Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft
File:                     STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json)
Hash identifier:          L23iEACdwWhhHB6p5wkOfGE9DI28ii1sSoI8mL8k+yY=
Subject key identifier:   85:7E:7B:C3:6E:6A:35:58:85:7D:B7:4E:BE:E1:B5:C3:49:45:D6:CD
Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2
Certificate issuer:       /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2
Certificate serial:       0AC8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft
Manifest number:          0AAB
Signing time:             Mon 04 Aug 2025 19:49:57 +0000
Manifest this update:     Mon 04 Aug 2025 19:49:57 +0000
Manifest next update:     Mon 11 Aug 2025 19:49:57 +0000
Files and hashes:         1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: jVmELSzPkGJKRzNHdRxEUE48tYqu8NZAd0c1AqNx5uQ=)
                          2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: FqfsCDqHHflh/fqCgX2tuvENvAYV0R+3DD33J6tFfuE=)
                          3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl
                          rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 19:49:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2760 (0xac8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2
        Validity
            Not Before: Aug  4 19:49:57 2025 GMT
            Not After : Aug 11 19:49:57 2025 GMT
        Subject: CN=68910ee5-d968
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:4b:6f:1d:d1:df:3c:ed:0c:29:82:78:9c:d6:
                    24:c7:b3:22:b7:a4:1c:d2:45:b6:f3:00:27:b0:ca:
                    8b:28:63:ed:d2:38:7b:32:8b:86:2e:71:d1:be:4c:
                    91:3a:57:d3:cc:1b:55:66:f3:f9:3e:0b:e0:43:b6:
                    ec:3e:40:0b:10:81:07:d2:f3:5c:cc:cf:d6:91:c9:
                    10:e4:53:90:56:1f:f6:00:0f:6c:82:c4:cc:55:cb:
                    a6:26:70:a0:d3:b1:86:70:3e:12:c1:57:8a:a0:d1:
                    9f:53:13:07:6c:51:10:5e:59:ce:d2:a8:eb:34:93:
                    67:7c:70:2e:7a:ec:96:19:69:01:d5:73:9c:e0:b6:
                    96:8b:f0:03:e4:2c:6a:8d:e2:75:5f:eb:96:ea:a4:
                    1d:0d:16:24:d3:93:20:e2:36:a3:3d:3c:2f:d8:12:
                    cf:36:cf:28:13:55:cc:d6:4e:ed:d0:94:eb:63:1a:
                    0b:29:f9:82:04:8c:e7:d4:cb:d0:02:1f:41:38:65:
                    48:66:93:9d:f6:01:8a:30:bd:c0:50:02:12:ef:7a:
                    d8:72:5e:27:e9:fc:e5:02:66:84:d1:43:60:78:78:
                    22:3e:7c:ef:55:25:23:97:fb:ca:c3:e9:78:72:c9:
                    f3:7a:46:40:b2:92:02:f2:21:f4:41:9b:63:04:0e:
                    a9:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:7E:7B:C3:6E:6A:35:58:85:7D:B7:4E:BE:E1:B5:C3:49:45:D6:CD
            X509v3 Authority Key Identifier:
                keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:de:30:94:34:ce:a0:7b:29:b1:9f:99:50:1a:e2:9b:14:b5:
         1a:35:c7:c3:f9:6b:67:29:1e:c1:1b:58:cf:dc:ed:79:03:7a:
         29:cb:6c:11:c9:c8:de:b9:0e:9c:16:14:12:22:3f:1c:6e:22:
         e8:56:80:a9:be:97:89:8f:7b:d9:f0:1f:0d:0a:e2:63:80:c8:
         22:e3:04:a4:b4:91:16:8f:54:af:84:4d:87:43:8e:72:d7:73:
         ea:46:21:80:12:e2:05:80:1e:bd:45:52:e5:94:89:26:ef:e0:
         b7:13:bd:3a:b6:79:fb:40:72:78:22:65:a0:b4:5b:c5:32:a3:
         6f:84:e8:a6:d6:96:95:3b:6d:71:f0:c9:a1:3a:d8:54:99:eb:
         ba:13:23:d9:37:d5:79:51:4c:64:41:db:c0:b9:d2:07:bb:2e:
         f0:78:76:31:e3:5d:12:85:67:8d:2c:c8:7c:61:35:66:14:cd:
         aa:04:ae:5d:f3:fe:94:31:15:39:3e:3f:54:a1:70:82:b3:61:
         e9:8c:b6:2f:d9:68:b2:bb:6a:0c:0c:e3:f6:d9:41:89:b3:f9:
         59:5e:3c:ac:9f:66:b7:e7:6e:0a:cf:a6:67:c3:11:2a:5d:9a:
         b8:11:01:e1:14:ea:9d:e9:c1:57:0a:0c:5f:40:99:a2:6c:cc:
         f6:5c:41:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:38:04 2025 by rpki-client