Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft
File:                     o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json)
Hash identifier:          R+Wuo5lX7iJoU47y64bdUmKTuNcYDVCYDEsb+2LB9bo=
Subject key identifier:   4B:CC:39:B8:04:60:EC:EC:D3:53:43:8B:47:3F:0E:79:02:CD:C5:0D
Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20
Certificate issuer:       /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920
Certificate serial:       034A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft
Manifest number:          0346
Signing time:             Fri 25 Jul 2025 01:27:12 +0000
Manifest this update:     Fri 25 Jul 2025 01:27:11 +0000
Manifest next update:     Fri 01 Aug 2025 01:27:11 +0000
Files and hashes:         1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: NFH+Qfd384kCuVkHavq2C/8wW0xQzVQYA5E9SjGhsyE=)
                          2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: hSEOk4wSvcqkKWJUmunbhE8NC6T2P49jnE2eWh8/b4M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl
                          rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 01:27:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 842 (0x34a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AFB4B, serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920
        Validity
            Not Before: Jul 25 01:27:11 2025 GMT
            Not After : Aug  1 01:27:11 2025 GMT
        Subject: CN=6882dd70-2483
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:9b:a0:82:10:7d:c6:a4:ea:45:c8:10:38:c3:
                    41:19:b6:30:90:05:4e:da:0d:91:f2:73:59:66:e5:
                    5e:c3:8e:5c:e2:af:68:fe:17:b1:c4:60:6e:63:75:
                    4e:0f:5c:8c:7c:f4:54:cd:b0:eb:ce:dd:79:dd:fe:
                    c6:a5:6c:9c:cb:c5:ea:70:cd:fc:37:dd:d6:45:56:
                    a7:db:b2:68:04:d6:fd:c5:69:26:78:d7:84:0c:ac:
                    42:c1:e4:bc:b1:4b:23:c5:d6:82:94:5f:e7:c7:8a:
                    4a:25:8a:5e:ab:59:2e:83:15:c3:3a:6e:e4:89:74:
                    5c:44:f2:91:fb:de:d2:af:a2:74:ad:18:7f:90:53:
                    fa:1a:5a:17:f4:a0:3e:e8:c7:c3:e9:39:09:b0:61:
                    4c:f3:4a:b0:d2:b6:12:45:5f:af:12:b8:d2:12:46:
                    9d:e9:21:71:25:ab:5e:85:6b:3a:8a:96:ed:eb:cd:
                    b7:1e:3d:0e:bf:3c:d0:e7:ef:a4:5a:a4:05:10:9c:
                    38:eb:19:4f:e4:e3:c6:29:3b:93:b3:f4:f4:b2:a4:
                    b3:bc:bc:4a:c5:d3:e4:1f:2f:a8:19:1c:89:d3:65:
                    22:d9:59:5a:30:37:e0:28:e6:d0:5f:39:e8:b4:b0:
                    e6:9d:58:23:91:ce:77:a0:22:7c:7a:c6:83:e0:71:
                    e0:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:CC:39:B8:04:60:EC:EC:D3:53:43:8B:47:3F:0E:79:02:CD:C5:0D
            X509v3 Authority Key Identifier:
                keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:67:41:f3:66:ae:24:74:8a:1d:c2:93:33:84:3f:57:84:52:
         f9:e6:2a:df:a4:d2:58:4d:e1:5d:5b:db:6f:fd:b6:24:7b:db:
         14:6e:1b:96:f4:48:a9:4c:a1:e3:52:3a:44:ac:4c:80:ec:f9:
         e4:1c:f4:86:95:42:c7:7d:d0:02:af:6e:63:54:97:6f:08:4a:
         71:3d:ce:3d:ac:b9:10:8c:26:39:74:f9:c8:e2:2b:60:92:d9:
         54:fe:ea:3e:f7:dd:0f:bb:5a:97:92:61:82:77:03:fc:f1:ea:
         9b:f6:b9:79:c2:92:25:ee:2c:31:28:8a:54:c8:f7:c9:bf:79:
         1d:1b:c2:f6:aa:86:3d:79:cd:c5:60:91:3b:81:8f:82:9b:e7:
         23:11:d8:4b:86:b9:b4:cb:10:9e:08:9c:c2:61:2e:35:cd:36:
         c7:0f:06:ae:86:49:25:54:43:34:32:22:0e:1b:1e:21:9b:c6:
         9a:50:34:a5:6e:95:da:d2:d7:a4:d0:ec:73:d8:36:50:9f:9e:
         02:d0:14:2a:d8:4d:f9:49:11:e8:70:79:e5:1c:2d:a1:15:48:
         c0:d8:06:84:05:7d:f5:22:ec:4d:3e:76:e4:c2:87:0d:dc:e1:
         5b:2a:70:e2:e6:85:7d:c7:18:96:de:f7:e7:ec:c7:19:8f:b3:
         84:f0:fd:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 01:59:02 2025 by rpki-client