Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
File:                     5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json)
Hash identifier:          QbFv+CcHBWgQZsXSTAFaYh7dvbjD1RLCdbexdD+AxpY=
Subject key identifier:   79:B8:A9:4E:C4:F8:CE:97:F2:90:07:BB:B6:8E:83:59:CA:76:6F:E2
Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3
Certificate issuer:       /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3
Certificate serial:       08B7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
Manifest number:          089B
Signing time:             Mon 12 May 2025 20:22:35 +0000
Manifest this update:     Mon 12 May 2025 20:22:35 +0000
Manifest next update:     Mon 19 May 2025 20:22:35 +0000
Files and hashes:         1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: 4EeZlFMRHDsIhmfn+rkHPSclItNwItQmBQp4nDqFhRs=)
                          2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: KT6K45U/vV1zQkhhfiaxr9a9XeTKLIwG0eEDcyR3ERI=)
                          3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: LbbFjEbhHg5fzKZNW2jokQ6UuaIS/rDPKgFU2q0pJeg=)
                          4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: Gzcr6RaAc7WjlspRH4slQcyVh4i/nmyVkR/RXd4O0KM=)
                          5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lg2iSZUiBgCc3+l3q9JExUq+jxWe1fvszct9oy4Ys3k=)
                          6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: tlDd7aRrzNeu6uslbfPluCcOk663EDpRsH8KL9nqlD4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl
                          rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 19 May 2025 20:22:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2231 (0x8b7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3
        Validity
            Not Before: May 12 20:22:35 2025 GMT
            Not After : May 19 20:22:35 2025 GMT
        Subject: CN=6822588b-625a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:b0:d5:57:61:12:80:03:5c:9e:66:f4:ba:43:
                    b4:58:60:d0:0f:1c:f9:79:81:1a:a5:ab:44:15:3f:
                    11:b3:a2:e2:cb:f4:30:af:b3:c7:e6:b0:14:15:d6:
                    62:b8:dc:0d:f2:85:bc:81:bb:62:7e:8b:29:19:a9:
                    ce:5a:36:dc:d4:d9:2e:db:1f:0c:cb:ab:33:8d:4a:
                    2b:b4:6f:38:fe:23:56:c5:ff:e7:fb:00:69:90:53:
                    1f:a6:ce:f1:5d:04:c3:9a:3d:35:02:d0:be:d6:38:
                    9b:13:7e:73:10:4d:63:e4:16:bc:a9:9b:5b:97:1f:
                    b8:06:9c:5a:b6:78:fc:e9:c0:ee:ae:5f:82:e5:ff:
                    26:5f:f3:b5:92:59:bf:d8:d5:94:7a:52:42:2e:0d:
                    12:71:89:db:f5:dd:0f:a8:fa:c8:c0:94:9e:e8:d1:
                    71:ce:52:2d:32:f9:21:65:25:05:e7:6b:d8:f0:0c:
                    a3:81:07:6a:bd:63:05:7c:ab:40:b4:7b:77:7c:88:
                    ca:f2:5a:5b:a4:b8:80:16:2c:b6:25:9c:b9:7e:c6:
                    0a:1b:2e:9d:6e:66:fe:6a:f4:c7:b5:6c:ef:30:80:
                    dd:5e:b3:52:c1:9f:99:ca:06:1d:22:d7:f8:88:03:
                    1c:95:55:6f:c4:7b:98:c7:29:b3:3f:ba:c3:42:c1:
                    c5:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:B8:A9:4E:C4:F8:CE:97:F2:90:07:BB:B6:8E:83:59:CA:76:6F:E2
            X509v3 Authority Key Identifier:
                keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:30:db:75:d0:75:e8:01:e1:60:6b:f3:c0:83:f5:55:f9:15:
         90:d6:50:aa:e9:e5:24:90:64:29:b8:97:49:f8:3c:4a:e2:33:
         61:9f:24:8e:a5:0f:cf:1e:67:e3:f1:89:15:e5:02:5b:ca:39:
         67:f8:02:5d:54:0e:ae:27:32:c3:4e:02:bb:0f:32:2f:18:37:
         39:c6:cb:82:e2:e1:89:76:5a:a7:60:63:34:65:40:ae:30:06:
         0b:bc:9a:c1:dc:91:b4:b2:ac:a7:2b:b8:e6:a6:d4:5c:8a:d1:
         a9:28:17:d0:6e:8e:98:39:d2:b7:09:31:95:9f:cf:88:1c:33:
         17:bc:66:2a:d7:d0:cb:a0:e3:f4:12:89:70:78:d4:a1:cd:4c:
         85:d2:53:3f:21:fa:9d:3a:56:a3:bb:bd:8d:70:e6:a9:a8:07:
         1c:c3:c7:fd:87:1d:d3:8a:9f:f9:b2:29:c1:49:15:5c:41:cd:
         d8:95:5a:47:9f:89:13:99:bd:24:a9:c2:29:50:30:5a:87:c5:
         23:c2:ce:95:9c:82:1f:07:22:e1:5c:85:62:9f:00:90:27:d0:
         04:e9:89:59:8c:77:75:e4:90:4b:5d:03:73:99:2e:c9:3d:83:
         28:9d:f2:2e:ca:a6:a4:9b:d7:34:be:e0:64:85:22:e8:43:92:
         15:16:b0:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 18:18:37 2025 by rpki-client