Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft
File:                     rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft (raw, json)
Hash identifier:          2woV5Fi7pQNf0SOvBZMcwXQXuqh8tHNbDGVncvEbjFo=
Subject key identifier:   60:64:B4:1A:15:8B:96:24:2E:A7:CF:D6:FA:CB:83:70:5C:58:23:C3
Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04
Certificate issuer:       /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204
Certificate serial:       C4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft
Manifest number:          C0
Signing time:             Sat 09 Aug 2025 06:17:31 +0000
Manifest this update:     Sat 09 Aug 2025 06:17:30 +0000
Manifest next update:     Sat 16 Aug 2025 06:17:30 +0000
Files and hashes:         1: rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl (hash: OwkbA9DpLAqRpud9ELNy5XYRoMujWtihE2a+UJB400s=)
                          2: 39E76DD0589311EF88BF4665C4F9AE02.roa (hash: t3nWUOarrxhEFD60ip2NaXslcMEcqGLVxqGfot6fF3I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl
                          rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 196 (0xc4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204
        Validity
            Not Before: Aug  9 06:17:30 2025 GMT
            Not After : Aug 16 06:17:30 2025 GMT
        Subject: CN=6896e7fb-6557
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:04:6d:14:ae:f7:e5:35:c5:f0:05:14:19:e9:
                    02:85:17:29:c3:ea:4e:4d:cf:c7:b3:52:ab:f3:77:
                    bf:fb:6d:f7:f9:1b:c0:62:72:00:ec:b6:d9:34:a8:
                    0a:33:ff:3f:7f:f6:99:39:3b:34:f1:bf:8f:0d:ca:
                    92:6f:ca:f5:48:f7:62:41:dd:63:fd:94:24:0d:d8:
                    ab:e9:18:d8:18:42:25:a6:01:16:e8:8a:d7:de:c3:
                    51:ca:48:ce:d3:87:cc:a8:eb:a0:93:e6:13:c5:ec:
                    5b:00:2e:4f:71:e4:07:34:52:89:26:62:93:b9:ea:
                    2f:c3:24:bb:71:e1:42:46:1b:e2:e6:5b:35:24:7d:
                    ec:da:72:4e:d1:3a:ff:e7:5e:e8:a8:0b:f9:83:31:
                    08:60:36:58:29:41:38:b3:91:f4:11:ef:d0:40:ee:
                    33:78:db:89:07:65:50:b4:48:88:d3:37:54:71:00:
                    2b:25:da:d5:af:54:fb:f5:dc:df:9b:fa:dd:7a:c7:
                    3b:66:5c:18:3d:b3:9b:2d:f4:2c:f3:ec:f7:3a:0f:
                    7d:44:ff:e9:04:90:bf:cf:6b:35:2a:d8:e8:83:6f:
                    ca:3c:e4:30:e9:03:16:e4:6d:82:6a:c5:5d:1e:fa:
                    cb:56:2b:2c:90:2b:10:0e:d9:7b:8b:90:f0:83:71:
                    8c:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:64:B4:1A:15:8B:96:24:2E:A7:CF:D6:FA:CB:83:70:5C:58:23:C3
            X509v3 Authority Key Identifier:
                keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:15:40:8a:38:07:49:7d:db:67:c5:e1:4d:8e:fe:32:7b:1f:
         d6:b9:4a:35:9f:db:d8:05:51:48:ae:8e:eb:63:23:62:c5:79:
         a3:3c:46:64:63:9e:50:4f:d5:11:0e:8b:52:36:ac:11:bc:22:
         21:af:6c:c9:74:5b:d6:86:5e:d5:7a:77:5f:cc:7d:75:f9:03:
         b4:47:d9:66:c0:ff:f9:ad:76:25:ed:fb:97:0a:d9:03:51:2a:
         61:6b:fb:59:d4:56:cf:66:0f:d6:6f:11:cc:41:56:f4:09:e2:
         ca:92:51:99:f4:d2:a5:b6:6b:bb:b3:dd:ba:1a:75:7a:62:31:
         2b:50:89:02:58:83:58:db:de:79:ad:0e:0e:fc:a0:9d:dc:3f:
         1e:82:35:a2:51:8f:3e:91:73:08:c2:9b:9c:8e:a5:85:50:55:
         9e:6f:3e:7d:7b:37:35:55:b7:d7:9e:7a:5a:77:b4:c4:35:01:
         78:a1:50:1a:e3:02:af:4c:fc:b0:7c:de:2a:d6:5f:6b:9a:02:
         64:18:d2:f1:b6:9b:82:85:ac:5f:be:8b:f1:d7:a6:af:03:65:
         4b:d2:79:74:47:ef:c0:7f:62:4b:c3:b1:c1:e0:c0:62:c8:c1:
         b3:37:f1:34:63:3f:67:36:fe:5e:89:e8:20:01:13:b4:41:bd:
         76:71:e1:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:08:41 2025 by rpki-client