Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft
File:                     nWBHd6Cse-aqCBCwJetJPqbdNGM.mft (raw, json)
Hash identifier:          p05O49CRjJR4ql+UPREZMyv81WW8PQPzruqXZ8v1+us=
Subject key identifier:   6D:54:FC:3F:D4:85:0E:F9:D0:E5:3D:93:B3:BC:7C:1B:20:EB:89:70
Authority key identifier: 9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63
Certificate issuer:       /CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463
Certificate serial:       04C0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft
Manifest number:          04B9
Signing time:             Sat 23 Aug 2025 00:06:43 +0000
Manifest this update:     Sat 23 Aug 2025 00:06:42 +0000
Manifest next update:     Sat 30 Aug 2025 00:06:42 +0000
Files and hashes:         1: nWBHd6Cse-aqCBCwJetJPqbdNGM.crl (hash: 0p47PPVTpMs0PoHFIK+DCJyCVrDBWHUwbQ+oPsab5AU=)
                          2: 8327C2403DE011ECAB508171C4F9AE02.roa (hash: nj3zL8oObjV8NLXqj4IbNKya+FtBjMvRptjlINscrUo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl
                          rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Aug 2025 00:06:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1216 (0x4c0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9198FD0, serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463
        Validity
            Not Before: Aug 23 00:06:42 2025 GMT
            Not After : Aug 30 00:06:42 2025 GMT
        Subject: CN=68a90613-1dd2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:a6:25:b8:ab:2c:ca:7e:29:20:e5:b6:c8:ae:
                    75:50:94:dc:02:62:8f:e9:d3:f4:ce:15:bb:ff:67:
                    48:8c:d2:07:5a:68:e5:54:d7:1b:22:04:7b:31:9a:
                    36:7a:a5:18:5a:b2:2e:5c:d6:26:91:9a:43:4c:46:
                    ca:7c:a7:16:83:05:12:1c:03:36:5d:97:71:7b:9d:
                    ab:4a:ef:fd:a0:0a:ac:b8:98:9d:1f:45:5e:a0:7a:
                    58:27:79:0e:27:d2:ec:e8:cc:7a:2c:26:73:c7:f3:
                    90:c8:30:1b:7b:20:ac:78:42:65:85:9d:84:fa:e4:
                    fc:f0:74:59:fb:b5:cb:1e:01:5c:43:97:05:e5:6e:
                    45:8d:ab:91:ef:14:e4:a2:f0:c9:fc:03:9f:52:7e:
                    cb:97:06:4f:d1:c5:7f:c8:93:a0:f3:34:7d:7d:10:
                    25:77:cc:91:a9:cb:2a:11:ae:fe:9b:95:8e:60:45:
                    ae:57:b6:8e:dd:d0:b9:01:99:71:88:b7:4c:86:c7:
                    23:25:c9:05:ff:04:6d:85:4a:94:60:4c:30:92:b6:
                    65:bf:cd:c6:b2:e7:dd:4c:6e:93:72:e9:89:43:08:
                    10:52:1b:f6:b2:11:65:03:0b:c4:e1:06:1a:1a:f5:
                    36:8f:4a:f5:5a:2a:12:77:f0:8e:a5:53:02:c3:7a:
                    aa:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:54:FC:3F:D4:85:0E:F9:D0:E5:3D:93:B3:BC:7C:1B:20:EB:89:70
            X509v3 Authority Key Identifier:
                keyid:9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:80:a0:1c:10:87:c2:ec:10:16:84:b4:84:a0:91:c7:e1:6c:
         ea:6f:91:32:30:16:47:e9:4b:20:6e:3f:b1:54:e3:4b:4a:2d:
         50:58:a0:60:a3:25:a0:a7:8b:b9:e8:b0:55:86:be:12:c3:7f:
         b0:a3:4b:fe:94:1e:b3:16:fa:2f:08:c7:96:af:d3:dc:02:99:
         3f:c2:22:40:0a:7f:42:15:ef:52:14:e1:8c:09:53:c6:87:20:
         47:d2:58:26:3e:84:73:0f:10:60:45:c5:b4:e3:33:8a:e8:d0:
         1c:03:78:1d:8d:7d:35:ab:6e:1c:aa:42:1f:c1:41:40:75:53:
         32:9e:94:b5:31:6c:62:c7:78:3a:3d:10:86:4a:1f:10:9e:69:
         30:00:92:d8:52:01:82:fb:22:ea:52:65:ae:17:d5:73:0e:39:
         db:9f:db:7b:59:27:a9:84:66:71:64:6c:01:7a:9a:dd:e1:b3:
         a6:c4:b3:f9:94:1a:5f:cb:9b:98:2a:f1:e0:3b:f6:b3:ce:32:
         e9:2f:46:75:67:09:e4:46:e8:bb:10:39:c6:64:7f:1f:17:18:
         85:7f:c0:09:1f:0d:11:f0:2c:4a:f1:7d:e1:ed:32:2c:50:71:
         18:81:04:93:92:77:7e:5c:63:51:5c:06:bb:8f:36:b4:c5:7a:
         3a:1d:ee:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 21:46:28 2025 by rpki-client