Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft
File:                     4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft (raw, json)
Hash identifier:          Xo6VIxkhHwnQJEHf3R2A2KA/dD8Zll3HCZu8xD54C7o=
Subject key identifier:   13:8D:BA:F9:C7:CE:C5:42:94:09:8D:61:26:11:A6:D0:C0:E9:95:4F
Authority key identifier: E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA
Certificate issuer:       /CN=A914E1C1/serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA
Certificate serial:       029D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft
Manifest number:          0296
Signing time:             Sat 09 Aug 2025 02:39:13 +0000
Manifest this update:     Sat 09 Aug 2025 02:39:13 +0000
Manifest next update:     Sat 16 Aug 2025 02:39:13 +0000
Files and hashes:         1: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl (hash: 5FQmqCXv1WYppmBT7Z1VQHIH+6iVsR9GyLTS73h4kJU=)
                          2: 2541D62A7F9811ED93508538C4F9AE02.roa (hash: U9zRAtnK+rMFnlnfGAU4KvzYtOXqBm7qFzqLf0N4GqM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl
                          rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 669 (0x29d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914E1C1, serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA
        Validity
            Not Before: Aug  9 02:39:13 2025 GMT
            Not After : Aug 16 02:39:13 2025 GMT
        Subject: CN=6896b4d1-63f3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:9b:a5:12:57:f9:10:08:f4:02:51:76:f2:85:
                    19:57:b0:2d:d7:61:18:9b:db:e2:37:e7:3d:df:06:
                    d3:0d:bc:bc:49:6f:38:d9:8e:f9:c1:c0:fa:65:76:
                    fa:14:3a:26:2e:bf:a0:f7:de:bf:2f:0a:99:a8:90:
                    88:f9:08:85:e7:a4:81:2c:cb:f3:58:bd:1c:2e:82:
                    2c:05:38:c1:b3:a2:60:a1:30:ff:0c:2b:d6:fe:20:
                    26:6a:1c:99:ed:c1:a9:1b:53:1a:f7:47:9c:91:e8:
                    b7:79:40:df:73:76:8d:7b:56:66:2a:21:33:b0:8b:
                    8d:38:e8:93:8a:24:15:6f:63:57:f7:14:81:e9:01:
                    23:2d:8e:62:fe:0a:7a:1d:9e:6d:f6:58:38:3f:84:
                    ee:47:c7:13:a6:77:86:0e:94:be:95:84:28:25:cb:
                    6c:cb:a1:f7:b7:a2:1b:74:2e:39:45:f0:01:90:5e:
                    a3:6c:0b:1e:df:d7:b2:b0:79:cc:31:cb:1e:81:4f:
                    0a:c3:4c:6a:70:56:ee:fd:6e:66:ff:4f:b1:a7:2a:
                    4d:2f:a2:08:85:0c:46:3d:51:da:98:8b:5e:af:2a:
                    04:71:0b:e8:03:26:b9:06:9c:fa:00:3a:75:53:aa:
                    9f:14:e6:3f:9a:6e:18:bc:5a:38:c8:1a:2d:07:05:
                    b0:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:8D:BA:F9:C7:CE:C5:42:94:09:8D:61:26:11:A6:D0:C0:E9:95:4F
            X509v3 Authority Key Identifier:
                keyid:E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:bf:f8:86:ee:33:a9:a4:d3:07:ad:98:05:82:e7:ed:5f:ea:
         fd:94:68:2e:ff:96:cd:cc:5a:cf:98:48:e3:a7:08:f3:1c:06:
         1e:ff:70:9c:a9:ec:dd:bd:eb:1c:10:c1:9d:c1:27:fe:4b:b4:
         59:7c:31:1c:24:c3:dc:06:34:f1:77:df:5e:40:7f:82:3e:8d:
         52:28:70:af:5a:9c:e7:23:14:1e:87:23:aa:19:c6:77:ed:95:
         72:e8:4b:6f:a1:5e:07:cd:c4:51:51:ce:cb:b3:2d:24:97:5d:
         82:ec:72:d4:2c:74:b6:64:45:ab:46:56:23:3f:9e:9d:b4:2d:
         ca:bb:21:b2:04:98:12:6e:be:ab:6e:f3:f0:2e:65:ac:0b:ba:
         05:af:b7:f8:3d:ba:c7:5a:cb:c7:08:18:ab:3b:67:7b:15:80:
         97:e5:2b:7b:08:cc:e1:2d:30:41:51:77:f9:76:71:34:7d:05:
         b6:9c:a5:06:35:6e:ef:aa:85:5e:4f:09:fb:76:6b:16:b6:e7:
         40:a7:4b:75:e0:d9:4a:c7:43:93:1e:e7:a4:1e:64:06:f3:73:
         a6:09:1f:21:c8:88:00:1c:52:d2:e6:09:c5:f0:d1:ea:ff:d7:
         08:e2:a7:f2:8d:42:70:40:c7:ea:ee:02:82:19:69:75:5f:a6:
         78:6b:3f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:48:44 2025 by rpki-client