Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft
File:                     L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json)
Hash identifier:          AVlTJllPFTF1NgdBu8fkmywIjqD1Vild8HLUkEt/plM=
Subject key identifier:   98:90:C2:65:B7:0D:F5:EA:5B:34:FA:A6:91:47:7E:17:DA:02:A1:7F
Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59
Certificate issuer:       /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59
Certificate serial:       09BA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft
Manifest number:          09B4
Signing time:             Tue 22 Jul 2025 20:15:47 +0000
Manifest this update:     Tue 22 Jul 2025 20:15:47 +0000
Manifest next update:     Tue 29 Jul 2025 20:15:47 +0000
Files and hashes:         1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: w2b5LC9X28Gp7xiRwpotY9Pz5w02mRcfeoDKMoR3zcY=)
                          2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl
                          rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 20:15:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2490 (0x9ba)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59
        Validity
            Not Before: Jul 22 20:15:47 2025 GMT
            Not After : Jul 29 20:15:47 2025 GMT
        Subject: CN=687ff173-68b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:9b:47:2d:57:ab:9e:35:ea:f3:c3:7f:e1:2e:
                    4c:7c:63:7b:09:59:b6:20:69:ea:09:08:42:6f:86:
                    33:06:2e:73:ae:5d:39:31:18:1b:78:82:cc:bb:8a:
                    e5:bd:4b:5c:07:c1:86:a0:e1:69:d0:b5:0a:99:d5:
                    ce:47:12:ac:10:e9:a9:68:ce:84:97:9b:51:bd:e0:
                    fc:12:2e:6a:8a:84:b8:cb:f2:e5:2a:1e:fb:41:9d:
                    2c:31:0c:9d:7b:ad:83:eb:85:59:d9:14:6f:43:5b:
                    54:e3:a9:40:e5:e0:29:57:35:7c:70:58:4a:f0:ff:
                    ed:3d:7e:16:65:a6:90:a1:f5:7b:7e:66:c5:f5:57:
                    e5:ed:08:28:f1:cc:99:16:1e:39:c5:50:a5:b1:83:
                    6c:f3:b1:0a:2b:45:e1:b4:03:31:81:7a:07:16:f0:
                    75:cc:36:1d:d8:90:f2:30:fe:d9:e5:34:1b:f3:f8:
                    ab:66:1b:2f:14:fa:6a:df:67:21:5a:2f:6f:bb:37:
                    87:5a:ce:3a:40:91:ea:0f:53:86:bb:4e:ea:ca:23:
                    40:9f:88:02:fe:7c:bc:c9:6c:8b:4c:8a:bd:b6:58:
                    5a:80:52:33:34:e7:56:11:ef:0f:2a:d2:5c:d5:34:
                    8d:0c:b4:4a:8c:13:fe:80:21:56:e9:b7:30:23:fb:
                    09:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:90:C2:65:B7:0D:F5:EA:5B:34:FA:A6:91:47:7E:17:DA:02:A1:7F
            X509v3 Authority Key Identifier:
                keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:3d:c0:5d:df:75:7a:18:aa:f2:67:96:9b:9e:0f:6d:b8:e6:
         7c:3b:a1:03:d5:a7:16:bb:37:93:fa:8c:21:5c:35:4d:47:64:
         9b:ec:38:88:cc:d3:07:cc:c8:cd:dd:48:6f:74:28:c1:5f:8b:
         92:47:3f:09:bd:19:70:cc:2d:19:68:d7:7e:ef:e1:52:f0:84:
         34:cb:8c:a9:08:a6:98:01:8e:31:5a:27:fa:c0:76:4a:aa:4e:
         96:07:59:9d:fc:b8:34:18:58:ea:a4:5a:b1:fb:2d:b6:50:01:
         41:5b:76:de:28:3d:af:5c:40:e3:d5:a4:e7:3d:76:b8:58:8a:
         aa:dc:05:28:17:d5:89:94:6d:7e:ef:4d:67:8b:68:ab:a4:48:
         e4:87:60:ed:95:73:28:c9:53:c7:02:83:17:70:77:48:f7:f7:
         c4:a4:d6:02:07:cb:30:0f:0e:a8:15:e3:61:69:5b:b6:ab:bf:
         7d:5d:0a:5f:ab:99:46:de:cd:86:fc:3a:73:27:24:d0:38:12:
         ae:99:ff:6c:68:be:89:51:bb:46:05:c5:cd:0e:7a:d5:5a:2a:
         e7:ed:b5:d8:c5:7c:fc:18:2c:9e:c4:7f:a2:b2:13:ff:e0:54:
         8c:d5:48:c1:2b:a8:45:d8:b9:17:d9:37:68:b7:87:d9:39:54:
         29:46:b8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:31:02 2025 by rpki-client