RPKI Manifest
Location: rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft (download)

Subject key identifier:   C6:4F:60:FF:51:75:19:36:8E:7F:E7:33:05:0E:59:20:22:63:02:68
Authority key identifier: 0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
Files:
    1: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
	hash XehpXA2GSN+Erw1pMMFW28X+j3Xz4WZ37Y+Br5dxPzU=
    2: mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
	hash R66OXj3Pbc4F5WVn5stkus5uD0MKRpCTF24ivOTi7Jw=

--
$ test-mft -p rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 185 (0xb9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=apnic-rpki-root-iana-origin
        Validity
            Not Before: Feb 22 22:41:00 2021 GMT
            Not After : Apr  1 22:41:00 2021 GMT
        Subject: CN=603432fd-8cbb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:3e:88:2d:25:e3:7d:8f:ad:c9:5b:6b:91:0c:
                    74:f4:a4:b3:5e:7d:ed:5a:80:b9:55:5f:ab:04:71:
                    92:17:9a:c3:2c:5a:eb:fa:d0:78:c5:ca:be:ab:61:
                    01:03:a0:62:a4:3e:82:d5:c6:90:31:05:18:c2:99:
                    08:e1:87:c5:f7:99:1b:73:73:71:f1:31:56:63:d7:
                    43:0e:06:73:07:0e:6f:db:08:b8:36:df:e7:84:2a:
                    30:bb:90:96:a5:cd:0e:12:8a:90:df:49:f4:2f:4a:
                    43:44:54:b7:e4:87:77:8b:43:fa:2f:9d:cf:80:ac:
                    d7:88:a0:ed:99:eb:ac:63:06:10:6d:b0:dc:79:1c:
                    c7:1a:69:8b:e9:71:44:7d:d6:63:d6:6c:36:90:29:
                    6a:52:52:61:68:51:6e:ef:e0:8a:65:af:76:6a:42:
                    e2:58:17:fc:c9:8f:bd:08:37:91:2d:64:ba:95:03:
                    2b:f6:e8:85:31:31:0d:10:8a:42:00:89:7e:cc:28:
                    cc:a6:f5:06:d2:ab:21:c3:70:92:12:82:2a:46:c0:
                    b3:4a:0a:d0:ae:02:91:b1:c9:03:5b:f4:b8:fc:68:
                    6c:ed:ee:63:a3:fd:48:74:34:1f:a9:74:db:72:43:
                    f4:c2:66:9d:5f:2c:24:d1:f0:a3:01:85:b8:c6:4d:
                    37:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                C6:4F:60:FF:51:75:19:36:8E:7F:E7:33:05:0E:59:20:22:63:02:68
            X509v3 Authority Key Identifier: 
                keyid:0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer

            X509v3 Certificate Policies: critical
                Policy: 1.3.6.1.5.5.7.14.2
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                1.3.6.1.5.5.7.48.11 - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft

            sbgp-autonomousSysNum: critical
                0.....
            sbgp-ipAddrBlock: critical
                0.0.......0.......
    Signature Algorithm: sha256WithRSAEncryption
         76:2e:95:78:13:3b:e8:d1:88:ea:84:86:86:e4:a6:50:38:9a:
         44:c3:6b:3d:91:4e:81:03:60:f6:18:a4:4a:87:fe:e9:d7:e7:
         36:18:a7:52:ec:38:b2:e1:49:82:42:61:38:df:50:e0:90:5c:
         17:ca:d0:68:47:03:ba:5b:67:36:f7:a5:51:13:50:0d:0a:f8:
         96:dc:ea:b3:c6:71:69:40:30:27:b5:ea:03:f9:14:01:a6:74:
         c2:35:5a:b6:3d:a1:b0:3d:15:18:f7:ae:c9:aa:84:2a:bc:2a:
         c4:1a:ce:b6:9a:d3:74:ab:82:5f:13:48:8d:5d:d9:59:4b:33:
         5d:21:ed:c1:4c:8a:dd:e0:96:0c:10:d2:95:93:ef:b5:8a:f3:
         a1:7c:57:fd:3a:a9:65:c7:ba:44:88:56:3f:e5:e1:f1:38:d4:
         67:7e:bc:28:64:3d:f9:33:a3:54:fe:f2:24:0a:25:d0:44:f5:
         4d:cb:e8:09:c2:67:5b:36:03:96:65:53:00:59:18:8a:ea:57:
         02:0c:cf:fc:b7:ba:8d:18:fa:69:87:2c:79:ef:3b:a8:cc:8a:
         9d:d8:5d:5e:4e:25:f7:14:69:c2:a6:8d:18:40:7e:7b:ae:8f:
         ae:3a:23:ff:a5:67:06:65:20:99:93:07:b5:3f:f4:33:23:b7:
         72:a9:6c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Wed Mar 3 03:30:01 2021 by LibreSSL & rpki-client.