Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft
File:                     TKAuwRGHSuDn0FVaJf8zAvkS64w.mft (raw, json)
Hash identifier:          t5xBoP32tbsLu7A9NiEzQ9eGGNsN5kS8hJHKHKg2Zbg=
Subject key identifier:   13:56:D7:0D:17:7A:89:FF:39:EC:C0:6E:84:BA:B8:A7:F9:4B:5B:86
Authority key identifier: 4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C
Certificate issuer:       /CN=A915825D/serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C
Certificate serial:       93
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft
Manifest number:          8E
Signing time:             Thu 07 Aug 2025 07:10:34 +0000
Manifest this update:     Thu 07 Aug 2025 07:10:34 +0000
Manifest next update:     Thu 14 Aug 2025 07:10:34 +0000
Files and hashes:         1: TKAuwRGHSuDn0FVaJf8zAvkS64w.crl (hash: KaJhMvfSorhKYqP+TfVKiabs3Okaqk6ZmWefiioAL3U=)
                          2: 109B1A6AC14F11EFAE8F4B0BC4F9AE02.roa (hash: m6Ln5a7ZSeIX81Tm2886H7n9SlKXj8hnsIcbsYsTN7o=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl
                          rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 147 (0x93)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A915825D, serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C
        Validity
            Not Before: Aug  7 07:10:34 2025 GMT
            Not After : Aug 14 07:10:34 2025 GMT
        Subject: CN=6894516a-402a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:c3:ce:58:9b:2d:68:55:61:92:ec:53:ed:98:
                    fc:89:80:bb:3f:e4:b4:c2:56:71:ec:d6:fa:e4:28:
                    24:c5:47:fe:f7:7a:42:94:a4:e3:ae:80:d9:80:29:
                    75:db:d4:b6:5e:c7:a6:45:09:91:88:f8:56:98:e6:
                    54:c5:d7:f7:4a:85:15:79:d5:95:69:71:62:01:1e:
                    9a:e9:83:03:32:57:90:0b:ce:5f:81:fa:a7:28:6c:
                    f1:e0:58:d2:26:d9:77:ff:cc:1e:a8:64:ad:26:ed:
                    ab:75:16:85:ad:1a:fb:23:9b:9e:ba:b9:ca:8c:bb:
                    ab:97:f6:8b:2b:88:92:35:69:54:c8:1a:f4:fa:77:
                    8f:33:55:82:99:78:25:dd:ca:ca:e0:a1:f2:38:35:
                    ac:11:46:c5:ba:b1:02:d5:9a:67:4a:26:c0:e1:12:
                    3b:f0:8a:fb:08:d5:cc:35:5d:07:5b:4b:67:cc:dd:
                    5a:1e:1f:3a:88:63:8e:94:07:95:a6:2c:6f:c5:c0:
                    62:45:0f:cc:b3:d2:b1:01:79:d6:29:6b:80:47:b1:
                    71:03:77:1c:81:8f:29:c2:8d:1a:59:bf:7a:5f:88:
                    76:0c:75:8b:2a:23:6a:5f:83:2b:e8:f5:19:5b:a6:
                    b1:8d:57:80:da:63:39:99:67:22:a3:be:8b:ac:05:
                    b9:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:56:D7:0D:17:7A:89:FF:39:EC:C0:6E:84:BA:B8:A7:F9:4B:5B:86
            X509v3 Authority Key Identifier:
                keyid:4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:0d:d2:60:96:63:92:31:f4:aa:ee:cd:ab:0a:37:d2:3b:ba:
         5e:f4:07:09:85:67:92:cc:55:b5:95:da:d7:8c:25:a4:7b:9e:
         e8:9b:2a:bb:6e:c7:47:ee:0d:50:c5:9e:1b:14:0a:26:0e:41:
         ed:e1:c3:c4:8d:c1:a9:89:8f:1e:48:09:1c:18:41:18:b7:d2:
         a7:ba:b3:4f:7f:4f:2b:99:f7:a4:b4:73:c2:88:e2:d2:bb:8d:
         7d:5f:ba:b3:e8:f9:35:34:72:fb:70:f1:96:4c:d6:74:19:19:
         1e:35:f3:fb:15:7f:ea:6f:7a:d8:99:c0:fa:b7:f9:20:5c:4c:
         5b:58:0b:10:c5:98:c3:8a:1d:e1:29:b2:92:07:9b:b3:0b:c4:
         c6:4b:ad:ae:0f:a8:ad:11:e5:56:97:0d:24:c0:44:be:45:8c:
         42:5d:cc:03:81:24:1b:ce:7a:43:27:e1:1f:e7:24:1c:1c:e7:
         7f:15:e0:a1:c6:c0:ab:24:5f:98:d9:7b:21:b5:2a:37:56:34:
         72:dc:51:e0:6e:a5:63:70:1b:9a:f6:ab:d8:8b:7c:8a:48:d9:
         f4:4e:bd:42:e4:81:46:4b:05:63:84:bf:ae:2f:94:b9:73:cc:
         3a:23:06:72:03:6c:7f:14:7c:3b:76:71:36:8d:30:8d:da:4d:
         4b:01:32:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:04:21 2025 by rpki-client