Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
File:                     2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json)
Hash identifier:          zSVW43yZVtGJMNCFtP73ZPpR2c7oHo5A2prgKJfwFuU=
Subject key identifier:   05:50:DF:2B:0F:9D:A2:60:38:EF:D8:6B:89:28:E9:9A:31:62:CE:7B
Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7
Certificate issuer:       /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
Certificate serial:       01AD
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
Manifest number:          01A5
Signing time:             Fri 25 Jul 2025 03:27:57 +0000
Manifest this update:     Fri 25 Jul 2025 03:27:57 +0000
Manifest next update:     Fri 01 Aug 2025 03:27:57 +0000
Files and hashes:         1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: 3Gw8bUeuZWQULogfWbboRKsY14aWVoSJl4B1K0p01JE=)
                          2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=)
                          3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl
                          rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 03:27:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 429 (0x1ad)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
        Validity
            Not Before: Jul 25 03:27:57 2025 GMT
            Not After : Aug  1 03:27:57 2025 GMT
        Subject: CN=6882f9bd-3b0e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:5a:61:66:6e:ff:1b:e3:5f:59:79:bb:f9:70:
                    c5:0b:5c:0e:b8:1e:9c:15:fe:5b:5a:44:28:3b:2c:
                    a1:1c:1a:92:ac:75:df:03:5b:81:eb:e4:a3:fa:f4:
                    a5:83:c6:05:86:4e:89:38:ed:88:4f:da:af:1c:6d:
                    32:47:a7:5b:2c:9c:98:ce:9e:61:74:89:c8:a0:4b:
                    2b:4f:d9:8d:6d:9c:29:50:9e:15:49:4b:5e:94:3d:
                    23:7a:ff:40:70:e1:bf:10:58:f4:70:42:5d:4a:c3:
                    ef:df:c7:f3:f0:fa:38:be:f1:ab:46:36:98:ee:ca:
                    5a:e4:e0:e1:82:50:b9:b1:f7:5b:61:1b:a1:b4:d4:
                    91:d2:33:4d:39:af:f8:33:64:02:a5:04:c7:ca:95:
                    5d:cc:5f:d6:d4:1d:63:b8:7b:7c:13:c8:61:6b:6c:
                    6f:44:ba:21:53:de:ca:48:da:1e:ed:88:ac:e3:95:
                    dc:c4:bf:92:b9:69:52:cd:42:0d:69:22:d7:2b:7f:
                    27:5f:86:8e:91:f4:7b:01:f8:d0:b6:4f:6f:4f:73:
                    50:10:5b:87:e7:a1:d3:c8:76:e1:b3:e7:d4:a1:9e:
                    1e:e2:41:41:64:b1:23:e8:90:22:ff:06:17:90:9d:
                    85:6e:53:76:ac:96:ce:dc:39:de:fc:d3:10:98:b4:
                    03:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:50:DF:2B:0F:9D:A2:60:38:EF:D8:6B:89:28:E9:9A:31:62:CE:7B
            X509v3 Authority Key Identifier:
                keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:64:41:bf:c1:39:59:98:7e:f5:59:d0:3d:91:c1:0a:64:f9:
         40:5b:04:d2:fd:d4:14:1d:e7:3c:be:19:b9:5c:4e:2c:44:d2:
         5e:34:99:4d:0d:06:31:81:68:33:a2:bb:ff:5b:30:f6:d2:0f:
         c6:05:92:83:e2:7f:57:34:05:0e:30:8b:bc:37:33:7d:b1:78:
         37:48:3b:b2:d2:10:8b:e7:2f:3e:fa:ad:c1:bb:1e:8b:6d:96:
         5e:90:d5:3f:fc:c0:46:77:b2:82:c4:a0:f6:5b:92:ab:d5:43:
         d0:c0:ab:71:89:c4:7a:47:2b:df:97:8e:c2:27:61:e1:a6:56:
         2c:65:4f:1f:0b:55:14:5e:61:bd:d5:76:c5:e2:a6:55:b6:fb:
         52:64:0f:bc:60:04:c9:e6:dd:dc:25:4e:89:b0:ab:9f:ba:ce:
         17:7c:38:75:4d:c2:77:84:ad:64:9b:74:41:29:c2:41:91:e5:
         f8:7c:8a:57:6b:08:d0:63:6a:29:d2:03:18:1d:38:c3:4f:95:
         76:b7:1a:36:7f:db:d7:7d:5e:90:3b:b7:df:19:7b:fd:00:b4:
         3b:df:9b:5b:bb:ee:90:41:06:bb:71:df:0a:10:f9:36:13:e5:
         db:71:e5:94:58:37:bc:36:6c:3e:52:5d:47:9f:be:6c:b0:ba:
         6e:b8:71:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 01:52:45 2025 by rpki-client