Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
File:                     i16Our4JofST0QJTwaO5OTm_yoo.mft (raw, json)
Hash identifier:          vlJk+zdKeNC1JCAiACiKQtN5QeL+eOhvqd3TEb2oZtc=
Subject key identifier:   6F:9D:AF:E5:9D:DF:03:D8:BC:9C:A4:41:E0:B0:FA:4B:46:72:E4:FF
Authority key identifier: 8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A
Certificate issuer:       /CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A
Certificate serial:       99
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
Manifest number:          98
Signing time:             Fri 25 Jul 2025 06:40:44 +0000
Manifest this update:     Fri 25 Jul 2025 06:40:44 +0000
Manifest next update:     Fri 01 Aug 2025 06:40:44 +0000
Files and hashes:         1: i16Our4JofST0QJTwaO5OTm_yoo.crl (hash: AEsTk3W9fYvgBTkNfPgi3B3kuSDWQED2pkPIQnwNbQA=)
                          2: D5A3117E85DF11EFA2C33754C4F9AE02.roa (hash: DRt8K6jlAria6yTB9gWZIhOKN+7LEqAGx7rHUxgtPQs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl
                          rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 06:40:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 153 (0x99)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91336DF, serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A
        Validity
            Not Before: Jul 25 06:40:44 2025 GMT
            Not After : Aug  1 06:40:44 2025 GMT
        Subject: CN=688326ec-db63
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f7:99:8a:ca:85:9e:19:b4:dc:1e:64:38:20:1e:
                    d0:84:2d:7f:4c:a7:e6:3c:52:3d:d6:29:c3:b7:9b:
                    2a:2b:b7:91:7a:09:00:ca:f1:6e:75:d5:29:7c:69:
                    7f:5d:bd:85:90:03:25:0b:24:81:2c:8c:21:91:5e:
                    0f:d9:63:48:27:aa:67:f5:be:61:91:00:51:1c:e5:
                    ec:14:a1:59:28:02:d9:35:92:45:d3:40:f0:bd:9c:
                    7a:57:b9:6b:28:c9:3d:a9:1d:52:9c:01:bb:95:c1:
                    4f:16:28:df:1a:c8:2c:d7:f7:a6:2a:49:b7:cb:1d:
                    63:ef:42:96:b7:da:fc:47:e4:1e:33:44:22:a6:66:
                    81:82:3d:b3:4c:ea:ca:04:d5:c0:1c:91:21:b1:30:
                    21:09:c0:16:63:83:8b:8f:88:eb:9e:24:06:78:9c:
                    33:65:37:5e:9a:8d:dd:ad:26:c5:44:b0:04:0e:3c:
                    40:34:df:89:07:ed:fc:82:9c:f4:4c:b4:77:73:7e:
                    3e:d8:af:e3:64:1f:93:b3:df:26:75:b3:30:e8:e5:
                    9d:98:89:4b:16:fa:82:c6:62:8a:0e:37:d9:20:4c:
                    5a:9a:0e:2a:9f:f3:7c:2c:d6:96:65:e6:74:94:2d:
                    54:9c:83:d5:c7:44:54:51:2c:68:db:29:35:0f:42:
                    73:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:9D:AF:E5:9D:DF:03:D8:BC:9C:A4:41:E0:B0:FA:4B:46:72:E4:FF
            X509v3 Authority Key Identifier:
                keyid:8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:20:92:88:42:bb:d4:20:a4:81:ef:d2:0a:f9:c4:22:bd:fe:
         81:08:49:85:b2:73:bf:50:7a:d2:cd:5c:0b:b6:a9:35:5b:07:
         d0:f9:11:4d:b1:32:57:3f:d4:f9:e1:c7:8e:22:bd:e6:ad:96:
         b8:f5:19:b7:78:70:72:ff:2f:80:ff:57:d3:8a:13:9f:3c:cf:
         07:8e:8c:fc:5d:92:9e:a9:f7:6d:9d:fc:14:8e:02:b4:73:57:
         b9:1a:36:17:1c:fb:2c:93:65:3a:54:56:b1:08:10:99:95:c1:
         6d:2f:19:6f:c5:30:64:bd:db:2a:15:76:92:ee:a5:69:a0:92:
         a2:7e:9f:90:07:14:3f:d4:a0:ea:94:76:a2:34:81:6b:1c:a4:
         cf:66:a5:27:c6:19:61:64:ee:65:94:19:46:9a:64:8e:eb:88:
         6a:43:77:de:9f:b2:66:04:ad:24:b9:31:ca:d9:d3:df:af:1d:
         8d:53:71:8f:f1:58:fe:18:a4:bd:c7:fb:00:33:77:c0:0e:9b:
         64:10:21:f9:39:92:94:33:60:3e:4a:6b:3e:a4:52:2f:bf:3d:
         11:7d:ca:c2:02:82:e2:f3:cf:d5:95:b3:b9:f3:02:8a:71:e6:
         e5:37:f4:ae:3a:d3:7e:71:53:2f:37:ef:27:00:8c:58:b0:f6:
         e1:ee:b3:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:04:25 2025 by rpki-client