Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
File:                     kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json)
Hash identifier:          MaTq8GgFn51cLiytVe8wF1G8CPZY76NfkIRqEsjgyNE=
Subject key identifier:   9B:6D:F5:7B:90:50:7C:AA:C5:6D:34:31:13:EA:78:73:CD:F8:1C:83
Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5
Certificate issuer:       /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5
Certificate serial:       040C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
Manifest number:          0408
Signing time:             Mon 11 Aug 2025 00:35:39 +0000
Manifest this update:     Mon 11 Aug 2025 00:35:37 +0000
Manifest next update:     Mon 18 Aug 2025 00:35:37 +0000
Files and hashes:         1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: AEbicPKJ850XdnAAFdf4AS4OBL+hIWfpCygFG3j0xfE=)
                          2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl
                          rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1036 (0x40c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5
        Validity
            Not Before: Aug 11 00:35:37 2025 GMT
            Not After : Aug 18 00:35:37 2025 GMT
        Subject: CN=68993ada-3d53
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:8a:9f:0d:e4:00:6d:d0:b9:82:dd:bc:b9:c0:
                    5e:56:ba:41:22:79:d8:10:2a:38:75:91:49:2d:66:
                    6e:96:c5:b5:4b:5d:08:00:af:89:6c:e5:a6:66:9e:
                    f3:62:ac:a8:ee:5f:ce:b4:cc:71:c6:16:c0:86:44:
                    b0:4b:2b:a5:8b:7a:f7:f4:4f:83:be:96:5f:c6:7c:
                    d1:f3:9e:2f:d8:ae:bf:c1:af:c7:63:3d:78:9e:f3:
                    4f:84:4d:07:d4:5f:b2:64:40:3f:5b:ee:15:ac:2a:
                    e3:27:57:b9:fb:a5:23:e6:e5:e6:05:80:50:d6:0b:
                    7f:2b:fc:6a:b4:17:80:ac:7e:4a:2a:15:08:83:d8:
                    ad:83:b7:ca:4e:6e:dc:f5:8d:c8:1f:66:9d:69:b9:
                    0e:f5:b1:0e:e0:a2:79:d9:f8:cb:9f:f9:f2:3d:f4:
                    ca:f6:75:54:1c:54:5e:ab:f9:6d:20:51:c3:d7:95:
                    5e:a5:de:16:78:03:03:90:7d:4f:54:b9:ac:41:4a:
                    8c:f8:2a:6c:86:06:7a:5c:50:53:71:2c:26:7e:a6:
                    e6:35:26:b1:32:6e:73:fa:98:ba:45:34:ef:a2:71:
                    50:3d:a6:5c:14:8d:dd:73:ae:a4:ad:ba:00:64:96:
                    b7:0f:6f:2b:36:56:15:dd:e6:6a:7b:93:47:81:45:
                    9a:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:6D:F5:7B:90:50:7C:AA:C5:6D:34:31:13:EA:78:73:CD:F8:1C:83
            X509v3 Authority Key Identifier:
                keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:ad:44:31:8b:a8:31:cf:35:3c:7d:36:95:1c:a0:17:5e:fd:
         24:20:c1:25:cb:ec:e4:14:2b:4b:e8:10:39:99:49:ba:c3:0e:
         5f:96:9c:06:fe:c3:64:8e:f9:7a:b2:16:28:db:5d:39:7a:e4:
         5b:7f:c4:92:d6:89:55:6a:6b:59:51:b8:7f:54:e2:5c:b7:a7:
         f6:48:eb:74:e1:97:a2:99:42:be:d7:3b:8a:4c:15:fb:a1:ee:
         50:a6:5c:94:04:63:a2:9a:9d:3d:75:67:8a:58:8a:3e:19:c5:
         86:90:bb:ec:8b:35:39:5c:bf:81:35:7f:29:2d:63:21:17:51:
         1a:13:2f:fe:d7:4a:8d:29:f1:56:d1:65:a6:8b:2a:29:19:dd:
         a5:27:1f:2b:ac:18:5c:2c:ae:ce:ae:3d:4a:91:7f:14:29:8a:
         de:c1:c8:77:a4:8f:68:22:5b:66:3a:ed:4a:17:25:f1:c3:4a:
         c7:bf:67:0d:e6:76:0b:3c:6c:cb:85:c2:71:46:e6:5a:3c:3f:
         42:65:b3:a3:01:95:2b:85:0a:7b:49:9d:cb:d5:62:fd:fd:94:
         4a:e1:c9:73:c8:fb:d9:aa:c4:ca:89:68:66:ab:27:23:49:56:
         71:4b:cb:ed:24:3c:92:b8:43:b1:3f:ad:2f:86:8a:7c:37:5b:
         8c:33:b2:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:35:55 2025 by rpki-client