Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft
File:                     ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json)
Hash identifier:          vzYSTVAA9bjUHNgPg27mYQb2VVewgJP8LNS1tbkdakI=
Subject key identifier:   95:D1:DE:16:9A:AA:D8:F4:81:A8:0B:CF:79:EB:D4:F6:8D:2F:07:7D
Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1
Certificate issuer:       /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1
Certificate serial:       052D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft
Manifest number:          0524
Signing time:             Sat 09 Aug 2025 00:02:50 +0000
Manifest this update:     Sat 09 Aug 2025 00:02:50 +0000
Manifest next update:     Sat 16 Aug 2025 00:02:50 +0000
Files and hashes:         1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: 8mQXDp6mfRGM2PFMsKHxItf93eSF8ypLDNMnx3RHKjk=)
                          2: 47B1CB6E460D11F091179886C4F9AE02.roa (hash: UJrloLrvsoge3wfmese2Zva7x1vRvjjKxNvEsNCfNYE=)
                          3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: IKJkF5tTVOAg9Gcj+RMqJavUI1QmsLflBy8eIb93AAQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl
                          rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1325 (0x52d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1
        Validity
            Not Before: Aug  9 00:02:50 2025 GMT
            Not After : Aug 16 00:02:50 2025 GMT
        Subject: CN=6896902a-87e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:24:23:88:ed:74:55:08:58:da:54:0e:3f:4e:
                    d1:e7:12:79:73:2b:9d:da:97:11:0e:11:5c:88:6e:
                    6a:f8:d8:5e:4c:3c:af:c2:d7:7c:41:11:c5:2b:e7:
                    11:02:17:52:8c:70:fc:ad:98:f4:4c:66:05:15:56:
                    59:8f:5d:46:67:60:6b:c7:39:5f:29:ca:ec:a0:1c:
                    2a:65:3a:e8:77:3a:f0:fc:af:45:59:d8:0d:82:37:
                    12:a2:13:eb:ae:d7:58:cc:7e:7b:c0:ea:04:18:18:
                    f6:8c:37:c8:57:b4:7d:2e:74:bb:e7:02:8a:1e:04:
                    2c:0c:e6:4e:84:4e:08:39:41:25:5d:65:61:65:6d:
                    5a:e9:12:0d:55:9a:01:df:3c:b1:05:e2:b5:3a:9f:
                    89:00:db:a6:3b:f4:a8:7b:b0:6e:bf:e4:72:b8:e7:
                    cd:5d:d1:de:ab:99:d9:21:66:81:32:c3:68:b0:b1:
                    79:60:b2:f2:00:e6:40:ef:97:65:68:f5:a3:c4:5c:
                    ae:ab:65:60:bd:1a:76:96:af:0a:c7:57:32:9b:33:
                    01:d2:60:bc:23:c6:eb:e3:d0:65:d1:4b:a5:f2:da:
                    7b:ad:36:47:6b:3c:a6:2f:09:df:86:6e:e0:5c:e3:
                    08:d1:77:98:cf:fc:82:a5:4f:ae:b3:70:75:75:f8:
                    13:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:D1:DE:16:9A:AA:D8:F4:81:A8:0B:CF:79:EB:D4:F6:8D:2F:07:7D
            X509v3 Authority Key Identifier:
                keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:43:44:d0:db:80:60:bd:d7:3c:47:7c:ba:f0:40:5c:3b:2b:
         6e:50:69:99:13:f6:ac:46:f6:e4:c4:86:9d:de:7a:a2:1b:e7:
         96:65:d7:bd:43:be:be:ac:4f:b7:c9:4d:f7:ff:64:83:04:8d:
         f3:1b:38:61:3e:44:82:8c:82:89:f0:ed:08:1c:c6:73:1d:af:
         2c:ab:81:5a:92:45:38:e6:b0:b7:6f:ef:8d:5b:90:a5:a9:06:
         92:11:1d:23:bf:0b:14:ed:4c:c7:85:3a:f9:48:88:54:c7:c4:
         8c:d9:f8:3c:b4:08:87:be:bb:b5:43:87:d6:5e:2f:64:6e:3f:
         2b:75:03:d4:d8:39:3f:6f:a5:71:fe:12:aa:ab:74:cc:e2:b6:
         5a:6b:48:18:8c:76:e6:13:0a:09:6e:d8:65:0a:79:d9:a6:86:
         06:4c:ee:f4:2c:5f:06:b1:e0:05:3c:ac:a0:af:41:4e:c1:24:
         10:eb:c8:a4:76:52:f3:31:05:af:6d:e3:8e:aa:f7:3f:39:1c:
         a9:09:01:18:49:a2:e7:9a:e1:e0:2d:00:25:76:63:19:53:2e:
         56:80:da:f8:80:2f:36:57:56:cc:7b:0c:ea:24:49:90:85:73:
         81:74:ce:99:eb:12:bb:69:6a:ad:7a:2e:d2:76:57:c0:02:9a:
         f0:f0:08:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:11:03 2025 by rpki-client