Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
File:                     0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json)
Hash identifier:          c761GUb3qw3+tW+mpXELzLvHUugfvCMC/eXBRnD7tEw=
Subject key identifier:   56:1D:F9:44:CC:F8:4C:70:BA:0D:9E:46:DA:EA:5F:36:FA:A3:94:54
Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51
Certificate issuer:       /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51
Certificate serial:       45
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
Manifest number:          44
Signing time:             Wed 23 Jul 2025 07:48:05 +0000
Manifest this update:     Wed 23 Jul 2025 07:48:04 +0000
Manifest next update:     Wed 30 Jul 2025 07:48:04 +0000
Files and hashes:         1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: n/LgxUjPvAZIYUfaU9DcV1xnOhbSVkjA19jz3XL2dnk=)
                          2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: wwcr+8+DOyZmloRteEL56x1j3vM+7vfdbP5INKVgy7U=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl
                          rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 07:48:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 69 (0x45)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51
        Validity
            Not Before: Jul 23 07:48:04 2025 GMT
            Not After : Jul 30 07:48:04 2025 GMT
        Subject: CN=688093b5-6ab2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:09:70:6a:a7:eb:49:25:d1:80:71:f5:cd:25:
                    e9:27:64:df:b9:96:4b:48:14:bc:e0:59:96:33:57:
                    60:12:88:c9:5b:8e:c2:9d:eb:90:cf:6b:c6:76:0a:
                    65:7b:df:6d:12:41:cc:bb:0a:29:cb:9e:d4:06:af:
                    98:f7:c6:51:ab:1f:3e:7b:33:11:11:10:3c:ae:ff:
                    8f:ec:11:7a:f4:8b:8a:3e:6a:16:3c:fb:c0:e5:52:
                    79:d5:2f:9c:aa:9d:cf:e9:7c:97:32:c6:02:6e:ee:
                    d0:44:45:68:84:20:47:b5:63:bc:d8:08:f6:4b:29:
                    a2:ab:82:3d:c6:57:39:66:3a:4f:83:93:98:81:9e:
                    83:d6:26:03:04:e4:8a:e3:f7:9b:d2:28:79:43:37:
                    24:c2:f3:2d:1d:7d:9e:e8:04:cb:e8:73:44:b4:13:
                    d6:64:15:59:7a:d5:4a:a2:4d:b2:61:13:25:8b:a8:
                    37:62:fb:f0:89:c6:7b:e8:8a:d0:35:60:92:ab:b8:
                    77:b5:4a:bf:fc:9b:43:f4:48:3a:3f:16:af:e4:da:
                    62:75:22:33:da:0c:a7:68:f2:aa:f5:b4:a5:b4:e7:
                    5c:01:b5:31:37:54:d9:ba:c9:7f:17:3e:a2:10:6b:
                    f2:5f:1f:ad:c3:1b:15:27:02:34:19:a4:e7:c6:fe:
                    35:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:1D:F9:44:CC:F8:4C:70:BA:0D:9E:46:DA:EA:5F:36:FA:A3:94:54
            X509v3 Authority Key Identifier:
                keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:8a:b5:5b:44:96:3f:be:88:f2:66:2d:c7:c6:61:ab:27:69:
         d9:1a:46:c2:ee:80:5e:c8:1b:04:93:4c:96:72:9c:9d:cb:f2:
         09:d4:f8:64:e6:08:fb:46:d9:25:ff:c4:49:44:ae:a3:79:53:
         ea:68:e1:b5:46:b9:89:6d:f5:30:a1:fc:e0:15:7d:44:14:2d:
         ea:04:11:e2:db:4d:9b:60:53:da:08:19:df:00:b7:0c:15:ed:
         9a:3d:ca:d2:35:4b:e7:00:41:8b:cc:9d:fd:06:1b:48:8e:58:
         2a:09:62:46:d7:d3:a5:0c:cf:16:29:00:ec:e5:6a:17:a6:94:
         9d:b6:ff:49:9d:0c:d3:ad:72:3e:7f:58:a7:9e:66:98:30:da:
         33:b5:63:ca:b0:95:78:ca:ae:88:91:9e:7e:ec:e4:22:dc:d4:
         96:1d:a1:44:e0:a0:11:43:11:9a:1a:49:d8:d3:c6:94:dd:82:
         51:1f:9b:6d:c1:1d:c4:9e:67:38:62:a6:37:f7:28:41:f6:38:
         d2:31:17:01:ff:41:2a:d7:43:23:8b:84:e3:82:c1:5a:aa:d3:
         8f:90:53:21:63:0a:b1:19:87:62:a2:16:0f:04:49:95:e2:27:
         ca:b8:0c:1f:e4:8e:17:c2:e7:90:08:77:e8:6b:8c:00:86:15:
         b4:06:aa:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 08:21:09 2025 by rpki-client