Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
File:                     r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json)
Hash identifier:          a3LTRYOeA+yLG3ri3wPCE18BP6yD3uw7P1epdqfS4mU=
Subject key identifier:   13:6E:68:D2:3A:CD:AA:6B:57:B0:3F:0E:14:90:F5:31:CE:7C:6F:15
Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
Certificate issuer:       /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032
Certificate serial:       07A2
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
Manifest number:          079A
Signing time:             Wed 06 Aug 2025 16:02:41 +0000
Manifest this update:     Wed 06 Aug 2025 16:02:41 +0000
Manifest next update:     Wed 13 Aug 2025 16:02:41 +0000
Files and hashes:         1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: 0w0C31I/iRfjEF1d3Lhm8VmPGTUGgZM5ZdD0i1o8/jE=)
                          2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl
                          rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 16:02:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1954 (0x7a2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032
        Validity
            Not Before: Aug  6 16:02:41 2025 GMT
            Not After : Aug 13 16:02:41 2025 GMT
        Subject: CN=68937ca1-aa0d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:14:c1:c4:7c:fb:b7:75:0d:08:56:79:7d:e2:
                    2a:3d:bc:c1:28:af:5f:ab:35:8e:a7:86:03:01:c0:
                    98:9b:b8:7d:fa:1f:ee:ba:31:7f:22:11:80:fb:83:
                    e6:12:27:ab:49:2a:6d:b6:20:9f:a2:0d:59:8c:b5:
                    49:3b:d6:c3:97:65:64:11:a9:a6:78:d0:1a:36:6a:
                    79:b8:83:af:a4:23:b8:09:95:78:cb:92:80:4a:42:
                    44:46:bc:51:f6:9e:8b:6a:82:b0:39:df:dc:ee:7b:
                    46:40:61:dd:b7:18:ee:b9:72:e9:3e:5e:81:3e:df:
                    4b:95:c4:d2:4e:af:bc:69:94:a3:b6:c2:be:19:30:
                    6c:51:a9:02:86:2b:74:6d:52:eb:1e:e2:8d:97:89:
                    59:93:3f:13:48:6c:98:d3:f5:65:73:de:ba:0b:9c:
                    85:fc:67:55:26:25:9d:7b:58:5d:83:58:11:d4:a9:
                    70:00:e2:f5:04:e1:19:d1:c7:34:c2:77:77:bf:80:
                    f1:2d:18:d9:67:f2:54:5e:2b:be:97:d4:e3:1f:0d:
                    ad:20:a8:9f:a6:96:bc:c2:93:3a:2d:08:61:27:4f:
                    27:77:24:4d:e8:e7:2c:5e:4d:95:a8:c2:dd:73:1c:
                    a8:f7:86:8d:97:ea:20:ab:6f:14:d7:36:06:71:2f:
                    6f:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:6E:68:D2:3A:CD:AA:6B:57:B0:3F:0E:14:90:F5:31:CE:7C:6F:15
            X509v3 Authority Key Identifier:
                keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:ef:d1:03:e2:f4:39:d3:b8:68:7e:34:f7:bb:47:ea:02:e3:
         fc:9d:e7:4c:63:30:b5:e0:55:6c:83:85:6b:66:38:9f:f5:52:
         f9:13:a7:8f:c7:4d:56:0d:5b:d6:ca:38:90:18:b8:a2:91:e1:
         04:88:9d:95:01:f1:ce:00:62:f6:f6:2e:0c:d1:5d:7e:f8:b9:
         54:71:44:6a:2e:eb:55:7d:28:62:c0:c8:f0:09:33:4f:5d:36:
         6b:14:bd:31:f3:83:ba:2b:af:3e:39:10:ff:99:27:c3:a3:bc:
         3d:32:05:29:d9:12:9e:37:9b:2f:cc:68:4e:03:7d:46:37:82:
         b8:9d:2b:3b:a8:87:5f:5d:8b:15:6c:67:49:af:a4:f3:72:85:
         cd:50:db:e1:63:55:c8:01:64:a1:ee:f4:59:19:a6:0c:68:45:
         2c:4d:31:c1:7c:83:64:96:a6:b6:fa:ed:73:dc:57:06:c6:c1:
         d5:29:9a:86:4f:fc:d6:cc:e9:9a:a4:9b:e7:5e:f8:82:16:e2:
         51:9e:68:5d:66:72:ac:b6:a0:14:8d:02:67:19:8a:72:bc:9c:
         34:0d:cd:70:bb:48:98:6a:06:bc:da:3a:68:18:4d:79:30:e1:
         2b:67:66:b1:88:3f:d7:42:eb:47:ee:69:30:e7:14:dc:a9:79:
         b2:0f:50:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:12:08 2025 by rpki-client