Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
File:                     OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json)
Hash identifier:          F6PT4m+vddzuEMNC+9Rr8mdzogk1xWZno7KNUO5YU7s=
Subject key identifier:   DD:7C:90:46:10:E6:F0:88:13:AA:04:77:2E:42:75:8F:DB:B3:8E:91
Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A
Certificate issuer:       /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A
Certificate serial:       0A81
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
Manifest number:          0A7A
Signing time:             Thu 12 Jun 2025 19:24:30 +0000
Manifest this update:     Thu 12 Jun 2025 19:24:29 +0000
Manifest next update:     Thu 19 Jun 2025 19:24:29 +0000
Files and hashes:         1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: NQstXsRWIvglZDwyDzrVz+XfiSdHCPJy0ZadjWyxem4=)
                          2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl
                          rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 19:24:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2689 (0xa81)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A
        Validity
            Not Before: Jun 12 19:24:29 2025 GMT
            Not After : Jun 19 19:24:29 2025 GMT
        Subject: CN=684b296e-f34f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:fd:cc:c3:bd:e3:64:1a:0b:60:f2:e5:18:73:
                    f7:ba:06:40:ed:3d:e3:f8:08:44:1d:e8:f0:d2:82:
                    75:39:b5:df:69:7e:16:cc:b1:84:9b:f2:31:95:bb:
                    a1:b8:a8:84:13:59:fe:a1:54:a9:dc:ab:ed:89:d7:
                    41:f5:60:ed:1b:a7:dc:ea:64:01:82:0e:25:09:89:
                    0c:69:e5:3b:f5:9e:4c:c9:de:8a:cf:91:f6:09:e5:
                    90:c1:9c:2d:3a:8a:8b:0a:25:77:59:bc:19:98:4c:
                    a2:99:08:ba:6d:1f:55:60:2d:d7:3a:04:cc:9b:76:
                    fa:38:f5:21:61:f4:dc:2b:f1:61:2a:41:e3:4c:5f:
                    9f:0a:d4:66:2d:e0:ee:10:e5:95:b9:d7:6b:e5:cb:
                    ed:03:7f:c6:c7:04:7e:71:7f:d4:92:f9:b2:0a:af:
                    03:65:b3:e9:9e:a3:20:b4:af:17:87:36:6d:cf:e2:
                    57:ee:66:97:7c:1e:a6:9e:02:6d:e9:f3:71:ba:15:
                    c1:ff:52:9c:22:6e:b3:ed:44:8b:99:fb:fb:b2:e3:
                    de:cc:d0:51:91:f8:ab:3d:5e:42:27:71:d9:ad:4c:
                    3c:1a:df:5e:8e:31:1c:f7:7a:7f:b3:b2:2b:8a:4a:
                    6a:d6:72:7e:9d:11:4d:a4:46:9e:37:21:01:07:02:
                    c5:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:7C:90:46:10:E6:F0:88:13:AA:04:77:2E:42:75:8F:DB:B3:8E:91
            X509v3 Authority Key Identifier:
                keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:ae:37:a2:a9:f4:59:1f:88:72:96:59:7c:ba:c7:1e:27:4f:
         66:23:b0:67:a4:7b:22:21:76:fc:6d:3a:c4:78:4a:e0:17:d9:
         2c:3e:a7:22:4b:a2:59:df:1f:67:0e:ce:b4:8e:26:16:31:23:
         58:c4:55:80:b1:e6:95:18:91:e0:0b:eb:00:1d:e8:22:22:08:
         a5:4d:24:d8:6b:df:13:14:0e:43:03:7f:6b:88:62:67:32:53:
         83:6b:56:e7:c0:e0:46:51:bb:3d:17:fb:ed:a0:c8:c9:3c:20:
         80:b2:6b:03:f8:6b:28:96:90:03:72:df:68:a1:c7:ca:e6:bb:
         2c:f4:1d:86:43:91:53:60:7b:58:1b:7b:9a:3b:54:da:66:b7:
         19:05:c1:60:68:8c:04:89:7a:d6:27:1e:31:ee:d8:f5:98:d8:
         76:2d:8a:f2:de:bc:6c:a4:f7:09:7f:16:ee:6c:31:d5:2b:ff:
         0b:07:ed:ca:d2:e5:76:18:d6:d9:0d:a0:c1:77:43:68:b7:0a:
         8e:50:fe:b2:2b:84:f0:b7:ae:4e:95:c1:95:d7:de:dc:6a:de:
         90:5d:4e:a4:97:ca:59:20:20:fa:57:ad:7b:ea:76:85:28:dd:
         b9:73:34:91:c0:d6:1d:99:95:83:fe:b0:dc:c6:1a:cf:e1:f0:
         be:ef:23:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 07:30:40 2025 by rpki-client