RPKI Manifest
Location:                 rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft (download)

Subject key identifier:   38:C6:87:A9:3B:F4:03:51:AA:C6:DA:2F:6F:DA:80:D0:9F:89:68:40
Authority key identifier: 0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
Manifest Number:          A2
Files:
    1: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
	hash QphnEOqAqnWg99SoSO1s1POKeNNz6vChg8WrVNMQo/A=
    2: mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
	hash ZZJVMY8bKUiYcYynkLUmuO8xTTCbd0TTORHyiUqyjIk=

--
$ test-mft -p rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 205 (0xcd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=apnic-rpki-root-iana-origin
        Validity
            Not Before: May 18 23:11:57 2022 GMT
            Not After : Jun 25 23:11:57 2022 GMT
        Subject: CN=62857d3d-4b62
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:77:1d:d0:1e:0d:ab:63:03:b4:0c:45:06:c7:
                    4c:d0:fc:e6:92:da:9a:94:37:5f:15:7e:5f:f3:8f:
                    d1:fa:92:c0:85:38:d1:8e:5d:0f:55:12:97:be:a7:
                    35:d8:bc:4d:1d:f4:47:bc:6a:01:f5:7e:44:36:41:
                    f7:fa:e0:fa:7a:86:98:8f:db:e1:e8:62:fd:85:19:
                    00:25:54:cc:f9:86:29:d5:f1:50:be:ca:aa:8c:a4:
                    8f:87:95:c7:53:08:a6:cd:81:bd:3f:c9:3c:46:21:
                    43:5e:19:d0:3d:32:db:a6:51:f4:35:7a:b5:3d:9b:
                    e6:2c:b7:13:de:cf:d2:c8:7c:2d:16:b2:17:95:32:
                    fb:e6:75:eb:c7:74:b1:2e:1b:56:b2:e9:96:f6:54:
                    a3:73:da:c6:25:b8:83:85:14:8c:08:1a:06:28:cf:
                    28:3d:90:fa:4c:cb:52:9d:d7:03:c8:a3:98:5e:8e:
                    dd:9a:d4:15:80:dc:60:ad:04:77:59:58:b1:be:84:
                    2e:40:2d:2e:ab:41:d9:3c:47:19:7f:01:bb:64:e5:
                    44:16:36:73:ec:16:7a:b1:92:4a:38:cb:fe:f1:d2:
                    b9:dc:c2:d2:53:ac:03:98:1c:c4:11:e0:23:0d:62:
                    7d:94:ee:29:e8:1b:20:f9:04:71:c5:6b:16:ba:81:
                    fa:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                38:C6:87:A9:3B:F4:03:51:AA:C6:DA:2F:6F:DA:80:D0:9F:89:68:40
            X509v3 Authority Key Identifier: 
                keyid:0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:16:c4:b4:b2:b5:3f:2c:13:4c:71:3c:d9:25:e1:c7:50:13:
         a0:3f:59:d6:25:8b:57:1e:51:20:45:41:8a:38:42:56:48:df:
         9f:b5:bb:07:f9:37:43:ff:eb:66:85:93:f8:d1:78:c4:bc:64:
         1a:74:d0:dd:c6:2d:d7:5c:ae:fd:41:56:f5:99:13:6f:f9:e2:
         ef:e6:22:18:58:19:0b:c9:b3:ca:49:a5:c5:44:13:eb:b2:07:
         87:34:79:eb:c0:5e:ca:df:9c:b9:94:4a:b5:42:2f:fb:2d:2e:
         32:56:13:d7:87:53:a6:bf:04:46:07:48:f4:0c:cb:d5:2c:42:
         86:64:59:34:c4:47:80:01:09:f5:f6:34:52:f7:3a:c9:e9:75:
         9a:c1:97:58:8f:47:dd:22:a6:77:c7:54:32:2d:0f:43:10:da:
         3b:fd:5e:67:06:ec:f9:47:ea:ee:fb:e2:c8:b4:35:43:92:32:
         fd:bd:c4:01:50:74:5b:b5:d3:b3:7d:54:57:88:d3:29:53:c7:
         07:26:d0:86:87:dd:29:ac:b6:a0:c4:9e:8a:39:43:02:76:ae:
         04:64:3f:7d:92:53:4e:71:74:96:b2:b9:75:0f:b7:50:79:ef:
         68:6e:3e:01:be:ee:ff:c2:f0:23:19:65:86:94:61:ef:69:d3:
         a8:bb:dd:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Thu May 19 01:50:38 2022 by LibreSSL & rpki-client.