Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft
File:                     JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json)
Hash identifier:          YL+oWya2m/rIysAeVNigWTaVw+BwtFcRxhJVx/GXHmM=
Subject key identifier:   49:3C:FE:30:9C:0F:DD:67:21:1F:63:06:A8:E9:8D:D5:F9:16:00:00
Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26
Certificate issuer:       /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426
Certificate serial:       0E36
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft
Manifest number:          0E2B
Signing time:             Fri 08 Aug 2025 18:00:24 +0000
Manifest this update:     Fri 08 Aug 2025 18:00:24 +0000
Manifest next update:     Fri 15 Aug 2025 18:00:24 +0000
Files and hashes:         1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: YEw5zctxpdbFS9XxP9hV8shuM9Hxr5TkMaYz0FU1wGY=)
                          2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl
                          rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3638 (0xe36)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426
        Validity
            Not Before: Aug  8 18:00:24 2025 GMT
            Not After : Aug 15 18:00:24 2025 GMT
        Subject: CN=68963b38-6d40
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:00:8c:63:03:a3:e7:c2:ab:57:f9:ab:7b:74:
                    7a:c3:fb:e3:84:44:4e:48:b9:e1:c4:ec:1f:4f:d7:
                    93:cb:47:8a:7f:6a:a7:f4:91:5f:c6:c9:28:7b:53:
                    8b:4b:89:15:e1:5f:dc:73:ba:4d:06:84:ad:b9:ae:
                    a4:bf:f2:84:be:18:48:8f:f7:57:93:7d:3e:50:75:
                    41:a7:36:2c:d5:8b:aa:20:98:b4:95:97:4c:27:a4:
                    2f:6c:c2:d7:93:47:73:a2:3d:47:25:b4:88:92:15:
                    50:c4:61:d9:af:a0:d1:b1:44:0f:8a:71:ae:72:81:
                    9f:ce:df:54:4e:47:00:8b:22:d1:09:5d:34:5e:0f:
                    3f:95:7d:16:87:38:cd:b6:f2:9e:6b:e0:a1:cf:7c:
                    de:14:f0:96:ac:0f:fd:e6:bc:f6:fc:44:5d:ec:06:
                    82:3c:8c:eb:27:d8:49:4b:2e:29:5f:f2:3e:6f:27:
                    cd:59:eb:3f:5f:44:da:ee:c2:06:e5:07:54:1d:fa:
                    8f:2b:9e:27:f5:a3:54:50:08:66:92:1e:26:3f:30:
                    df:07:00:2a:88:7c:84:bc:f1:fa:e9:7f:19:64:4d:
                    d6:fc:29:64:9f:e2:dc:83:18:ad:32:f5:1c:5c:c9:
                    93:ae:dd:ae:10:35:07:fd:ce:0e:97:1c:bb:13:b4:
                    9b:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:3C:FE:30:9C:0F:DD:67:21:1F:63:06:A8:E9:8D:D5:F9:16:00:00
            X509v3 Authority Key Identifier:
                keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d6:6f:97:7c:a5:29:8a:3b:f8:7c:c4:ba:65:b2:e7:2b:78:f3:
         67:8d:24:6a:8f:0f:e6:2f:b2:e6:80:09:a6:9b:21:1f:f8:5f:
         9c:a3:e4:ef:55:f1:f8:e3:83:2b:0b:c9:4f:39:c2:d0:14:db:
         46:cd:7e:8c:65:b5:2a:7c:2d:1e:b7:fb:08:f2:cd:da:50:6b:
         93:10:f6:bb:ed:1f:99:ff:36:e4:da:c5:ba:db:b6:ba:b5:98:
         a8:e6:76:7a:dc:de:bf:6c:ba:1c:19:c3:69:99:27:da:6d:12:
         57:d3:bb:5d:ff:81:41:ea:d1:3b:6a:56:1b:a7:24:3f:6b:a9:
         31:17:4f:0e:54:37:be:68:71:6f:1d:1f:b1:e4:d3:cf:92:39:
         9a:f8:e5:2c:cb:18:fc:a9:30:2e:6f:51:08:53:93:53:d7:08:
         d3:f2:ec:b2:a6:4c:28:de:3d:c4:6f:ff:e7:05:2c:4a:22:a6:
         3e:be:a9:44:e6:c8:75:9d:b8:13:02:f5:e4:5a:05:65:b2:66:
         56:27:39:b8:37:29:25:52:34:f7:7d:78:c0:49:0c:96:7c:fd:
         c0:01:2d:ba:f6:a9:49:00:e5:18:47:35:82:27:31:a9:4a:84:
         41:10:59:c1:11:82:24:be:7b:af:17:42:46:26:fe:c9:55:ae:
         c0:2e:dc:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:05:56 2025 by rpki-client