RPKI Manifest
Location:                 rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft (download)

Subject key identifier:   FB:F5:19:07:6A:46:F7:65:C2:EB:6F:22:48:01:69:D4:55:67:A4:66
Authority key identifier: 0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
Manifest Number:          A6
Files:
    1: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
	hash FznafjXPOp/8MvFkEfcKveIfy4ke0mFlxZzG70RKCwk=
    2: mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
	hash TKTeZ48btrY8JCtyAhaZ+YQs1AoS/18tPCiyFW3kpRQ=

--
$ test-mft -p rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 210 (0xd2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=apnic-rpki-root-iana-origin
        Validity
            Not Before: Sep  7 22:41:09 2022 GMT
            Not After : Oct 14 22:41:09 2022 GMT
        Subject: CN=63191e06-2cf1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:3d:dc:9d:01:0f:8d:8e:90:72:eb:bb:e1:e9:
                    fc:99:f8:a0:36:d8:51:46:b3:63:6f:d4:84:7b:fd:
                    9b:6f:65:ec:a0:d6:95:82:a3:05:af:05:af:af:e4:
                    cd:33:31:63:58:f8:11:5a:dc:a8:2d:6f:61:0a:b0:
                    3a:53:8d:28:ae:53:4b:5f:33:a5:ca:19:67:0b:64:
                    12:46:22:f7:e4:c7:11:58:6d:42:fc:9a:56:2a:03:
                    d3:2f:f5:f9:a6:c2:f1:72:fa:25:e1:7c:1b:d5:20:
                    95:85:ab:e8:c9:5a:a5:14:47:bf:33:e1:0f:8b:20:
                    3c:2a:d0:a4:9d:53:ac:df:d0:be:d5:52:b3:1a:d9:
                    cf:49:9b:51:17:eb:cb:89:de:56:71:18:45:01:72:
                    63:f0:5d:58:d9:da:e7:dc:d9:58:2e:b3:89:16:a8:
                    d8:bd:f1:02:20:77:3a:a3:95:22:a4:8a:4b:97:b6:
                    6d:57:ed:a5:91:b4:ae:b9:0a:8b:79:d5:3a:6c:a5:
                    4a:5b:9a:1b:52:12:fa:c8:12:d8:b3:dd:ba:f2:e3:
                    6e:85:e5:b5:da:17:7c:96:4a:a9:90:14:54:3a:e7:
                    76:0f:d8:94:53:da:a8:0d:b9:26:6f:f4:d5:53:8d:
                    09:e7:56:a7:6e:12:6a:f4:c7:f1:3a:8a:d1:71:18:
                    2b:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                FB:F5:19:07:6A:46:F7:65:C2:EB:6F:22:48:01:69:D4:55:67:A4:66
            X509v3 Authority Key Identifier: 
                keyid:0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:06:85:79:d6:4f:46:80:80:fb:99:3e:40:c6:64:bd:04:7c:
         3c:83:1d:64:7a:4a:c3:0a:48:20:a6:c7:8e:15:68:14:68:89:
         20:b1:53:24:45:7e:e9:9f:12:73:2c:76:16:cb:e1:03:1d:5e:
         fb:8b:45:f8:09:34:47:9f:2a:4c:39:2e:50:95:cc:82:e6:46:
         5e:99:99:27:6e:09:0b:1d:15:85:a7:62:cc:89:f0:95:a2:63:
         30:1b:5f:6a:80:86:3f:d8:6b:2c:5d:53:8c:c9:6e:78:df:92:
         21:4e:49:31:9a:e2:c0:34:2f:83:1e:3b:ce:d3:c7:8e:1a:bc:
         22:d2:ec:52:65:4e:6e:3b:d6:9f:c5:95:0a:9b:bc:eb:de:6a:
         ac:86:27:f8:f1:b0:f2:0e:0e:84:32:1c:84:2a:49:68:66:d6:
         01:80:07:1c:23:74:0f:1e:71:e9:ab:de:fe:3c:ea:fa:ab:d6:
         72:03:fc:0f:c5:d0:9c:3e:21:6a:8c:83:75:ee:b3:8b:84:6e:
         8c:ef:ae:f2:d5:49:3b:c7:41:94:b0:fa:e9:95:10:5c:ed:6e:
         ac:6e:a3:99:2d:d7:a2:06:21:be:41:1a:11:23:26:5f:0f:e3:
         c9:bb:02:8e:5c:0e:8a:0b:bf:7d:c3:2b:94:d6:82:0e:37:cd:
         1e:8f:bb:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Thu Sep 8 02:43:35 2022 by LibreSSL & rpki-client.