Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
File:                     wOMbX0XP5SusXO243MahoyL0cF0.mft (raw, json)
Hash identifier:          +uXssyPP8gLg6c28P75NySox7l4lYDT6KINHUpQfOtg=
Subject key identifier:   E8:5D:CE:5A:A7:77:78:8A:E5:8D:8D:EC:E1:3D:7D:7C:2F:CE:A5:9F
Authority key identifier: C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D
Certificate issuer:       /CN=A9196F7C/serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D
Certificate serial:       0106
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
Manifest number:          FE
Signing time:             Mon 21 Jul 2025 05:28:57 +0000
Manifest this update:     Mon 21 Jul 2025 05:28:57 +0000
Manifest next update:     Mon 28 Jul 2025 05:28:57 +0000
Files and hashes:         1: wOMbX0XP5SusXO243MahoyL0cF0.crl (hash: Ps1rzgijAN9FOCPTT6ula4VSMBVyF5bMPz5UjILSJ8c=)
                          2: E37CCF70718911EFA0C30257C4F9AE02.roa (hash: /gAZLPIK5N+oUjrTM1zm3bFOQvpgh0r/tqZUpI/jzmU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl
                          rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 05:28:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 262 (0x106)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9196F7C, serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D
        Validity
            Not Before: Jul 21 05:28:57 2025 GMT
            Not After : Jul 28 05:28:57 2025 GMT
        Subject: CN=687dd019-8079
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:f7:7a:c8:45:d3:79:48:9a:d1:98:dd:4a:16:
                    9c:3b:da:c5:20:06:59:38:cc:56:6d:5c:c2:06:00:
                    02:24:d3:a3:5b:2c:af:d5:2a:42:c7:2f:c5:66:6c:
                    86:32:da:1c:ce:d9:5e:2a:8f:43:3d:3d:2e:9d:39:
                    d8:69:a1:7a:43:3a:1a:c2:2b:5c:bb:73:b9:f2:f2:
                    b2:ce:19:da:7f:e4:29:df:b9:ae:b1:9b:12:22:c1:
                    e0:10:09:8d:63:61:77:39:c7:d3:53:4c:77:e7:47:
                    f2:e5:c5:e1:88:9d:20:92:54:38:a5:19:bf:5f:e7:
                    b1:1e:6f:26:40:ba:77:61:4e:3e:36:01:29:98:ab:
                    45:e0:87:a6:ae:9d:d9:80:06:a7:53:8f:3f:9e:7f:
                    76:1b:86:dc:eb:56:ce:d3:a9:90:d9:31:d7:ba:74:
                    07:98:18:62:b6:58:c5:4f:2f:d0:5b:8b:2b:07:bf:
                    34:af:e5:cf:95:6d:4b:82:73:67:59:b2:87:93:2d:
                    a0:29:a8:ad:08:c4:18:25:62:29:9e:7c:9e:79:0a:
                    52:9f:cc:b3:cb:b3:b5:c6:09:15:aa:3d:e0:60:7e:
                    f9:d7:69:70:36:dc:62:93:21:15:f4:e2:5d:31:bc:
                    ad:13:f8:c0:6d:61:ab:84:79:81:e4:71:9b:82:92:
                    19:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:5D:CE:5A:A7:77:78:8A:E5:8D:8D:EC:E1:3D:7D:7C:2F:CE:A5:9F
            X509v3 Authority Key Identifier:
                keyid:C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:62:1f:fc:5b:a5:32:10:63:00:8c:93:2a:62:ff:20:cc:f8:
         66:49:4a:be:1e:0f:39:aa:55:37:01:8e:eb:c1:f9:73:1f:06:
         19:4a:96:c2:a9:97:e9:94:ef:df:4b:25:ce:a0:06:fb:6a:0a:
         5d:75:84:e4:ea:22:0d:a4:a7:dc:66:9d:a6:90:1b:3b:75:42:
         eb:a9:86:30:98:35:59:33:9a:0d:66:b4:16:22:08:0b:76:75:
         3d:23:62:0b:43:5f:de:b8:66:0c:2e:39:de:3f:5f:0a:26:a4:
         e4:5d:c6:7d:c9:33:8e:9a:f5:b9:80:ca:98:eb:cf:1c:ae:af:
         69:72:b3:7d:53:26:d9:7d:3b:3a:9e:cf:0e:ab:93:52:a9:60:
         42:b0:5a:45:2c:1f:86:5e:61:19:a4:ef:3b:47:cb:3b:76:98:
         3a:3c:8f:6b:46:63:6c:5b:23:f9:67:5e:b7:53:e6:bb:1a:a0:
         32:aa:ee:91:97:2a:06:a7:d6:c5:67:74:cb:fa:5e:e0:9c:3a:
         6f:6d:b2:b8:3e:56:45:a8:dc:03:d0:ab:29:7d:b9:f4:2e:61:
         c5:02:96:66:13:e3:1d:2a:0b:04:0f:05:51:22:b4:f3:74:00:
         63:9c:64:31:77:6e:ce:1e:e2:c6:3f:f3:9b:5c:6e:30:23:57:
         c7:09:61:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:34:45 2025 by rpki-client