Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft
File:                     rBnGa8SzHOuTC6auDW63R7EKtgY.mft (raw, json)
Hash identifier:          davyHlj5zjsT2Tl8aj6Re5MojKdGxxwXjYYI0tcmViE=
Subject key identifier:   B9:5B:81:3E:F5:B8:CC:0C:04:63:8C:F0:1E:C9:27:DB:D7:C5:DA:37
Authority key identifier: AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06
Certificate issuer:       /CN=A9141E28/serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606
Certificate serial:       34B0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft
Manifest number:          34B0
Signing time:             Fri 08 Aug 2025 14:41:52 +0000
Manifest this update:     Fri 08 Aug 2025 14:41:51 +0000
Manifest next update:     Fri 15 Aug 2025 14:41:51 +0000
Files and hashes:         1: rBnGa8SzHOuTC6auDW63R7EKtgY.crl (hash: Vbzni0hp2Lm8tJ/tpxTt4zMedXch2CzREA4WYSMN5fY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl
                          rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13488 (0x34b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9141E28, serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606
        Validity
            Not Before: Aug  8 14:41:51 2025 GMT
            Not After : Aug 15 14:41:51 2025 GMT
        Subject: CN=68960caf-f3c4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:1d:56:cf:ff:85:19:3a:fd:a8:bf:cd:49:e6:
                    3a:e4:45:14:45:f6:1f:20:4a:b9:14:70:78:32:d6:
                    29:84:4d:db:1f:5b:91:1a:60:a9:04:f7:aa:a2:ff:
                    0a:ae:39:f1:5e:55:68:fc:40:a7:a8:6d:6b:19:6d:
                    a5:e6:fd:f3:90:04:fb:b6:e2:7c:d8:b3:15:1e:09:
                    63:78:da:dd:02:9c:45:ae:37:91:31:74:be:07:54:
                    4b:e8:0b:89:0e:c8:fb:f2:66:7f:83:68:15:0e:25:
                    9d:06:fc:8b:f6:a9:05:ea:ef:f6:07:ea:ce:67:02:
                    b7:86:c1:dd:a6:5d:39:bf:80:f7:49:df:27:54:06:
                    c1:90:08:39:2a:e9:85:42:bd:c3:b7:7f:c6:e7:fc:
                    c9:24:f7:d0:c6:70:cb:ed:5d:a4:6c:6f:ae:5b:c9:
                    16:9c:2d:26:d2:5f:e4:01:31:de:1a:47:6c:3d:11:
                    a8:aa:51:3c:c9:3f:ba:59:fd:43:ba:09:8e:32:14:
                    0a:93:e0:93:cc:5d:5a:21:0d:9e:a1:0e:08:64:ad:
                    a3:3a:2d:6e:45:15:b1:67:86:f5:f9:e7:32:d6:23:
                    27:50:4c:6b:80:87:25:71:92:dd:c1:5b:c0:b5:6b:
                    50:ca:5d:96:dd:7b:c4:42:b7:f0:74:4c:d8:c2:04:
                    76:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:5B:81:3E:F5:B8:CC:0C:04:63:8C:F0:1E:C9:27:DB:D7:C5:DA:37
            X509v3 Authority Key Identifier:
                keyid:AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:92:7f:09:fc:c4:39:be:46:38:64:7d:cf:1c:de:56:9b:0c:
         12:46:af:ce:dc:43:2c:7c:ed:de:97:15:9a:b8:24:3e:cf:4c:
         f0:8b:10:bb:53:95:0c:cf:b2:24:87:18:db:d8:ca:59:8d:a2:
         f1:58:69:6e:1d:6d:59:fb:80:83:97:7a:6d:92:24:68:69:6c:
         86:64:d9:be:fa:ca:3d:eb:95:b0:3f:78:ad:fd:cf:77:73:8e:
         6d:b7:55:ea:f8:9b:2e:68:48:af:a8:27:5b:42:1c:89:bb:9e:
         f9:7b:34:3c:73:51:e1:dd:19:88:f6:e6:ab:42:27:46:18:a7:
         3e:0c:61:53:51:05:87:15:3b:45:3d:43:2a:b5:b8:c6:5d:eb:
         12:f0:16:bc:ea:13:24:a1:b1:53:15:f6:25:d1:68:58:79:4e:
         6a:b5:21:d5:7f:14:f7:04:cb:04:42:b2:83:1e:8e:48:6b:22:
         07:27:d3:a0:73:e6:b6:4c:c0:30:d5:87:7c:8d:97:21:53:e4:
         ec:79:11:0a:68:77:e1:d1:b0:4f:83:c7:b0:00:8e:de:3c:da:
         19:1f:b4:81:01:fa:74:27:a4:3c:88:be:28:6b:e5:3c:0f:2b:
         45:85:af:8a:c4:bd:a6:f7:2e:cb:72:c5:2d:ac:b7:12:e3:30:
         dd:b5:49:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:48:52 2025 by rpki-client