Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft
File:                     VB4KZv5g86rAJQLO8eSOYnpi90E.mft (raw, json)
Hash identifier:          MXU8WSAR9PbQ8PmUctk7vawuw6VDwynpzPRlE5RVyr0=
Subject key identifier:   1F:82:CF:0F:A2:ED:C8:1F:78:E2:35:90:82:F2:E9:58:72:65:2A:CE
Authority key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41
Certificate issuer:       /CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741
Certificate serial:       0B32
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft
Manifest number:          0B2A
Signing time:             Fri 08 Aug 2025 19:29:37 +0000
Manifest this update:     Fri 08 Aug 2025 19:29:37 +0000
Manifest next update:     Fri 15 Aug 2025 19:29:37 +0000
Files and hashes:         1: VB4KZv5g86rAJQLO8eSOYnpi90E.crl (hash: geUHiQgLMToCPZsCsBTkq7ZyJdJu8cMYC7QkoRcOBPg=)
                          2: E0FCE614425811EAADEA3B45C4F9AE02.roa (hash: 4i/qRxDxm1IhOaEBUeWCrIN1RXkz58rViMQa88EFEXM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl
                          rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2866 (0xb32)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91288D9, serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741
        Validity
            Not Before: Aug  8 19:29:37 2025 GMT
            Not After : Aug 15 19:29:37 2025 GMT
        Subject: CN=68965021-76fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:a0:1b:65:ac:0b:d2:e1:66:b7:c5:b1:4f:fa:
                    2e:db:23:f0:ef:ab:f5:89:3a:60:e6:3f:3f:77:04:
                    c2:fd:0e:cf:b7:f2:97:77:0e:40:04:50:f4:eb:5f:
                    3f:81:e7:97:07:11:82:11:55:2f:16:6c:0e:d5:86:
                    51:33:32:11:c5:42:46:92:df:56:15:6d:a1:1b:52:
                    3b:9b:36:85:69:c4:0c:82:2f:e6:c6:7b:c2:35:44:
                    6c:b5:29:e0:1c:a1:e7:3f:21:d7:4c:52:bd:0f:0a:
                    09:54:11:cc:34:53:87:a1:4d:43:6b:a3:11:5d:15:
                    71:ec:36:cf:79:4c:41:58:a7:47:0c:94:35:7d:c0:
                    03:a5:e4:08:4e:72:12:37:b4:66:52:d6:81:4f:7d:
                    b2:f6:02:e6:f8:b4:f8:af:2e:5c:ac:79:86:de:3c:
                    16:be:e1:b6:b6:5b:b6:f3:0d:a6:f9:d2:1f:70:19:
                    9d:34:1c:d7:1d:22:04:f2:d9:63:d2:93:29:04:5f:
                    ca:d0:cb:8b:e4:40:b1:6c:e5:1a:9c:81:f9:04:9b:
                    a8:f0:68:13:f1:8b:94:c6:a9:5c:f9:d4:64:cb:1d:
                    3d:a8:99:8f:24:53:c7:db:9b:81:8e:53:74:1d:18:
                    4f:cc:dd:fb:5e:04:4c:d1:3c:43:bd:66:aa:f4:b6:
                    7c:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:82:CF:0F:A2:ED:C8:1F:78:E2:35:90:82:F2:E9:58:72:65:2A:CE
            X509v3 Authority Key Identifier:
                keyid:54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:34:f5:b9:97:26:b3:cb:e1:d0:5c:14:d9:99:de:41:ff:7d:
         39:5c:fb:bc:40:a8:4a:9c:5c:47:1e:16:3b:42:bd:3c:b2:f8:
         ee:bd:be:dd:74:1b:7f:18:f3:10:35:4b:3a:d2:34:87:34:95:
         8e:9b:30:2a:c1:72:97:86:63:e7:c4:41:7b:d5:d6:f2:ab:71:
         34:06:39:91:63:24:93:47:a8:e2:e6:90:1e:5d:8e:bb:54:22:
         03:05:12:65:6e:45:00:27:15:54:eb:e6:85:40:64:eb:9e:f8:
         a3:36:f7:04:8b:15:67:2b:9d:12:d8:dc:e9:e1:5e:b1:dd:3b:
         43:70:ee:8c:a9:4a:ae:66:4a:23:66:26:ad:5f:4f:3f:76:a6:
         69:70:c0:d6:11:ff:d5:31:25:55:b0:1e:19:23:d7:37:80:4e:
         fb:93:44:d5:b3:bf:42:b9:ba:8a:15:cb:48:3d:82:29:5b:0c:
         af:23:c2:4f:cb:00:02:d4:db:68:c4:64:cc:a5:e1:71:d2:74:
         92:95:fb:ae:1e:e6:9c:ba:08:5b:91:36:5b:11:ca:3d:23:8d:
         4d:eb:16:5f:8f:d4:32:88:ec:c8:1f:2a:0e:d7:ea:cc:c7:d3:
         80:f4:e7:fc:50:0b:1b:a2:85:68:ac:56:4a:6b:b7:f8:f5:1e:
         3f:9f:d6:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:12:29 2025 by rpki-client