Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft
File:                     CmlvYzZ3zH-l3H1bspnTmDD76UI.mft (raw, json)
Hash identifier:          UnC9VPlsXp4Y6JEXkd2hGNTYsCagNLbU9ozZSYd7Roc=
Subject key identifier:   A1:2F:D7:98:9B:37:75:E8:A9:32:3C:F1:20:85:BC:10:53:A1:7D:9B
Authority key identifier: 0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42
Certificate issuer:       /CN=A9165739/serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942
Certificate serial:       096C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft
Manifest number:          0948
Signing time:             Mon 04 Aug 2025 20:36:02 +0000
Manifest this update:     Mon 04 Aug 2025 20:36:01 +0000
Manifest next update:     Mon 11 Aug 2025 20:36:01 +0000
Files and hashes:         1: CmlvYzZ3zH-l3H1bspnTmDD76UI.crl (hash: bbjdUuTnAsb4uOWSYAQc+Dv9SpIupKwoShjs0WFGDrM=)
                          2: 5EFDD3C4641511EF92F73520C4F9AE02.roa (hash: +5v/UPyW3dQ/0rVuztf81a9oZSnTgo/JoecluNMVK0Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl
                          rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 20:36:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2412 (0x96c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9165739, serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942
        Validity
            Not Before: Aug  4 20:36:01 2025 GMT
            Not After : Aug 11 20:36:01 2025 GMT
        Subject: CN=689119b2-730b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:26:e4:f9:68:bb:e9:d0:d3:de:81:0f:16:e1:
                    c6:a3:46:6a:3e:fb:49:85:bc:05:f4:68:da:d3:62:
                    32:d7:62:86:13:c7:ac:38:c4:d5:ce:64:ac:21:ab:
                    e9:6a:5f:10:a4:b3:cb:69:6b:8f:d0:1d:0f:0a:65:
                    91:d4:66:8a:13:db:17:d3:b2:36:5b:56:c4:89:f6:
                    a5:40:a6:7d:92:1e:15:43:74:14:40:16:4c:24:06:
                    55:85:1c:0d:b4:75:cb:35:d3:48:bc:7f:0d:24:fa:
                    85:78:d8:7f:3f:a5:92:f5:93:96:02:9f:9e:6b:47:
                    1c:ff:8a:99:a8:76:31:fb:73:5e:09:16:6e:63:f8:
                    41:5f:f0:80:2d:7f:fc:df:fd:24:b1:e8:83:73:9b:
                    e9:87:52:b9:4d:e7:e5:d3:c9:3b:58:cb:b4:a9:08:
                    ca:76:0a:4d:da:ff:a4:58:83:02:36:26:f3:f9:e6:
                    fa:02:13:6b:6a:87:d0:2b:4f:1f:1a:d1:cd:de:54:
                    71:cc:99:10:44:c9:bb:1a:63:39:09:df:d0:fa:93:
                    a6:ec:83:29:a7:08:ed:af:05:fc:f2:4e:89:05:10:
                    b5:a1:6e:bc:cc:47:78:12:5a:69:a3:b3:aa:e5:66:
                    53:a8:7d:12:07:5c:a4:97:03:a9:d0:68:3f:d9:d2:
                    46:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A1:2F:D7:98:9B:37:75:E8:A9:32:3C:F1:20:85:BC:10:53:A1:7D:9B
            X509v3 Authority Key Identifier:
                keyid:0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:08:1a:d9:4e:24:7c:d0:24:85:55:7a:3d:c0:c0:f5:26:be:
         0a:65:c8:b2:b1:c3:f4:64:8f:db:45:62:71:5c:a1:37:00:76:
         fa:95:b4:f3:b8:22:0c:81:2b:08:89:be:0e:42:4b:76:5f:19:
         a0:19:61:15:6b:1f:26:f9:81:b4:fd:9c:80:cb:cc:fe:c7:1b:
         64:cc:c3:d0:57:85:09:ca:cc:27:93:fa:ef:84:b3:75:d6:2a:
         8b:7b:8c:66:18:5a:98:bb:6c:28:2e:25:2c:76:23:0a:20:13:
         44:2e:7a:cc:03:ff:4d:89:12:af:0d:12:39:85:90:db:2f:f2:
         55:63:56:f7:a2:70:b3:60:dd:2f:e8:db:18:b9:3e:31:ce:7a:
         75:a5:34:43:e1:fd:9e:ab:60:0f:46:24:8a:72:39:b8:42:db:
         d6:7a:58:63:68:f4:5e:37:c1:d5:c0:e0:26:d5:f9:ea:78:be:
         2c:79:4f:23:46:78:0a:c6:ea:52:e8:6d:4f:92:ec:f4:27:6f:
         17:37:b6:88:be:c1:a8:80:ad:d5:bd:44:2b:f1:8b:8a:59:a5:
         1c:a0:5c:a9:a1:a6:b2:96:1a:d2:b0:16:58:ae:62:e6:12:16:
         26:2f:76:95:ec:f0:8e:64:93:23:bd:e2:ae:8d:16:c7:79:4d:
         23:a5:7d:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:10:52 2025 by rpki-client