Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft
File:                     NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json)
Hash identifier:          hogbK0nHVC4X1lisEuz/QsHwTS1/Husv0ftO9JMoV4c=
Subject key identifier:   90:70:E3:13:EA:9E:1F:00:BE:6D:68:E5:48:96:A0:52:6B:9A:C0:D8
Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0
Certificate issuer:       /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0
Certificate serial:       010F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft
Manifest number:          0108
Signing time:             Tue 05 Aug 2025 05:31:31 +0000
Manifest this update:     Tue 05 Aug 2025 05:31:30 +0000
Manifest next update:     Tue 12 Aug 2025 05:31:30 +0000
Files and hashes:         1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: AFUxgxmLUWfqoeIM+h5IYargCCED8OpYtxwkWK2FAFg=)
                          2: 5605B7643B8D11F09517A40BC4F9AE02.roa (hash: kL+wl3X9lpPDAyc9VPoNCoIe2pFYCq0K/SEYMKMr+fs=)
                          3: 2D392D483B8D11F09468CF7BC4F9AE02.roa (hash: 3qGGrVLcHGyNXBjBxC/2DsjdY0M5cfUd+RZIo9JRQog=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl
                          rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 05:31:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 271 (0x10f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0
        Validity
            Not Before: Aug  5 05:31:30 2025 GMT
            Not After : Aug 12 05:31:30 2025 GMT
        Subject: CN=68919732-de59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:ee:22:41:5d:bc:62:f1:8f:37:ed:74:ec:72:
                    e0:d7:ea:75:6b:6b:c1:da:52:e4:5c:46:78:67:30:
                    3c:0f:39:30:65:a4:76:f4:89:e9:b1:60:db:0d:00:
                    2b:a0:67:fe:a0:96:f2:91:19:04:ca:6b:69:12:28:
                    1b:84:7e:72:b2:f5:10:84:b3:d1:41:41:3e:4e:5b:
                    2b:50:91:ea:27:6f:43:c3:10:19:12:d2:f3:fe:e7:
                    dc:b6:c2:69:1b:4d:1f:e5:f6:6a:63:00:69:bf:c2:
                    94:f3:2c:15:2f:42:c5:c6:6e:69:41:82:63:40:fe:
                    ff:2f:73:a5:5a:14:e6:b3:ec:93:31:18:dc:a8:27:
                    44:4d:26:d7:24:ab:ad:71:9e:ec:49:86:c4:67:c3:
                    e6:07:d4:19:4e:e4:50:c7:c5:5e:57:82:5e:69:bd:
                    f5:3e:41:a3:a5:e4:58:d1:a7:94:8a:33:e7:44:dc:
                    3e:ee:bf:7c:46:ab:01:c9:78:09:65:be:fe:6b:47:
                    0f:51:5e:4c:e7:c0:7a:7c:ab:d2:2b:72:b7:12:5d:
                    d1:8d:d9:5b:42:03:53:54:92:1e:86:85:be:dd:98:
                    3b:ab:71:f4:e7:a6:45:96:1e:ec:83:47:a6:9d:7b:
                    56:e2:f4:5b:ba:9d:13:3d:e0:44:58:55:d3:1f:27:
                    c6:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:70:E3:13:EA:9E:1F:00:BE:6D:68:E5:48:96:A0:52:6B:9A:C0:D8
            X509v3 Authority Key Identifier:
                keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:d9:a4:46:30:6f:3f:d4:ab:3c:66:69:68:33:b6:31:5e:6b:
         21:fe:4f:16:00:88:2a:45:6c:b5:bf:5b:ac:74:5e:80:1d:ff:
         9a:b9:e5:de:fe:49:2e:06:9d:58:09:40:3e:f2:bd:4a:50:b5:
         9a:96:f4:42:ea:2a:86:0f:80:d6:f0:8d:d4:49:8a:00:74:1f:
         91:11:cc:09:28:79:5b:42:a2:87:88:c5:6e:8d:35:67:a3:0e:
         43:19:f2:f1:47:41:2f:6f:76:b3:59:92:10:b6:27:06:9c:dc:
         a4:78:dc:19:1d:75:d6:0d:bc:8c:73:f4:67:cc:71:ea:69:8d:
         df:a2:95:49:2b:c3:3b:ed:09:27:a5:5d:36:c5:14:db:b8:ba:
         a0:fb:a8:b4:e7:57:fc:b1:99:e7:db:2c:d2:a4:cb:14:4e:0b:
         91:a3:c7:77:8a:7a:4b:60:5a:78:d1:aa:96:71:46:a7:46:fe:
         34:da:71:12:e9:6f:8e:9a:15:5c:76:55:f9:e2:8c:8f:d9:71:
         20:27:07:ab:d8:7b:35:38:62:b5:d7:8a:f2:bc:6d:ef:f2:86:
         1f:c3:1c:55:72:32:c7:62:81:92:30:45:da:c5:d2:04:bf:5e:
         a6:88:f2:80:88:50:85:4a:1a:50:34:f8:3f:ab:3a:16:6f:4e:
         ed:4d:17:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:30:43 2025 by rpki-client