Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft
File:                     HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json)
Hash identifier:          aJoLpUVGHDjaciensG8ReGnCcnDcTP+ii6aP/tFIxcs=
Subject key identifier:   1B:47:86:F1:E8:8C:54:B5:0C:DD:89:CC:2D:95:54:E3:B6:2E:3B:6A
Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E
Certificate issuer:       /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E
Certificate serial:       9F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft
Manifest number:          98
Signing time:             Tue 05 Aug 2025 07:02:56 +0000
Manifest this update:     Tue 05 Aug 2025 07:02:55 +0000
Manifest next update:     Tue 12 Aug 2025 07:02:55 +0000
Files and hashes:         1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: QqBuSQOyS3bfgRAJgaMW04ZjZxpILoeWX+JgtCZcMio=)
                          2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: 76K1YbroX8X8W0IqnMICi5xKvh2ELCOHzwZ1tdiFlUg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl
                          rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 07:02:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 159 (0x9f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E
        Validity
            Not Before: Aug  5 07:02:55 2025 GMT
            Not After : Aug 12 07:02:55 2025 GMT
        Subject: CN=6891aca0-f60e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:b4:e9:e5:34:f4:9a:1d:a2:eb:39:fc:7c:da:
                    86:c7:12:4b:8c:51:c4:74:45:e7:dd:ca:f3:45:6b:
                    cf:7e:57:86:a9:5f:73:e3:59:23:5c:1e:61:ec:aa:
                    34:e2:dc:c4:6c:9b:9f:78:66:b4:57:fe:2d:2d:3f:
                    64:a1:a0:4f:b6:9b:3c:16:53:f0:a4:f4:09:56:b9:
                    54:f5:59:58:4e:bb:fe:06:18:ab:6f:1e:0d:e2:8f:
                    b8:1d:7e:e4:6a:40:ac:82:35:2b:67:9c:26:04:a6:
                    25:89:54:29:dc:47:2f:74:ae:ff:49:fd:7d:e9:00:
                    7a:83:05:7d:cf:08:84:64:9d:bd:4f:11:3c:9b:17:
                    6d:9d:2a:3d:d7:16:07:f0:8e:57:0f:79:06:fc:af:
                    8c:f3:fa:d0:44:aa:ed:97:5e:69:45:9c:8b:1f:9c:
                    f3:64:24:56:08:e8:8f:92:b8:db:34:ae:df:60:d8:
                    ab:aa:a3:a5:a9:11:a4:0a:63:e5:f9:d9:11:e4:c4:
                    53:36:a8:bb:c2:ee:7b:62:dc:fe:c3:7a:35:8f:63:
                    c7:90:01:12:c7:a3:03:5d:73:4d:82:2a:04:1d:fc:
                    60:ee:27:cf:95:c2:53:14:71:38:a6:a5:92:12:af:
                    5c:fc:29:17:c3:f8:63:38:22:bd:3e:91:02:b5:ce:
                    ef:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:47:86:F1:E8:8C:54:B5:0C:DD:89:CC:2D:95:54:E3:B6:2E:3B:6A
            X509v3 Authority Key Identifier:
                keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c0:c6:2c:7a:40:2c:ab:5e:f8:3e:ee:62:61:3e:b0:98:8e:cf:
         a0:23:64:d7:9a:3d:ac:c7:e5:c7:e7:ee:11:d9:a5:39:97:75:
         0e:59:ca:a5:ff:40:16:64:ec:10:cb:dc:6d:f2:2c:fa:3f:52:
         3e:e0:23:a1:2f:17:f6:bf:d1:31:d7:81:37:44:d3:5e:dc:ce:
         c6:b8:ec:30:94:dd:68:63:1b:f4:4b:44:3b:d5:0a:05:52:fd:
         a3:6e:5e:90:d6:60:b7:ef:a2:c2:2e:13:44:43:f2:48:0e:ab:
         3c:55:2e:a4:9d:90:64:07:9e:17:63:be:d2:64:54:9a:12:b2:
         e1:c0:3c:1a:25:95:2c:d2:18:d0:f7:8e:bd:db:42:a9:1a:8c:
         f5:c5:11:ef:9a:28:74:04:75:3f:c9:2a:25:b1:75:36:0e:90:
         18:b5:0d:9c:bf:86:dc:02:bb:ee:15:14:c6:c7:0d:f6:14:c2:
         06:41:14:eb:2e:81:54:eb:a9:5a:b4:45:10:8d:66:5e:08:6c:
         45:f3:72:6c:00:66:4a:7d:b2:9d:79:30:30:b5:bf:26:1e:8f:
         d9:2a:da:f8:7b:a8:f2:e2:db:a6:08:db:af:71:f0:e8:bb:a7:
         2d:13:80:03:26:4d:4a:ec:99:0e:ae:c1:98:71:0d:fa:10:ae:
         cf:c5:ea:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:28:41 2025 by rpki-client