Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
File:                     GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json)
Hash identifier:          9W+RKHfUZcJMgvfl28H1C4ZR+D4gnRMXl9htuQICakI=
Subject key identifier:   53:3A:17:E5:D6:F7:1D:DC:B2:2A:67:8A:4B:41:69:30:39:01:C0:21
Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05
Certificate issuer:       /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805
Certificate serial:       01C3
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
Manifest number:          01C1
Signing time:             Thu 24 Jul 2025 17:45:10 +0000
Manifest this update:     Thu 24 Jul 2025 17:45:10 +0000
Manifest next update:     Thu 31 Jul 2025 17:45:10 +0000
Files and hashes:         1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: oKxmodScTD1VnOOxlfw8lHWd8zxOudvmQfWlDp6e4a4=)
                          2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: iZmR1FbskCchxXKnxnbe4xzmmTQB2zEX5unoWSw1o+g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl
                          rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 17:45:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 451 (0x1c3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805
        Validity
            Not Before: Jul 24 17:45:10 2025 GMT
            Not After : Jul 31 17:45:10 2025 GMT
        Subject: CN=68827126-77a4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:1a:5d:a3:29:4b:03:f0:7b:bb:56:05:38:69:
                    32:8a:4c:cf:04:16:0e:04:ee:20:db:25:73:7d:b3:
                    3e:12:03:3b:42:ba:dd:20:37:f0:a2:0f:c3:90:b2:
                    9f:da:65:56:9d:27:7b:9d:d0:e4:a4:b9:e3:d8:4d:
                    58:88:9d:df:9e:37:95:2a:cb:7c:38:9b:ff:1c:29:
                    9c:0b:a9:49:ad:14:d2:15:53:c5:07:5b:e7:07:33:
                    ad:ea:2f:50:74:73:16:26:5d:27:50:c3:5e:71:3e:
                    73:22:41:fd:22:e1:2c:45:ba:3d:94:3d:ef:8c:40:
                    f7:30:e1:d4:3f:d8:bf:47:33:7b:65:0a:5a:35:1f:
                    25:48:79:12:e7:dd:56:32:39:b3:08:df:14:ee:f7:
                    7b:f5:c7:fc:8f:8f:6f:04:d2:5a:1d:2a:dc:77:80:
                    7b:a4:48:11:46:5f:fe:88:32:8a:33:cc:4f:93:58:
                    d1:d5:4d:90:52:bd:2e:73:30:e6:5e:cc:7e:48:79:
                    19:72:4e:63:c3:60:e9:a2:d4:59:e1:ee:f8:0c:69:
                    07:c4:44:18:7b:c9:f5:79:0c:37:96:8c:93:c6:8f:
                    a6:57:c0:d0:60:6e:b4:0e:35:59:25:a8:8c:b9:1a:
                    30:96:e5:12:43:1d:0f:73:b0:c7:a3:6c:2b:03:c4:
                    29:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:3A:17:E5:D6:F7:1D:DC:B2:2A:67:8A:4B:41:69:30:39:01:C0:21
            X509v3 Authority Key Identifier:
                keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:25:56:37:2e:ad:58:ad:32:53:0c:b9:40:6b:30:a8:a1:70:
         dc:25:ab:83:49:36:33:a1:67:11:46:1f:54:83:d9:25:95:8f:
         e2:88:59:f9:5e:d9:df:7c:6c:fd:04:8f:42:94:ea:e3:10:d4:
         47:c1:02:61:41:b0:c6:7c:b7:90:a8:fc:d3:c9:9a:c7:87:db:
         67:78:c8:36:88:bf:98:f5:b9:5c:e2:7a:43:c8:29:93:22:6c:
         c0:83:44:fe:c7:33:e1:09:11:50:92:72:32:28:0d:11:4b:48:
         bb:cb:8c:07:81:39:bd:d3:55:4c:6a:64:46:d8:ae:bd:c5:eb:
         14:57:c3:9b:3c:c3:8e:e0:ad:5e:ac:5d:0c:0c:66:1d:25:27:
         63:ab:33:e6:f1:7e:45:0a:93:55:7f:9e:a4:64:1b:50:ce:13:
         8f:bd:62:67:c1:ee:0f:68:d6:db:60:c8:d1:b7:9b:8e:44:76:
         cb:5c:75:45:57:b8:7a:4e:45:cc:50:fe:41:89:dc:76:46:89:
         e9:f4:6a:9a:1b:55:59:31:ea:4a:7c:92:f0:1f:d0:60:aa:03:
         09:d4:a2:fe:46:ce:a5:f5:d1:c4:a3:1a:71:7b:06:07:6e:49:
         bd:f2:d0:1a:ba:46:85:81:f6:ee:5f:1f:53:8d:2d:b4:b7:42:
         8f:29:b7:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:04:29 2025 by rpki-client