Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft
File:                     4JlhFVCKOtWZFdurzLaW26C0zHI.mft (raw, json)
Hash identifier:          RWvPIxk6WWToGXNo+40kyd4uFYmKv2OBUThjg87jLZ4=
Subject key identifier:   EA:B6:10:21:79:94:E1:14:4C:1F:1E:5C:48:D4:74:3F:AA:AB:EB:06
Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72
Certificate issuer:       /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72
Certificate serial:       0596
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft
Manifest number:          0577
Signing time:             Fri 08 Aug 2025 23:48:02 +0000
Manifest this update:     Fri 08 Aug 2025 23:48:01 +0000
Manifest next update:     Fri 15 Aug 2025 23:48:01 +0000
Files and hashes:         1: 4JlhFVCKOtWZFdurzLaW26C0zHI.crl (hash: kuspcUGn7tg9lRwHRz6SFDfd0ztGsEKVJdt6/dYGnZQ=)
                          2: BA758AE2212711F0A7DCCB5BC4F9AE02.roa (hash: m8lEVsnh3DvG0KEPCp4MW7Ow9L5MLhKDggw4WLNqc68=)
                          3: 03C7AA80F01111ED9C345840C4F9AE02.roa (hash: Am8OlNfTP5V8Kx5g/Dv+15S2O7P9HWujy6NfIY4x9VA=)
                          4: 04E8D402F01111ED9C345840C4F9AE02.roa (hash: aw0GsE7/msiXwaZd5f0HibklFhBHtqZY6llDRI4HTZY=)
                          5: F650791EF01411ED9210D060C4F9AE02.roa (hash: 4IZfBEYxdxWId8yUiHx63z7AlPcjMCqr2gmuQDYBUpU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl
                          rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1430 (0x596)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9153CE9, serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72
        Validity
            Not Before: Aug  8 23:48:01 2025 GMT
            Not After : Aug 15 23:48:01 2025 GMT
        Subject: CN=68968cb1-d689
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:cd:9e:52:b4:9b:47:0c:7d:e6:b6:e1:c5:93:
                    9b:cb:df:84:01:b7:03:45:b2:57:60:ab:12:3c:ae:
                    56:f7:d8:c3:db:c4:47:6d:af:98:81:8c:aa:39:94:
                    52:57:66:1d:0e:a7:25:c9:c7:bd:6a:30:81:dc:22:
                    21:87:1a:72:02:cf:ed:4f:7d:a5:24:26:13:4a:25:
                    60:24:f8:75:b6:21:24:3e:53:08:50:2e:96:9b:ee:
                    28:75:f8:48:4e:74:c4:16:79:82:f8:63:9c:e1:a3:
                    d7:87:2c:6a:27:e8:cf:72:3e:7c:07:3a:f1:82:63:
                    11:9e:99:3b:d1:09:8d:4e:b7:08:e2:7c:cb:30:7e:
                    59:a7:51:bf:5a:ef:40:fe:1d:89:ae:3b:ba:df:c7:
                    32:dc:25:fb:02:6c:57:52:7a:08:66:66:70:62:76:
                    2c:9c:10:16:ed:7a:47:15:a4:1d:3a:b4:01:b1:f2:
                    13:7a:0b:18:81:14:75:c5:e2:f1:9f:60:49:b3:6f:
                    91:83:50:7e:eb:c6:63:48:e2:16:a5:05:53:e4:53:
                    2a:ac:7d:db:3c:dc:02:9b:89:65:d9:b3:28:fd:d8:
                    d3:71:b2:74:e0:8e:4a:05:1a:a7:fb:58:35:5e:1f:
                    e8:79:2f:b5:16:1f:57:a7:86:d8:40:6b:88:06:91:
                    84:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:B6:10:21:79:94:E1:14:4C:1F:1E:5C:48:D4:74:3F:AA:AB:EB:06
            X509v3 Authority Key Identifier:
                keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:1e:f7:3d:c3:a3:dc:3f:e1:e0:5d:ee:13:dc:bc:b3:2c:ad:
         94:05:13:67:c3:8b:f4:1a:f5:a6:e3:ba:c7:b6:68:06:fc:f2:
         c4:8c:26:fd:78:f7:68:f0:ca:82:79:c4:be:b1:58:45:b9:57:
         00:5c:2f:0e:95:9e:3b:6e:a9:a3:1a:35:0d:ec:ae:c5:3a:69:
         33:d6:3a:04:3e:5a:59:36:9b:70:a2:58:10:c6:b5:59:91:69:
         ea:a7:ef:dc:1f:84:51:b2:43:d2:7f:b8:31:90:45:bd:b4:93:
         80:fc:07:0a:0e:a8:f0:9d:63:4d:c4:7c:be:5e:5b:86:4c:f6:
         50:d0:42:58:a4:e5:20:6c:f6:6a:70:73:86:e4:26:ea:22:9b:
         90:e2:b4:a7:dd:54:dc:df:5d:d1:8e:9b:d2:45:ab:af:a1:77:
         07:82:41:5a:34:1b:89:93:ae:21:99:e8:74:8f:de:c4:94:e5:
         c8:f9:77:a6:28:ab:48:da:78:9b:d4:d0:69:1a:a6:04:28:98:
         10:13:f6:02:fb:4f:16:a8:c5:37:6e:70:fd:34:c9:4c:c4:15:
         29:80:07:d7:83:a2:84:f3:17:0f:f5:c9:99:aa:d5:83:74:80:
         cd:8e:72:9f:c6:1f:1e:49:18:dd:73:f1:30:7e:9f:dd:8e:56:
         f1:b0:de:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:09:18 2025 by rpki-client