Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
File:                     5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json)
Hash identifier:          bKRNfNOS1SxuyAlKtPOUociS4slYxZV//fvqCa+IJpg=
Subject key identifier:   C5:B4:68:C6:4F:28:3C:DF:FA:66:8F:B2:0E:C0:54:0F:37:F8:C1:F6
Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3
Certificate issuer:       /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3
Certificate serial:       08C0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
Manifest number:          08A4
Signing time:             Fri 30 May 2025 20:44:47 +0000
Manifest this update:     Fri 30 May 2025 20:44:47 +0000
Manifest next update:     Fri 06 Jun 2025 20:44:47 +0000
Files and hashes:         1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: sMBOc1k+z/lKXZ8+aupGXmRG+hca6HuAy/mGB+pocuQ=)
                          2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: KT6K45U/vV1zQkhhfiaxr9a9XeTKLIwG0eEDcyR3ERI=)
                          3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: LbbFjEbhHg5fzKZNW2jokQ6UuaIS/rDPKgFU2q0pJeg=)
                          4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: Gzcr6RaAc7WjlspRH4slQcyVh4i/nmyVkR/RXd4O0KM=)
                          5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lg2iSZUiBgCc3+l3q9JExUq+jxWe1fvszct9oy4Ys3k=)
                          6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: tlDd7aRrzNeu6uslbfPluCcOk663EDpRsH8KL9nqlD4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl
                          rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 06 Jun 2025 20:44:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2240 (0x8c0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3
        Validity
            Not Before: May 30 20:44:47 2025 GMT
            Not After : Jun  6 20:44:47 2025 GMT
        Subject: CN=683a18bf-ae7e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:3d:e5:f9:c4:e0:b3:45:0b:08:ad:d6:66:84:
                    36:0c:75:ec:72:77:ac:a0:1f:d7:60:3a:ea:de:b0:
                    64:4e:37:3c:4a:89:66:54:ff:8d:25:14:99:ae:c3:
                    c9:5b:2e:3e:fa:57:0e:3c:fa:42:50:d9:d9:ba:59:
                    1a:3b:18:4b:7d:23:db:cd:9d:8d:a6:47:ba:8f:6b:
                    2a:d1:90:f4:94:15:06:03:a4:a9:e8:29:19:09:58:
                    c1:12:a7:e2:b8:f1:47:e0:af:4c:8e:5b:e1:29:08:
                    f0:a9:ff:6a:eb:9a:cf:ef:57:c7:b8:4e:f3:12:01:
                    8d:54:11:29:24:8c:0a:29:4f:63:24:16:e9:19:27:
                    6d:b7:93:0d:d7:7e:7e:c5:9d:87:cf:2a:d2:89:04:
                    92:72:0c:e8:7d:25:41:47:ab:99:59:39:61:5c:00:
                    e1:73:be:17:fd:76:99:92:62:93:37:6c:88:14:44:
                    77:71:c4:e8:3b:1e:e4:e9:bd:74:88:b1:4f:21:b1:
                    3a:1b:83:de:b0:70:b1:75:19:12:85:df:2f:49:f3:
                    51:d4:80:be:d8:f0:b4:8b:dd:3d:04:64:70:9b:fd:
                    ea:23:cc:dd:4e:22:ad:e1:3f:dc:04:dc:ac:af:91:
                    5c:78:9e:29:54:db:6b:2c:df:5e:7c:a2:d4:e7:ea:
                    07:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:B4:68:C6:4F:28:3C:DF:FA:66:8F:B2:0E:C0:54:0F:37:F8:C1:F6
            X509v3 Authority Key Identifier:
                keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:32:16:49:b8:7a:20:49:13:cb:61:55:aa:4f:a2:39:d7:78:
         a8:de:17:43:d8:5e:10:78:e8:fa:23:e7:37:66:dc:6e:c6:ad:
         c4:66:69:20:33:50:76:a7:00:95:54:64:1d:4d:d8:bb:36:b3:
         60:44:ef:48:4c:d7:da:bc:ea:f6:06:c6:80:ff:5e:50:dd:4e:
         d0:2c:91:a4:b5:5e:e5:33:90:3b:d8:53:04:a7:7a:b0:94:e2:
         b4:8e:c7:95:79:c2:83:69:c2:ad:21:12:b1:d7:55:40:77:41:
         26:02:8f:28:4c:52:42:1d:92:65:5f:69:d3:fd:9a:24:83:db:
         22:c5:7b:02:c7:14:2e:37:92:65:9c:de:2a:b2:c2:9e:13:78:
         e4:92:59:f1:a7:a5:5e:c4:14:51:50:63:58:84:eb:88:cf:3d:
         7d:ab:bb:ea:f3:ae:24:dc:8e:8e:84:06:2f:17:cd:9d:1c:e7:
         35:50:44:3e:a6:d0:2d:7c:52:c7:57:28:8f:8a:4e:4f:e5:0a:
         85:5d:19:47:89:91:db:33:9a:f8:e9:4d:b0:05:47:dc:97:c9:
         c3:00:dd:80:79:b2:2b:f4:d8:9b:6a:7b:c2:b7:8c:49:f3:f1:
         18:de:33:99:27:88:3a:04:48:e0:ed:38:f4:89:20:d1:7a:b2:
         da:df:16:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 31 14:41:33 2025 by rpki-client