Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
File:                     wOMbX0XP5SusXO243MahoyL0cF0.mft (raw, json)
Hash identifier:          dGxINcbbLsSwHxY9tUkgZrANgVuwFSiEwPra8JgMWXs=
Subject key identifier:   C2:0A:3C:0A:39:D9:C5:E7:89:80:B9:FE:28:28:B4:E1:3A:F2:3D:AF
Authority key identifier: C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D
Certificate issuer:       /CN=A9196F7C/serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D
Certificate serial:       0107
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
Manifest number:          FF
Signing time:             Wed 23 Jul 2025 05:37:22 +0000
Manifest this update:     Wed 23 Jul 2025 05:37:22 +0000
Manifest next update:     Wed 30 Jul 2025 05:37:22 +0000
Files and hashes:         1: wOMbX0XP5SusXO243MahoyL0cF0.crl (hash: z5ogG8GvU5Oqmj5rGeFfzCFIzEX2JBmhYQvmcpqJ1DE=)
                          2: E37CCF70718911EFA0C30257C4F9AE02.roa (hash: /gAZLPIK5N+oUjrTM1zm3bFOQvpgh0r/tqZUpI/jzmU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl
                          rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 05:37:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 263 (0x107)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9196F7C, serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D
        Validity
            Not Before: Jul 23 05:37:22 2025 GMT
            Not After : Jul 30 05:37:22 2025 GMT
        Subject: CN=68807512-e284
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:ff:66:51:7e:a8:c0:52:fb:04:60:4b:4f:39:
                    25:98:2e:f3:cb:98:2d:8a:94:6b:16:26:fc:79:0d:
                    a8:ca:fb:92:fc:76:4f:62:b8:a1:4c:e5:16:49:e7:
                    a6:4e:50:c1:f7:8f:8e:fa:d7:92:45:30:ea:19:ab:
                    e8:2a:f0:ef:cd:96:d2:ee:2c:bf:19:c1:9f:42:bb:
                    02:73:c2:c9:9d:b8:f3:95:b7:ae:a2:dc:2f:52:59:
                    89:7b:ee:38:80:00:61:4a:b0:b1:0a:f3:31:79:b8:
                    6c:0a:d7:a9:3e:87:11:7f:aa:66:1f:bf:b2:92:40:
                    95:92:e3:7f:40:cc:1b:dd:a5:19:84:0f:8c:26:bb:
                    d1:18:ce:30:5f:79:2e:4a:97:e3:a9:9c:44:7b:69:
                    98:95:fb:97:f6:2e:58:72:67:12:ab:15:06:45:59:
                    ef:8d:b2:db:cf:ac:52:98:c0:ae:2e:8e:c4:db:be:
                    8e:d0:ad:ca:54:9f:a7:97:20:bb:d8:70:5d:3f:0f:
                    eb:35:d6:d2:5f:60:ea:5b:b7:c7:10:f9:7d:88:13:
                    cb:c8:e3:29:91:bd:df:dd:58:3e:0e:db:d4:1d:c2:
                    eb:2e:62:ed:88:d0:de:37:c3:98:7a:ef:82:17:ab:
                    c0:17:f5:24:87:8c:93:50:9f:96:ca:b0:4c:22:43:
                    0c:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:0A:3C:0A:39:D9:C5:E7:89:80:B9:FE:28:28:B4:E1:3A:F2:3D:AF
            X509v3 Authority Key Identifier:
                keyid:C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:a0:0b:5e:36:61:c6:f2:db:74:3d:34:0d:83:90:d7:d2:5f:
         ea:a4:c2:de:15:0a:0e:5b:d5:0d:fb:b9:fb:f3:18:07:6f:ee:
         c3:4b:67:50:c0:48:62:6f:7d:35:d2:21:ac:55:5d:79:5c:fd:
         46:3f:10:ba:88:78:8c:e0:3f:53:16:5a:3d:d1:a4:57:a5:79:
         1e:3a:82:6b:f1:88:f1:4e:7b:38:61:b5:f6:db:40:de:8d:11:
         82:f9:b9:9f:be:b5:23:0b:89:49:fe:8d:38:eb:b3:4d:97:0a:
         40:65:2f:29:bd:57:f6:3f:8d:44:d6:29:bb:21:18:04:3a:8b:
         00:25:16:da:aa:85:eb:5d:3d:f7:f5:d5:ba:b2:86:5d:1d:fe:
         8a:35:99:88:36:a1:6a:f5:b1:9f:d8:94:22:71:c2:f7:b6:6d:
         68:06:8c:90:2a:93:73:14:22:99:3a:09:78:20:49:61:20:06:
         81:f2:4a:52:11:ef:f7:68:d5:0b:74:4c:a7:a4:6a:72:76:f6:
         2a:dd:51:38:f1:1c:4e:8e:f4:83:65:2c:cb:71:bd:16:c9:a1:
         ee:5e:f8:17:a9:7f:d8:8e:67:aa:37:8d:fb:36:de:43:ee:70:
         80:dd:eb:8a:e3:62:40:d6:1a:0d:47:d2:75:70:1c:7e:dc:4d:
         37:e7:98:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:05:31 2025 by rpki-client