Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft
File:                     KISNw_Gedyn_43735PClycW0kOk.mft (raw, json)
Hash identifier:          Pw7OKMJmiHlBM768A+QXdl5GHNlAhBhRBPGVglg/Cds=
Subject key identifier:   D2:E0:C0:26:B4:CE:E5:5F:D6:11:74:35:5C:EA:B2:55:43:6C:29:27
Authority key identifier: 28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9
Certificate issuer:       /CN=A9141B5B/serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9
Certificate serial:       01BE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft
Manifest number:          01B4
Signing time:             Tue 05 Aug 2025 03:37:01 +0000
Manifest this update:     Tue 05 Aug 2025 03:37:01 +0000
Manifest next update:     Tue 12 Aug 2025 03:37:01 +0000
Files and hashes:         1: KISNw_Gedyn_43735PClycW0kOk.crl (hash: t8LD4Yk1hU1lf4FDWuHQB3ULKrf15VCbmr7YWae4Bk8=)
                          2: EC61C060DDB411ED93355C4FC4F9AE02.roa (hash: Ds1Oggb1CXmheiOx4YZNVxU2i1qg8eEHn8KdU83omHg=)
                          3: 6C0C84D8DD9E11EDB661B12CC4F9AE02.roa (hash: NvHtd8ujE1yELsuYXTHpNbSZA6sMXQEq9scs3taiBxY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl
                          rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 03:37:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 446 (0x1be)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9141B5B, serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9
        Validity
            Not Before: Aug  5 03:37:01 2025 GMT
            Not After : Aug 12 03:37:01 2025 GMT
        Subject: CN=68917c5d-4aeb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:50:da:7e:f8:7d:99:e4:35:b0:44:23:78:7b:
                    f8:ea:ba:98:f0:32:f4:b9:98:dd:57:57:df:a9:52:
                    f5:3d:c1:d2:21:38:cf:ee:88:5a:d4:95:35:28:d4:
                    c1:1e:1d:f4:73:c1:1f:04:00:ab:a6:63:fa:66:ae:
                    42:c5:df:bc:7f:3b:0f:7e:1b:76:82:cf:73:88:d6:
                    80:c2:0f:35:81:1a:fe:1b:3b:b0:bc:5f:f3:25:f5:
                    68:f9:27:50:ad:69:d8:5b:7c:25:21:16:54:b0:9e:
                    12:5c:0f:4d:b3:28:2f:b1:19:48:24:39:1f:f3:cb:
                    40:bc:42:73:33:6d:10:d5:97:15:c7:2f:a9:a7:80:
                    f2:20:b9:ee:ac:e7:66:a9:85:d3:52:cd:5d:4c:76:
                    8d:1e:ae:a7:5a:da:48:61:63:7a:8f:02:c4:8d:33:
                    11:04:b2:2d:10:22:34:20:f9:8b:0c:ae:aa:7a:b3:
                    b3:c8:15:1b:42:42:23:41:a4:cf:51:f4:eb:a6:fe:
                    11:7e:c2:6d:69:04:ae:40:a6:4b:5d:d2:1e:46:dd:
                    1f:5e:a2:cd:8e:e9:9c:07:ee:3c:e5:17:88:7c:b5:
                    5e:54:54:68:13:91:52:9d:30:a3:6a:08:42:6b:ee:
                    a8:a5:36:61:d0:fd:33:b9:9c:75:79:6e:93:06:d1:
                    4f:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:E0:C0:26:B4:CE:E5:5F:D6:11:74:35:5C:EA:B2:55:43:6C:29:27
            X509v3 Authority Key Identifier:
                keyid:28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:ef:48:ed:72:6d:e1:6c:01:f9:ca:d1:35:93:56:7b:46:74:
         9c:e9:0c:9a:25:a9:82:be:3f:7a:64:89:2b:52:5a:d4:02:5b:
         bb:e8:ae:ce:de:1c:46:c8:ad:52:db:21:41:29:48:44:ef:3a:
         d0:c8:cd:e7:b3:83:fb:1a:d7:d2:d0:7d:4a:7e:0a:04:39:53:
         ad:e2:38:71:f5:5d:34:5e:3b:38:f8:d0:0c:dd:d1:db:28:73:
         fa:46:3f:33:82:08:bd:b7:ce:92:13:ff:33:ac:fc:7d:fe:88:
         35:5e:ba:0d:43:37:30:cf:38:2f:31:4a:c1:52:05:42:20:0a:
         c7:65:31:73:55:44:4b:25:d6:4c:1e:ce:d8:ef:c4:67:70:58:
         11:f5:93:3b:6e:48:95:17:e0:a2:d6:75:3e:21:a1:e8:ea:49:
         47:4a:c8:a3:42:5e:c7:38:aa:3b:3d:aa:cc:28:59:b3:fa:00:
         36:42:d8:d9:95:6c:20:16:cc:44:a6:49:d8:8d:a9:0b:1a:3c:
         91:03:c9:69:66:09:8a:96:c5:b3:9f:20:f1:5a:67:4c:69:fc:
         c7:e4:93:d1:5b:cd:75:29:88:4c:58:6b:6e:76:4c:7e:0b:b5:
         6d:87:90:65:4c:ea:ac:dc:7c:ef:6a:8a:dc:7e:22:7d:99:8d:
         8f:a0:07:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:37:01 2025 by rpki-client