Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft
File:                     8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json)
Hash identifier:          2NErzug51Tig+XJFnvZtf+erWERJ3ORpI8sE6zopRjo=
Subject key identifier:   85:30:46:7E:B5:C6:C2:1F:1E:79:89:DF:FA:A3:ED:78:89:95:94:17
Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19
Certificate issuer:       /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119
Certificate serial:       0A2A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft
Manifest number:          0A23
Signing time:             Wed 06 Aug 2025 20:04:16 +0000
Manifest this update:     Wed 06 Aug 2025 20:04:16 +0000
Manifest next update:     Wed 13 Aug 2025 20:04:16 +0000
Files and hashes:         1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: iGSnEQNVSTsAGj5qFj88AtwfMSFsvewYKRGNwAKo0T8=)
                          2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl
                          rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 20:04:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2602 (0xa2a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119
        Validity
            Not Before: Aug  6 20:04:16 2025 GMT
            Not After : Aug 13 20:04:16 2025 GMT
        Subject: CN=6893b540-39ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:4d:77:9a:a3:56:c8:65:24:a4:6c:42:f1:fc:
                    7c:f0:1d:3b:cc:54:5a:b4:74:b8:bb:cb:02:45:da:
                    1a:67:bc:3b:6b:82:64:44:fc:fe:ab:0e:fd:67:61:
                    e6:ad:17:f2:b6:a8:52:93:d4:5a:6b:e0:7f:62:09:
                    fe:41:f7:98:04:57:d6:54:7b:62:03:f5:43:ff:e6:
                    8d:2f:b5:c0:80:8d:d5:6c:0c:15:45:75:d4:00:65:
                    ab:6a:c4:f5:cb:33:9e:53:05:12:d5:71:d7:bb:76:
                    75:ad:35:38:d9:c4:19:78:c2:0f:a7:2e:ec:83:fc:
                    dd:39:42:e1:fe:3e:61:ae:3f:d6:43:f5:45:1f:9f:
                    11:d9:2d:a9:eb:f0:8e:8a:9c:a5:f8:b5:64:6b:f3:
                    fa:50:95:5a:c0:90:3e:62:43:89:c0:f8:8c:27:f4:
                    d4:ab:38:f5:f9:34:65:0f:05:45:94:27:7d:73:ee:
                    b9:c6:25:22:c2:7a:cc:1e:56:16:30:b5:bc:08:34:
                    39:6f:a7:52:44:dc:31:8f:de:ee:bf:88:05:90:1d:
                    a4:c1:c7:9e:e5:80:46:66:4e:07:b3:f6:52:d1:e6:
                    75:8f:1c:88:ee:39:95:83:7c:b1:e4:82:d3:7f:0d:
                    86:5f:b6:66:70:9c:02:12:52:b0:cd:24:2f:fd:27:
                    2f:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:30:46:7E:B5:C6:C2:1F:1E:79:89:DF:FA:A3:ED:78:89:95:94:17
            X509v3 Authority Key Identifier:
                keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:ce:24:23:a3:7c:d7:aa:21:b8:94:13:2e:5b:19:fc:32:99:
         07:8a:99:da:fe:2e:0d:3c:fe:a2:f4:38:2c:38:01:d7:be:a1:
         18:9d:7d:df:9e:8c:58:05:b5:f9:96:c5:b1:87:f9:de:07:6a:
         98:77:03:0d:99:4f:90:33:51:29:34:ac:07:43:11:cc:32:e2:
         05:8a:b3:c3:83:27:0b:31:d4:1d:e9:e0:fc:2b:af:75:08:0f:
         15:6c:f4:44:f0:a7:80:a0:23:be:21:ab:2d:4e:33:12:b2:c7:
         45:53:44:72:ee:59:81:c1:4b:f8:87:cc:43:7a:b1:69:a6:b1:
         5a:4e:0d:06:e7:8e:50:6d:07:f7:21:87:f7:ea:00:ce:d7:c3:
         31:99:ef:02:78:d7:84:6e:76:85:91:b2:57:4e:72:df:6b:b2:
         a2:d3:fc:e4:bf:92:89:0d:3f:c5:75:7d:79:d8:7b:b2:87:5e:
         2a:5f:f6:27:36:99:8c:ea:31:4a:71:50:8c:d5:11:37:1a:36:
         e4:08:d7:0f:bf:94:26:96:c6:bc:36:a5:d0:f4:03:11:ac:cc:
         1c:19:ef:c8:87:3f:de:7b:ef:c6:5d:d9:fe:06:15:19:c9:13:
         fd:22:5a:99:51:60:60:b4:b4:24:f3:d5:f9:67:1f:9f:be:9b:
         b4:81:d3:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 20:57:52 2025 by rpki-client