Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft
File:                     L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json)
Hash identifier:          0VqLijkuEjMes4zJ055V4ph3kW9glMTlgzxoj76Nwtk=
Subject key identifier:   19:F3:E3:F7:47:71:A0:16:6B:00:1C:FC:47:59:E7:7A:C4:D2:91:8E
Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59
Certificate issuer:       /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59
Certificate serial:       09BB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft
Manifest number:          09B5
Signing time:             Thu 24 Jul 2025 20:10:27 +0000
Manifest this update:     Thu 24 Jul 2025 20:10:26 +0000
Manifest next update:     Thu 31 Jul 2025 20:10:26 +0000
Files and hashes:         1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: esk+vbnx9kVM87zrWykAEKIwz9+ADQefg6jVak0NXHU=)
                          2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl
                          rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 20:10:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2491 (0x9bb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59
        Validity
            Not Before: Jul 24 20:10:26 2025 GMT
            Not After : Jul 31 20:10:26 2025 GMT
        Subject: CN=68829333-5916
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:dc:d2:99:de:de:65:4b:65:13:79:d1:e2:7e:
                    90:e8:ba:52:b8:a7:5d:07:79:4a:26:dd:58:5a:89:
                    d8:a5:2f:16:d4:d4:ea:36:21:9c:36:9b:f1:dd:de:
                    1d:74:1b:61:8b:4a:e3:1f:ef:b7:45:1c:2d:d9:f9:
                    3e:50:9c:37:24:bb:15:28:e3:96:34:03:e6:4e:71:
                    6d:db:57:be:d0:6a:4c:10:a0:b1:d3:6a:50:6d:9c:
                    a5:b9:42:6e:10:f2:f1:bd:57:9e:17:94:cf:9c:91:
                    a2:f5:15:e2:a7:a2:45:6e:69:9d:e9:3c:c3:7f:7a:
                    49:18:dd:1f:94:39:8b:9b:0d:e6:21:8c:a8:e2:d1:
                    92:b1:10:fe:f4:b6:7b:fc:c1:70:46:1d:8b:ed:ee:
                    0e:10:e2:d7:c0:d5:45:e4:10:bc:d1:1f:d0:7c:61:
                    fe:f6:1d:07:81:26:66:33:c6:18:a8:fe:66:9a:1a:
                    44:e4:07:b6:b0:d4:09:ef:12:db:15:41:59:dc:ee:
                    73:7f:1d:c8:93:da:06:46:98:37:18:e0:f7:04:c3:
                    e5:b7:e6:32:4c:42:c1:a0:e6:83:10:38:a0:e3:57:
                    b3:a0:7d:43:d1:41:d0:92:6e:6f:37:52:23:41:53:
                    26:0c:0b:c0:7f:f0:ff:b1:91:d8:33:de:10:ab:a5:
                    82:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:F3:E3:F7:47:71:A0:16:6B:00:1C:FC:47:59:E7:7A:C4:D2:91:8E
            X509v3 Authority Key Identifier:
                keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:ca:25:7c:c2:61:92:48:ed:53:4a:a8:cb:5b:8a:90:3e:04:
         41:fa:eb:aa:3f:3c:5e:6e:56:24:d2:8c:b5:d4:bc:4d:95:26:
         bc:c4:00:5a:e7:71:75:31:52:8e:78:45:b2:7b:2f:44:16:57:
         b3:d3:86:84:09:a7:6d:24:a4:ed:ab:25:c0:b4:f3:5d:30:89:
         a5:69:a4:5b:3e:bc:3c:0a:81:6b:a0:24:fe:ed:64:bd:b7:35:
         37:1b:b3:d3:1d:32:03:e4:c4:1f:51:95:19:45:40:43:1f:df:
         61:ca:ba:4e:fb:ca:bd:ba:31:2d:99:1b:18:11:2c:03:5c:90:
         94:99:ef:b7:93:8b:79:6a:01:87:26:c4:73:8f:0d:e4:f9:ec:
         d9:06:64:7e:d7:e7:de:1b:68:46:d1:ff:af:3b:c3:53:54:c8:
         f3:b9:d3:5c:7f:5d:72:b8:32:3f:1d:3d:3a:29:52:24:b7:83:
         c0:b7:2b:e0:3f:12:ef:c6:8f:a0:be:b5:af:10:01:c4:5b:0c:
         ff:b7:6f:31:c6:dd:21:25:8d:f0:aa:e9:f5:15:84:ac:40:d7:
         cf:fd:67:c1:24:2a:55:17:cd:9d:10:02:02:50:8e:0f:64:df:
         de:c2:a6:fc:90:7b:78:c5:d2:89:71:2b:f9:b2:5e:e5:85:48:
         b3:70:2f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 01:58:05 2025 by rpki-client