Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft
File:                     rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json)
Hash identifier:          9UhYrKoRLQcHkDH7Wboa0XozM+amr7CNG3AYXZHJPJo=
Subject key identifier:   67:72:D1:EF:70:EF:E6:68:CB:7E:6B:F4:68:3D:6A:25:01:B0:A7:A4
Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5
Certificate issuer:       /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5
Certificate serial:       097C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft
Manifest number:          096D
Signing time:             Tue 10 Jun 2025 20:04:30 +0000
Manifest this update:     Tue 10 Jun 2025 20:04:29 +0000
Manifest next update:     Tue 17 Jun 2025 20:04:29 +0000
Files and hashes:         1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: qgwGnHqxFjXyfZerFUvVIwN2ElNBUt9RmP5aoCYBy/U=)
                          2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: 6TUVFO2Ivu/tY1JvgLaKV+3n0wexlzOCwMKMpOyQlPA=)
                          3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl
                          rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 20:04:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2428 (0x97c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5
        Validity
            Not Before: Jun 10 20:04:29 2025 GMT
            Not After : Jun 17 20:04:29 2025 GMT
        Subject: CN=68488fcd-ab7c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:15:18:c8:84:f6:92:57:f9:1f:1e:10:90:0a:
                    4e:f7:79:6e:bb:d4:1e:3c:f1:1c:26:0f:3a:01:f3:
                    24:54:3e:13:e6:04:2d:a7:7c:1b:d7:7f:dc:50:a2:
                    4f:0a:c9:f7:dd:27:33:04:9a:cf:08:bf:bd:36:53:
                    54:a4:e3:3f:f9:51:43:24:99:8c:6e:f5:14:f2:54:
                    c4:86:fe:99:88:11:24:29:7a:b9:74:d2:7f:f5:7e:
                    41:ba:f3:07:b0:c9:76:ab:c2:ac:58:83:f8:cc:05:
                    d6:fa:c5:25:78:57:3c:68:db:2b:ef:70:ec:ab:97:
                    4e:12:3b:b7:3c:08:30:ed:e4:dc:a4:64:85:90:c3:
                    37:f9:bd:5a:96:9b:2c:31:6d:90:64:ae:5f:4b:38:
                    9b:54:de:ea:5b:0c:e5:2c:c2:51:1e:e9:11:b7:7d:
                    e9:d5:50:09:8f:35:ad:aa:e0:a4:32:0e:f8:12:01:
                    5d:de:68:48:47:af:74:ff:ca:b2:3c:c1:2e:8e:c1:
                    63:49:97:10:7b:87:62:58:bf:e0:57:ac:50:b4:7b:
                    92:84:dc:05:04:d7:76:5a:fb:4b:65:d2:a8:ac:48:
                    d3:89:d3:a7:19:1d:cf:2c:b1:45:7f:cc:31:07:a0:
                    b3:42:1d:88:20:30:69:e6:64:b0:e7:d6:8f:09:c1:
                    af:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:72:D1:EF:70:EF:E6:68:CB:7E:6B:F4:68:3D:6A:25:01:B0:A7:A4
            X509v3 Authority Key Identifier:
                keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:73:79:fc:51:c1:d5:8f:e6:0e:fb:89:26:e1:48:98:93:b9:
         2e:80:6c:19:00:93:60:ce:a9:a3:47:38:49:64:3f:84:fe:cb:
         8e:5a:49:40:7b:1a:6e:ff:92:41:13:80:b1:04:f2:ea:e3:86:
         15:58:d7:d4:94:63:9b:c1:e2:57:0f:7a:81:ea:aa:66:cc:7e:
         48:3c:0f:45:6a:0d:89:9c:d1:ff:69:8e:b1:9e:ef:50:70:b9:
         16:45:d9:c9:92:de:8d:5e:a3:11:18:65:cc:c6:53:64:00:1e:
         64:5f:fb:81:d3:36:e0:5b:35:16:7f:65:40:0f:58:d0:62:a6:
         f6:b6:28:88:a4:aa:7a:1a:d5:04:97:dd:cc:43:f8:bd:87:de:
         d7:cd:02:12:ea:7b:c3:d9:e0:71:76:90:b6:85:5a:a9:e4:c9:
         23:fc:e3:04:ef:18:78:e6:cd:18:d3:4c:b1:2a:eb:00:a0:37:
         19:b2:21:0b:6f:4d:27:97:58:31:88:ec:41:17:1d:82:28:73:
         a8:dc:3a:85:57:3c:40:df:98:d5:e3:c2:57:40:36:2d:1d:e6:
         04:0c:a1:8c:44:ad:61:68:7e:07:9b:e5:2c:df:dd:10:a9:04:
         66:67:77:9c:02:c1:ab:f1:15:34:0c:fa:0e:db:3b:e1:f7:f0:
         c7:c0:b3:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 08:12:14 2025 by rpki-client