Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft
File:                     2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json)
Hash identifier:          cgASQ1xmOS7ym3xYCpOnOuHGl1h15Sr808dzfdXWP7w=
Subject key identifier:   2D:69:BD:B3:5B:F2:89:1F:E1:8B:0E:43:9E:DF:33:20:21:8C:37:2D
Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC
Certificate issuer:       /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC
Certificate serial:       03E4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft
Manifest number:          03E0
Signing time:             Sat 09 Aug 2025 01:03:37 +0000
Manifest this update:     Sat 09 Aug 2025 01:03:37 +0000
Manifest next update:     Sat 16 Aug 2025 01:03:37 +0000
Files and hashes:         1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: iQ/oOoSA5lOhz7BDCojYkw93HWYiXaTqjaTz+BIqxho=)
                          2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: 2v76irvv8YBootZ9ixmNS7BdVolsdY5VCXkGVLqaKlA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl
                          rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 996 (0x3e4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC
        Validity
            Not Before: Aug  9 01:03:37 2025 GMT
            Not After : Aug 16 01:03:37 2025 GMT
        Subject: CN=68969e69-47ee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:ba:88:be:2e:6b:8a:1c:11:1c:af:f6:99:d2:
                    4a:e9:d6:a0:4b:00:36:5a:7e:b1:63:39:78:97:94:
                    6c:08:37:e6:e5:31:c8:5a:de:4c:6c:40:36:47:18:
                    00:41:be:27:a0:f9:7b:88:f7:6e:f7:c1:29:9d:d9:
                    ce:fa:23:2b:fe:20:4e:a7:4d:c8:f4:96:3b:dc:58:
                    4a:2a:dd:b2:82:18:81:ff:30:61:d2:d0:0c:d4:75:
                    dc:2a:a9:19:06:b6:49:fa:7b:f9:35:b4:7f:7c:a7:
                    2a:79:7e:c1:21:6e:fd:12:0c:d6:54:a7:32:1b:17:
                    70:2a:c4:9e:58:60:54:f9:93:63:76:8c:ad:cf:d6:
                    25:e4:a1:37:5a:9d:81:a8:f1:ce:12:f2:08:ee:49:
                    7f:23:6a:d0:62:c7:95:d2:d9:02:9a:67:fe:8d:05:
                    c1:fa:bd:c1:62:2c:80:8f:6e:42:bd:2c:08:d0:d5:
                    86:cd:1b:34:71:17:75:fd:ea:92:43:a1:bd:c2:2c:
                    b9:26:30:b8:3b:ee:b7:a3:04:20:47:1a:88:21:48:
                    50:27:d6:ae:44:9f:95:c6:0d:1c:d9:b7:cb:6d:8b:
                    db:a7:c7:71:75:18:56:5b:e7:b7:93:f5:44:c6:55:
                    b2:49:5d:30:22:17:39:25:d8:90:25:d4:70:30:e1:
                    fa:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:69:BD:B3:5B:F2:89:1F:E1:8B:0E:43:9E:DF:33:20:21:8C:37:2D
            X509v3 Authority Key Identifier:
                keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:ae:92:cd:4b:40:7d:32:ac:3c:00:a3:6a:2c:49:ef:5d:c5:
         9a:8a:29:cd:84:28:a0:80:b1:6a:01:b8:95:8d:fe:fa:ec:34:
         28:17:b8:e2:4f:ba:56:54:71:4a:fe:cd:94:f6:1a:db:8e:c4:
         ea:8d:37:6a:11:f9:21:98:09:90:b1:3e:61:c8:d7:f5:57:3d:
         8b:9f:1f:53:bb:66:d5:a5:8e:98:82:49:5c:46:e5:19:39:39:
         b8:c2:00:6f:a5:98:b7:ea:aa:2e:64:04:dd:20:30:2e:cd:3d:
         05:24:96:de:c1:f4:f4:75:f7:75:f4:32:b9:af:f5:27:02:f5:
         2b:66:c2:b4:c5:0b:3d:7d:3a:58:19:24:67:fe:d0:2f:c0:9d:
         44:b4:3a:06:56:4b:3e:f0:ff:6d:e9:70:03:23:b4:d5:11:b8:
         55:1c:4a:96:08:32:b7:a2:a9:27:2d:2f:1d:64:83:e9:d9:54:
         be:cc:75:6d:a3:92:2f:e1:00:fc:ed:61:6b:47:1f:ed:79:01:
         ed:6c:6a:ac:f4:18:7e:de:7c:e9:2a:dc:5e:34:0c:17:bf:91:
         8f:26:2b:d5:e0:49:14:b8:6f:dc:7f:3f:02:3e:dd:c6:99:19:
         6e:e8:74:e3:40:54:9a:d8:0d:c8:a6:29:58:30:c8:d0:fa:ea:
         7e:0b:58:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:11:25 2025 by rpki-client