Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
File:                     i16Our4JofST0QJTwaO5OTm_yoo.mft (raw, json)
Hash identifier:          I5RPMcSwThxdPNHS9Hl8Q2g9vAgwS90jLljoa407mfg=
Subject key identifier:   28:F6:F7:26:74:D1:AA:A7:3F:A3:B1:86:69:EC:7B:F2:A6:1B:5D:71
Authority key identifier: 8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A
Certificate issuer:       /CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A
Certificate serial:       97
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
Manifest number:          96
Signing time:             Mon 21 Jul 2025 06:32:27 +0000
Manifest this update:     Mon 21 Jul 2025 06:32:26 +0000
Manifest next update:     Mon 28 Jul 2025 06:32:26 +0000
Files and hashes:         1: i16Our4JofST0QJTwaO5OTm_yoo.crl (hash: Knc/0wH5IKiAkKMJyKign4IIuAAyMgH4ydzoncWwEqw=)
                          2: D5A3117E85DF11EFA2C33754C4F9AE02.roa (hash: DRt8K6jlAria6yTB9gWZIhOKN+7LEqAGx7rHUxgtPQs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl
                          rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 06:32:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 151 (0x97)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91336DF, serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A
        Validity
            Not Before: Jul 21 06:32:26 2025 GMT
            Not After : Jul 28 06:32:26 2025 GMT
        Subject: CN=687ddefa-6a8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:04:3c:a0:bc:c5:62:7e:f5:9a:05:1e:1c:73:
                    61:5c:39:3d:13:9c:f3:ac:fa:a6:2d:e8:39:fe:c1:
                    ff:bb:20:a3:66:8c:b5:54:51:fe:01:1c:30:eb:18:
                    b5:ac:af:20:80:e9:41:5a:c9:cd:b3:fe:26:08:0c:
                    ef:2b:88:b5:de:6f:ce:24:5e:f7:0b:09:1a:14:f7:
                    a3:6d:45:b2:9b:8c:4b:d0:36:01:1e:c5:99:4a:05:
                    dc:0d:c2:8a:c4:c3:96:d8:ba:35:37:c0:1d:4d:17:
                    57:82:d8:00:dc:af:1d:d7:a5:de:95:fa:7c:55:90:
                    25:59:8d:0d:5c:74:e9:46:76:e3:b2:74:50:91:11:
                    f2:89:8c:77:7f:b3:db:38:40:ff:55:88:0d:43:77:
                    12:f9:11:37:a5:82:86:36:dd:c0:7b:a9:a1:44:87:
                    4c:1b:de:81:8a:76:d4:37:e6:d4:80:f2:76:1c:8d:
                    b6:af:22:9f:1b:a8:2a:90:7c:a2:fe:ed:8a:cf:48:
                    4a:77:f0:02:15:e5:55:91:1a:93:1d:8b:09:11:7e:
                    18:d8:fd:b3:4b:fb:ec:44:23:61:e1:f0:1f:44:36:
                    9f:01:76:a3:bb:58:5c:98:7a:3a:8e:1c:f0:74:b0:
                    82:6a:4f:4f:7b:91:fe:cb:f5:f5:57:a0:a0:43:1b:
                    b9:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:F6:F7:26:74:D1:AA:A7:3F:A3:B1:86:69:EC:7B:F2:A6:1B:5D:71
            X509v3 Authority Key Identifier:
                keyid:8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:e3:4b:31:8e:3e:79:b0:5a:b3:ee:e4:91:9f:9c:44:12:cf:
         0c:44:90:42:a2:90:4c:5e:f1:d5:e3:1f:e0:a9:6b:c3:52:18:
         b0:ff:bd:4b:81:02:cc:03:81:c0:b2:b3:92:ed:e0:ea:6b:a6:
         30:06:d2:19:a5:44:91:3a:88:75:98:79:55:9c:fd:f5:f0:ad:
         89:ce:91:b8:d0:ce:ec:97:8d:da:bd:6b:5a:f0:72:d7:93:65:
         2d:d1:f7:f6:85:1d:f3:53:46:35:85:88:dd:9e:18:6d:29:75:
         fd:86:df:08:e2:3c:73:2d:17:db:d2:66:16:c1:5f:70:d2:1b:
         ba:86:af:48:09:3b:d3:9f:0a:3a:76:ce:8e:ff:43:3a:a5:8e:
         27:1c:6f:f9:1e:cd:3c:f9:e1:c6:e8:ee:1e:31:1a:c6:38:93:
         98:97:49:08:69:3e:df:0c:cc:4a:e3:aa:da:a6:b7:e3:2e:73:
         c3:66:fc:86:82:10:b1:c5:3e:dd:79:74:10:61:65:ee:ae:15:
         38:2b:52:10:d3:ed:0c:2b:ef:f9:a4:e6:02:64:7c:be:e6:c5:
         c4:de:45:bb:94:b2:36:0a:77:45:66:85:2e:9a:fb:2c:fc:58:
         f2:c8:b5:49:f5:0f:e8:5a:7b:13:25:5f:3c:c9:be:5b:e1:0d:
         25:97:3f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 12:19:17 2025 by rpki-client