Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
File:                     GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json)
Hash identifier:          YoJAHQueVXyZ3kOgcZQrmXXLx1/rOXdJ9neN88pxbAA=
Subject key identifier:   6A:1A:69:2C:F9:70:99:C4:97:58:D7:7D:1E:46:48:12:16:77:AA:5D
Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05
Certificate issuer:       /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805
Certificate serial:       01C2
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
Manifest number:          01C0
Signing time:             Tue 22 Jul 2025 17:45:43 +0000
Manifest this update:     Tue 22 Jul 2025 17:45:43 +0000
Manifest next update:     Tue 29 Jul 2025 17:45:43 +0000
Files and hashes:         1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: Q8gcw5td3l5bHtqbT5jaEOPIS2837mA4N83S1232G48=)
                          2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: iZmR1FbskCchxXKnxnbe4xzmmTQB2zEX5unoWSw1o+g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl
                          rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 17:45:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 450 (0x1c2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805
        Validity
            Not Before: Jul 22 17:45:43 2025 GMT
            Not After : Jul 29 17:45:43 2025 GMT
        Subject: CN=687fce47-ddf8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:18:42:5e:78:a1:4b:23:5d:65:e9:8f:a4:40:
                    da:30:6a:89:da:80:df:61:31:ed:dc:29:b3:74:61:
                    45:a9:97:4f:af:9f:8e:07:22:da:f4:54:2a:0d:b1:
                    f2:09:43:79:c2:90:66:8a:99:04:1b:97:0e:41:e7:
                    7d:fa:99:98:75:86:d4:72:95:3c:10:74:b3:99:43:
                    38:f9:4f:25:e8:1d:64:15:7a:90:b9:22:b1:22:67:
                    0d:7f:a8:9c:30:1f:1f:3b:9b:9d:27:0d:10:56:54:
                    6d:27:fc:a4:74:fb:9b:8e:90:22:a2:95:f4:26:75:
                    af:21:68:98:a5:63:da:43:23:ed:01:74:a9:53:c9:
                    90:35:09:d0:41:13:e2:1b:73:4d:d4:03:03:ef:c1:
                    1c:70:cc:76:25:dc:31:f7:6b:76:d8:79:b8:92:2e:
                    04:82:d6:27:07:7d:d2:02:39:c9:44:cd:8b:b2:b3:
                    68:48:fb:d2:3d:29:cc:6a:1e:ef:7e:b3:74:03:50:
                    f6:d0:6b:8a:54:5e:42:3c:62:3b:1f:77:8f:48:d7:
                    15:df:22:4c:e7:b5:6e:ef:ff:c2:53:e4:86:39:83:
                    84:c9:f2:55:1b:ab:c9:9f:ff:fb:7f:83:0a:e2:c8:
                    6d:32:d5:cd:2d:12:56:70:6c:24:b1:53:6d:6a:2f:
                    55:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:1A:69:2C:F9:70:99:C4:97:58:D7:7D:1E:46:48:12:16:77:AA:5D
            X509v3 Authority Key Identifier:
                keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         56:42:38:e6:cd:6d:58:ed:01:d4:36:10:0f:b6:f4:36:29:0d:
         a5:93:cd:3e:e8:17:35:83:b6:7f:29:79:14:1b:3d:bc:2a:4e:
         fe:83:8b:84:99:89:bb:85:b5:dd:c4:01:77:ac:25:17:6a:48:
         0f:bf:d0:ce:49:be:71:a8:b8:54:1b:8c:b2:c7:0e:6b:3c:d9:
         c9:3c:c7:78:1e:ad:d9:0a:00:19:04:e6:f2:be:da:a2:80:87:
         6f:de:16:f6:f0:4f:92:70:17:da:68:a9:57:8c:bb:93:2b:64:
         88:5b:3d:07:21:56:45:6a:11:eb:01:a9:56:de:54:ec:54:1c:
         cb:13:6d:7d:b2:7f:b3:78:f7:2a:e5:05:77:aa:60:95:06:29:
         f4:99:90:44:88:b5:23:59:73:2b:3c:28:0f:cc:8e:87:09:07:
         ba:27:6f:43:1d:73:76:ac:67:0b:e6:32:97:05:92:03:88:a5:
         38:7b:40:31:a4:2e:22:af:67:d2:07:f7:ab:9e:3a:07:b1:0b:
         2b:04:81:9c:6b:83:f9:c5:88:aa:26:4f:90:c0:44:db:47:39:
         75:17:71:46:94:60:2b:ea:e3:f3:31:26:ef:10:94:cc:4d:5b:
         66:81:ea:22:d4:55:88:2a:ec:3d:fb:16:b8:fc:de:ae:6e:6e:
         35:73:3c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:16:41 2025 by rpki-client