:d9:b5:1e:a4:af:26:8d:3d:
         45:dd:a6:a6:a7:ce:d1:14:b8:95:da:34:55:00:ce:8a:ba:31:
         12:8b:a4:9c:4e:15:f6:57:7e:be:df:f9:a6:e4:fe:d3:34:d9:
         38:83:b2:7d:dd:34:04:ed:39:a9:0c:b3:ed:15:52:fb:2f:f4:
         70:59:4d:11:70:e5:61:7b:e6:4d:b7:91:3e:0c:0f:09:ad:bd:
         5b:74:05:fa:56:11:2d:0e:5b:84:9d:e1:f6:9a:39:2a:1f:22:
         d0:7b:e4:e2:66:7c:17:44:39:30:11:56:cc:c0:c9:8c:85:41:
         92:6a:da:c0:c8:8c:0b:5c:c6:4e:09:dc:22:51:16:e5:2b:c7:
         d4:13:bc:2f:15:1d:c7:94:d4:9a:37:14:7c:bb:85:77:36:cb:
         06:4f:01:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:10:38 2025 by rpki-client