Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft
File:                     IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json)
Hash identifier:          QKDTyK0DmqQaLARBXd3t+NuQTIjAV/epjsNEC7nm41I=
Subject key identifier:   1D:AB:89:9F:F3:F6:44:44:59:2C:5A:C0:2B:F3:41:31:70:5E:4C:5B
Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72
Certificate issuer:       /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72
Certificate serial:       34F0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft
Manifest number:          34C6
Signing time:             Tue 12 Aug 2025 14:20:00 +0000
Manifest this update:     Tue 12 Aug 2025 14:20:00 +0000
Manifest next update:     Tue 19 Aug 2025 14:20:00 +0000
Files and hashes:         1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: mZewiDU2S2scAY26HSOuBb26pqubPQoha85BcJfMreY=)
                          2: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: T96snG6T3ksqfKF7mowlYs05xmmtsddFbccqyfqSTxQ=)
                          3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: aiAqLVoZ6cEM6hY/DjBukcfxFi5I+NxU4FFn5k2CPUQ=)
                          4: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: XONO8AScATR8p+dgN33QWapfnhUPZs7VGzeHh0uX4pc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl
                          rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 19 Aug 2025 14:19:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13552 (0x34f0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72
        Validity
            Not Before: Aug 12 14:20:00 2025 GMT
            Not After : Aug 19 14:20:00 2025 GMT
        Subject: CN=689b4d90-5ead
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:05:2a:ab:21:f6:31:d9:4f:1b:65:1e:63:84:
                    7f:98:53:40:a7:9e:54:5b:85:de:c1:0d:9c:98:03:
                    c1:3a:17:65:d8:4d:af:66:cf:52:c3:a6:d2:a0:76:
                    c7:75:21:7c:fc:9a:f8:d0:51:74:29:5c:2b:3d:f8:
                    6c:81:1c:7d:8d:c3:e7:fb:fb:ba:87:80:49:0a:7b:
                    52:44:e1:9a:21:d7:be:35:69:53:26:7c:b2:34:dc:
                    4c:9a:ff:01:bd:85:88:a2:60:97:e2:d9:ad:1b:bb:
                    0b:3d:56:23:eb:3e:95:4e:7e:f8:72:b9:62:07:ff:
                    9f:06:de:b6:af:0d:b0:92:58:65:24:4e:e5:89:68:
                    b9:b6:fb:2c:4a:d7:70:45:62:51:b9:78:87:69:86:
                    01:f9:50:19:15:b3:1f:f1:45:50:44:dd:10:8e:3b:
                    4b:af:d3:26:7d:66:e8:3d:5a:4c:9d:75:07:d9:96:
                    3a:b8:45:69:b2:3f:f4:43:bf:aa:94:ab:a5:55:61:
                    16:40:76:e8:37:a9:07:9b:e6:bd:85:86:86:74:6f:
                    42:76:bc:cb:f0:e2:6c:6a:7e:45:b8:ef:88:0f:d8:
                    f7:21:b5:f0:81:c6:d0:0e:5d:da:f5:ea:34:22:e8:
                    43:3b:6a:ab:ad:b2:40:ba:6e:19:0c:b0:49:a0:5b:
                    42:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:AB:89:9F:F3:F6:44:44:59:2C:5A:C0:2B:F3:41:31:70:5E:4C:5B
            X509v3 Authority Key Identifier:
                keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:8f:4f:8a:e1:bd:ec:c6:60:61:f9:d5:eb:8e:c2:5e:06:48:
         9d:70:55:8e:05:fc:29:cb:03:34:fa:cf:98:74:55:30:2f:b0:
         46:42:ab:e2:25:7e:0c:53:04:5d:40:01:1c:6e:d9:d8:ca:87:
         9b:7a:28:16:6c:71:35:49:bd:dc:b7:9d:59:d8:2d:d5:f7:8d:
         58:ab:80:3d:9b:96:0d:ae:4a:05:dc:41:fe:59:1a:7b:44:63:
         7c:fc:ef:6c:5a:3c:6c:d3:25:70:66:af:97:2d:72:13:6d:4c:
         ed:59:a7:3f:4a:b3:14:f5:8d:18:3b:b8:fb:f8:6c:7a:72:8a:
         f8:54:47:42:67:ef:e7:7a:00:4a:f8:93:48:76:2e:2e:3e:9f:
         33:06:31:62:f7:73:d3:02:55:00:a0:5e:95:fc:f9:19:b9:ef:
         c7:ba:6a:2f:03:d9:46:a6:3f:42:d3:30:61:ff:ab:b0:03:d5:
         e8:26:ea:12:fc:ef:74:cd:76:0a:06:97:a6:83:40:16:52:27:
         08:1e:40:7a:8d:c7:b3:96:72:1a:41:44:09:ca:ac:f9:ea:49:
         a0:e4:85:81:9c:73:da:30:23:f4:12:42:eb:8c:40:8c:52:e4:
         04:4f:80:56:aa:3d:5d:64:82:dc:56:1d:56:b8:e4:d0:29:42:
         8d:51:4a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:50:32 2025 by rpki-client