Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
File:                     wOMbX0XP5SusXO243MahoyL0cF0.mft (raw, json)
Hash identifier:          DlPrsUj+hzggX+rLgfaFRSY6OC7dgV5XMdLfKuFthuI=
Subject key identifier:   87:55:AE:33:50:37:FC:68:91:D7:C9:36:7F:C0:42:59:48:52:23:97
Authority key identifier: C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D
Certificate issuer:       /CN=A9196F7C/serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D
Certificate serial:       0108
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
Manifest number:          0100
Signing time:             Fri 25 Jul 2025 05:35:15 +0000
Manifest this update:     Fri 25 Jul 2025 05:35:15 +0000
Manifest next update:     Fri 01 Aug 2025 05:35:15 +0000
Files and hashes:         1: wOMbX0XP5SusXO243MahoyL0cF0.crl (hash: EXC8x9pvmVPaEjzolIz1Zk2Pcb+9+6wK19vUi2s9P5o=)
                          2: E37CCF70718911EFA0C30257C4F9AE02.roa (hash: /gAZLPIK5N+oUjrTM1zm3bFOQvpgh0r/tqZUpI/jzmU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl
                          rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 05:35:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 264 (0x108)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9196F7C, serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D
        Validity
            Not Before: Jul 25 05:35:15 2025 GMT
            Not After : Aug  1 05:35:15 2025 GMT
        Subject: CN=68831793-3813
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:c0:ed:e9:1a:76:33:84:35:79:64:df:64:8e:
                    ad:61:8a:75:7e:27:dd:25:e4:5d:24:63:2b:18:54:
                    08:5f:07:51:4f:36:29:91:21:1d:70:3f:ae:b9:b2:
                    23:33:17:50:ac:9d:df:c0:f0:62:4f:65:ec:3e:8a:
                    a0:20:5f:4f:cf:d7:27:67:f6:88:0c:d0:fa:22:cf:
                    43:fa:ae:66:9a:f5:91:f6:11:92:8c:75:18:52:37:
                    3b:b3:f1:a4:e8:20:f9:17:83:69:7a:d5:92:23:eb:
                    d4:07:33:da:95:c4:4d:61:b5:91:f5:3e:d3:4c:ef:
                    6a:43:11:06:db:e9:2c:1d:28:ba:a3:e6:da:7c:98:
                    c4:cf:16:26:3d:a8:0d:43:26:6d:a0:57:68:42:20:
                    4a:8b:c8:95:f1:44:18:75:05:45:eb:b4:5d:3d:b1:
                    38:13:4a:bd:cf:84:a7:02:26:38:8f:c2:d2:b4:4a:
                    28:24:6f:c9:f0:31:f1:95:97:a9:00:24:6a:70:0c:
                    85:f5:fc:55:90:9a:67:4c:5c:7f:0d:f6:08:9b:0c:
                    75:90:06:c6:58:2a:47:97:63:02:af:74:c3:16:02:
                    1a:af:e8:15:8b:5d:6f:ea:c9:8b:34:a4:39:fb:45:
                    da:be:91:6c:a4:3d:f9:cc:11:74:77:d0:fa:86:3e:
                    2b:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:55:AE:33:50:37:FC:68:91:D7:C9:36:7F:C0:42:59:48:52:23:97
            X509v3 Authority Key Identifier:
                keyid:C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:27:95:3b:0b:71:b3:20:97:7c:3e:ad:77:ba:ac:d8:c8:11:
         b8:17:41:ce:fd:3b:ae:71:97:ef:d1:a4:b7:b0:6f:84:b7:13:
         7c:68:0f:8e:a0:9a:ed:21:47:30:2d:bd:6e:82:62:11:fd:03:
         1b:2f:ac:7f:c0:d9:96:92:be:a5:4b:2d:50:98:f2:40:e3:15:
         bd:d0:40:76:7b:ef:35:6a:a9:fe:38:36:68:5b:02:50:27:c4:
         b9:6b:47:a3:3c:d2:0f:28:d9:15:34:46:5e:cd:0a:bd:45:d6:
         07:0f:1f:49:10:7c:52:19:1b:e6:4f:02:de:65:6c:7a:28:7c:
         90:5c:2f:98:27:7f:6f:16:c7:92:61:c9:f4:d3:0b:58:4c:3a:
         66:be:92:ca:78:53:38:f4:43:10:74:ce:95:62:ae:e6:fa:08:
         7b:41:6f:44:e3:00:b0:01:d0:0b:cf:69:58:47:b4:0f:f6:5a:
         11:87:fa:b7:59:02:d8:7d:97:8d:2d:55:8c:6a:b5:40:f2:e7:
         ac:b3:f1:2c:8d:bd:ab:9f:bc:91:f5:58:eb:b1:28:02:0d:49:
         fe:45:62:98:af:0e:e8:28:4a:43:19:95:ab:09:96:68:dc:fe:
         5b:cb:eb:ea:8a:79:83:b3:c5:25:a5:c2:d5:ef:a5:90:ef:54:
         86:9a:e9:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:04:35 2025 by rpki-client