Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
File:                     oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json)
Hash identifier:          kts4w836UgSMFmgrG7oZIlyCovAv2KB8VohCljZvMnI=
Subject key identifier:   82:0E:54:42:FA:92:3D:EF:E4:DD:68:BA:64:C5:88:90:F0:A6:2F:FA
Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF
Certificate issuer:       /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF
Certificate serial:       014E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
Manifest number:          014B
Signing time:             Wed 23 Jul 2025 04:28:15 +0000
Manifest this update:     Wed 23 Jul 2025 04:28:14 +0000
Manifest next update:     Wed 30 Jul 2025 04:28:14 +0000
Files and hashes:         1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: xqYFe2WTpgXy9FnDO4pf5lJxnClpPgPaG67XCEAPMiw=)
                          2: 2D7DCF98BA1411EFBD0C393DC4F9AE02.roa (hash: fg42UFyy2LFjnZK3Qasj9lnWcNe6AFnhvIhyePUvpAM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl
                          rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 04:28:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 334 (0x14e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF
        Validity
            Not Before: Jul 23 04:28:14 2025 GMT
            Not After : Jul 30 04:28:14 2025 GMT
        Subject: CN=688064df-2313
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:c8:0b:ed:92:8e:11:1a:da:ad:dc:69:30:b8:
                    ce:10:6c:e4:a2:4d:c9:29:99:30:1e:0f:91:86:e9:
                    1b:7f:de:6f:8f:44:26:71:5d:aa:d8:97:b4:5f:b6:
                    8f:3c:69:58:c1:8e:4e:09:03:41:cf:12:92:af:90:
                    30:72:1c:b9:4c:68:88:7c:c0:41:de:fe:97:ac:2e:
                    b5:75:dd:7a:53:28:d4:81:83:20:5f:a9:3d:5f:7b:
                    a0:b4:ce:51:d4:95:f3:41:c7:9f:10:8d:74:71:1e:
                    81:e1:0f:ef:01:82:06:f6:1f:00:7d:95:cb:5a:00:
                    3f:d0:37:73:ce:9a:7e:6d:10:db:d1:00:ed:83:8d:
                    46:26:d2:b3:e1:91:f4:77:a9:f3:5c:0f:6d:c7:a7:
                    ea:4d:37:78:79:5c:ef:2c:a7:aa:03:ae:1c:53:33:
                    29:c3:87:81:0d:53:79:f6:48:8b:14:9a:da:b2:e3:
                    eb:0a:d3:df:a6:e1:0a:ad:81:01:17:eb:6f:a1:73:
                    b0:1b:54:40:b1:24:3a:01:59:43:0a:5c:70:33:b0:
                    22:f6:28:51:14:6b:e2:d2:7d:eb:45:e9:17:56:a2:
                    50:fe:ef:33:a1:8b:9c:e3:81:13:d1:25:6a:62:ba:
                    24:cf:c3:50:50:e1:74:61:1b:a1:f9:c6:48:9e:89:
                    f5:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:0E:54:42:FA:92:3D:EF:E4:DD:68:BA:64:C5:88:90:F0:A6:2F:FA
            X509v3 Authority Key Identifier:
                keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:7c:43:7d:b1:46:50:97:39:4e:c6:45:cc:7d:e8:1b:9e:f1:
         5f:07:49:27:a4:19:0e:e4:fe:6c:1a:8e:bf:f4:24:93:11:11:
         1e:0b:25:16:14:48:a3:91:22:43:2b:a8:85:d5:2d:2c:e8:98:
         41:6d:02:56:0f:ea:c5:78:7a:f6:aa:9e:05:fe:0d:d3:25:74:
         7f:ed:0d:48:33:12:fe:db:02:ba:9b:0b:06:a3:15:54:13:15:
         1f:b6:ac:b9:4c:3f:75:45:a1:76:b5:48:1d:40:50:e8:08:99:
         2a:2d:d4:3b:91:c0:d1:6f:e2:dd:31:6c:f0:0b:98:90:72:be:
         cb:ab:bb:2c:db:b1:af:a1:40:ee:17:6d:97:85:8f:9f:a9:ee:
         d2:72:cf:72:4d:c5:69:2e:69:19:5d:1f:22:8f:45:28:d2:3c:
         f8:26:85:dc:cf:7a:5a:d6:aa:f8:f0:55:c8:9b:5a:f7:8e:92:
         cb:b1:5c:c6:92:99:a3:9a:c9:85:d9:54:43:c3:b6:5c:1e:d4:
         44:cd:ff:08:02:a9:71:70:32:91:3f:df:14:d2:6f:5c:5e:42:
         69:48:2e:91:f3:1d:bf:d8:63:b0:1a:29:6a:c8:ea:e1:24:1b:
         af:9a:98:df:96:d5:9d:4e:94:15:18:e5:8d:9e:d5:fd:d9:b4:
         ad:db:87:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 12:26:47 2025 by rpki-client