Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft
File:                     ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft (raw, json)
Hash identifier:          6wQOhUUMhxAfvGtHAAVQ5+mMQ6L/xcezrARg8JaFYNw=
Subject key identifier:   84:AB:44:12:5E:3A:17:2D:24:CD:D0:CD:A2:64:48:E9:68:CE:35:36
Authority key identifier: 72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A
Certificate issuer:       /CN=A915D010/serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A
Certificate serial:       0DCC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft
Manifest number:          0DC4
Signing time:             Wed 20 Aug 2025 17:58:33 +0000
Manifest this update:     Wed 20 Aug 2025 17:58:33 +0000
Manifest next update:     Wed 27 Aug 2025 17:58:33 +0000
Files and hashes:         1: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl (hash: glzOmuTMUwtBd8ae2NxOaQoluRN5H3f4jDN0X7WVLDg=)
                          2: FCFEAA74DB9111E9B70EDD2EC4F9AE02.roa (hash: Bv4wN8OF2Bm5se8xe4Mu+kG3hxKKklF4aauYgHDM/QE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl
                          rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 27 Aug 2025 17:58:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3532 (0xdcc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A915D010, serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A
        Validity
            Not Before: Aug 20 17:58:33 2025 GMT
            Not After : Aug 27 17:58:33 2025 GMT
        Subject: CN=68a60cc9-b7ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:b2:ec:d2:ef:bb:3e:b9:eb:33:d6:fc:4d:b5:
                    77:fd:61:55:32:85:7c:f3:a2:16:60:ab:7b:3c:02:
                    ac:87:13:1e:2b:82:4a:7f:ea:2c:28:84:41:47:30:
                    c8:13:5b:2a:7f:5d:06:ab:25:86:f8:06:81:94:a3:
                    cf:0a:41:e1:ad:07:85:79:8a:72:9e:70:21:c3:3a:
                    39:85:00:7b:4a:8e:b2:72:45:a6:2f:51:fb:d7:e9:
                    9e:76:bf:41:a0:70:d0:36:fa:89:5d:4f:86:42:ea:
                    07:6b:47:36:fb:3e:c7:78:98:dc:90:48:f1:0d:f0:
                    6b:01:eb:5f:90:89:d1:4f:1f:50:67:be:b1:16:17:
                    1e:78:b1:50:5d:2b:37:b2:24:f6:ee:0b:bf:bb:d7:
                    9a:88:39:41:f5:a4:e6:52:a0:fb:a1:8a:ee:5f:df:
                    f9:d9:40:b9:2d:fc:0a:f9:be:a8:7e:ca:d7:ae:66:
                    90:50:a3:4f:45:0e:15:7c:f6:26:c6:1c:74:fa:86:
                    1e:8c:28:1e:6c:f1:fa:be:ca:bd:13:81:c3:a3:b3:
                    9f:b5:b3:36:60:4d:e7:a5:b9:1e:bf:85:76:ea:c7:
                    aa:71:5f:e5:fe:b0:81:12:13:d0:3a:6a:52:b9:00:
                    9d:0f:d9:db:b7:ba:0f:50:27:c6:8a:a8:f8:2a:f1:
                    72:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:AB:44:12:5E:3A:17:2D:24:CD:D0:CD:A2:64:48:E9:68:CE:35:36
            X509v3 Authority Key Identifier:
                keyid:72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:9f:8b:81:1d:b5:95:f8:ab:46:52:00:f4:55:43:2c:01:c5:
         be:a4:2c:d3:dc:5b:0a:eb:47:5b:01:2e:af:41:d6:01:6c:6e:
         6b:2a:82:05:00:4e:9d:e0:d6:ff:89:dd:81:b0:c9:c0:96:44:
         13:e8:e9:e1:0c:17:67:fd:49:bc:bc:a3:51:55:06:19:c7:24:
         47:95:4e:13:5a:bc:74:83:44:cd:71:71:43:8a:2e:75:c0:7c:
         d4:fd:4a:07:e3:a5:be:f7:b4:89:61:86:5b:3c:24:b7:e0:43:
         77:48:ca:cf:98:52:dd:97:7f:2f:5c:7e:9b:b0:72:04:7f:ae:
         36:9d:07:a3:b4:e5:9b:09:70:91:c7:ab:4e:67:8f:a0:7d:3e:
         61:67:13:f9:d2:aa:bb:11:b5:8c:de:5e:1c:c6:fa:42:bd:a3:
         d6:4c:ee:be:31:cb:8d:5d:b0:7f:66:0b:aa:52:66:99:52:42:
         40:6f:98:30:71:ec:5a:e1:ea:79:90:f4:0c:16:19:15:4d:73:
         a7:91:ca:57:1b:17:9a:73:e3:6e:40:d0:4e:21:22:5b:ae:03:
         0f:8e:11:99:5e:5b:a3:ea:50:63:dc:47:92:36:77:41:4b:f0:
         8b:f5:1a:90:66:d8:99:2b:66:d1:40:6c:c5:e6:d4:d1:28:00:
         ae:f7:28:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 22 16:22:29 2025 by rpki-client