Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft
File:                     I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json)
Hash identifier:          hz62kctCUcbFczMP02cyVlm/BzRS/Cq/TRh3X4bOVw8=
Subject key identifier:   73:9E:DF:E6:B0:D8:DA:62:4E:1C:FC:08:C3:09:27:2A:5C:C3:2A:95
Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2
Certificate issuer:       /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2
Certificate serial:       05EB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft
Manifest number:          05E5
Signing time:             Mon 04 Aug 2025 23:24:51 +0000
Manifest this update:     Mon 04 Aug 2025 23:24:50 +0000
Manifest next update:     Mon 11 Aug 2025 23:24:50 +0000
Files and hashes:         1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: ax7QU3/Ng4szgppc7mjijF6QpYn80m8X++oNXMesbcE=)
                          2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: dCkT6bEicYFMQep7850krPGfdcTTuO3WSPylF2CQFFU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl
                          rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 23:24:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1515 (0x5eb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911C28A, serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2
        Validity
            Not Before: Aug  4 23:24:50 2025 GMT
            Not After : Aug 11 23:24:50 2025 GMT
        Subject: CN=68914142-92ad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:f3:44:19:f5:d7:bd:8b:bf:58:57:93:88:1d:
                    bc:80:f1:84:7c:2e:f4:f7:40:d3:f7:61:6d:11:67:
                    8a:21:d0:18:1c:1a:8e:4d:1b:19:3e:34:57:46:00:
                    cb:76:5c:9f:87:e7:09:3d:96:e7:eb:ff:24:a1:9e:
                    ff:c5:ac:5e:9b:de:dd:45:40:a4:fa:8b:01:a4:cb:
                    a5:d3:c2:02:48:f5:fc:44:0b:98:d8:db:52:44:30:
                    0f:15:73:c2:e2:44:18:b5:b3:fb:7f:be:9a:8d:1f:
                    36:28:b8:e9:a6:d8:8f:2c:4d:3a:55:0c:b9:bf:2c:
                    ea:80:a8:c7:ca:32:1d:c5:b2:02:c5:2c:c1:fd:12:
                    cd:f6:15:7d:8a:d5:af:92:bf:ba:7f:f1:57:99:00:
                    64:48:17:c5:f4:82:eb:40:30:a9:6c:77:78:91:3e:
                    9d:2a:5f:e6:85:c4:33:ad:3d:72:27:67:3f:77:e9:
                    96:c3:86:97:41:28:7b:64:22:eb:1f:c3:48:70:a7:
                    80:13:9c:ba:e6:7b:2d:1b:d6:2a:91:aa:2e:ef:ed:
                    90:79:a3:6d:53:0a:b3:42:ef:96:f1:0e:ff:c7:9b:
                    ba:e1:11:ed:02:99:72:55:a0:2a:fa:4e:07:19:dd:
                    fc:c2:02:65:ae:5d:b3:b9:cc:2c:93:c4:30:a7:97:
                    bc:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:9E:DF:E6:B0:D8:DA:62:4E:1C:FC:08:C3:09:27:2A:5C:C3:2A:95
            X509v3 Authority Key Identifier:
                keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:26:10:c9:1b:f5:ea:33:ac:af:b7:e2:25:4d:d0:a8:67:6e:
         2b:8f:29:da:55:31:fa:8c:40:14:5f:c4:e2:5f:d4:45:9b:75:
         02:37:e2:7a:89:5c:99:2d:82:e4:46:7e:73:87:1d:55:2a:e9:
         71:58:4b:16:c5:93:c0:1b:e2:fd:86:20:ba:50:fe:d5:2e:e6:
         b7:85:cb:4f:58:bf:52:15:97:43:fd:8d:be:d3:24:df:25:33:
         2e:5f:51:68:01:62:cd:4c:23:3b:f3:89:14:d2:a3:13:45:01:
         03:33:af:96:12:c9:47:bd:06:ff:65:93:1e:aa:65:4d:35:fe:
         32:28:bb:81:46:05:f5:2b:f5:e5:05:55:4e:5d:5d:96:6a:26:
         9c:c6:68:29:5f:92:11:44:7d:aa:44:1e:9c:3e:c4:1f:89:ea:
         fe:25:4d:69:1d:27:f6:21:c2:13:0f:3e:d4:81:da:64:9f:05:
         40:61:c9:88:62:12:2f:04:c5:2e:49:ce:cd:6f:44:cb:6c:3b:
         be:43:c8:ec:3c:b6:7f:24:de:11:4e:8a:92:c1:29:86:4d:74:
         c7:59:5a:97:dc:10:48:62:ef:dc:68:3e:be:60:4b:3e:8f:90:
         81:bb:61:39:59:cd:4d:73:56:86:83:52:34:a4:42:5d:6d:bf:
         18:a7:e4:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:33:09 2025 by rpki-client