Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
File:                     KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json)
Hash identifier:          4Ai23VmVEuGRT1VHzSXk5cFamNaxmkxmXDWhbbhJDCE=
Subject key identifier:   95:BA:B0:B7:70:DC:73:E9:26:95:0E:95:DC:99:01:78:57:3A:6E:5A
Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8
Certificate issuer:       /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8
Certificate serial:       0AA5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
Manifest number:          0A89
Signing time:             Fri 08 Aug 2025 19:54:23 +0000
Manifest this update:     Fri 08 Aug 2025 19:54:22 +0000
Manifest next update:     Fri 15 Aug 2025 19:54:22 +0000
Files and hashes:         1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: hRQ4999zlPKwfI0ZgNGv7ntvZhucDk9NiILbdJjnGeE=)
                          2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: 0+FYOd7cEHhPhl5/EXB24cdR/+U1VPktvi4vWKzamkI=)
                          3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: ORPxj2tqrIsIpHEdVkZPm4n/aNb1Vqu1v7KB5t0Gcw8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl
                          rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2725 (0xaa5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8
        Validity
            Not Before: Aug  8 19:54:22 2025 GMT
            Not After : Aug 15 19:54:22 2025 GMT
        Subject: CN=689655ef-6f48
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:7e:8c:f1:f0:3a:c7:f3:ea:8f:e8:c2:e6:4a:
                    22:4e:2f:5b:ee:18:97:f5:8c:fa:ba:b2:b6:be:44:
                    0c:72:04:f6:33:56:fd:7b:80:74:eb:f4:f9:39:95:
                    d4:4d:f0:ae:46:aa:98:52:4f:48:06:64:55:5a:f5:
                    56:72:b3:0a:24:56:17:c1:74:86:5b:20:29:c0:b2:
                    bf:0c:52:cb:da:eb:bf:bd:a5:a3:34:40:53:11:0f:
                    f4:12:f7:ed:00:26:cb:db:96:3c:b2:e6:2a:6b:b2:
                    bb:10:4e:bc:d6:f2:44:89:fb:c9:2d:cc:cc:e2:cc:
                    63:44:72:2a:bc:c4:d3:2a:4e:99:b3:09:77:31:0e:
                    6a:1b:d6:e0:5e:af:d5:ad:72:16:a3:2f:80:81:ab:
                    f9:24:0c:e2:44:b1:1f:c1:40:d9:55:c2:3b:c7:27:
                    a4:7c:33:50:fb:3b:5c:79:a4:f0:f2:1a:38:1c:59:
                    42:5e:b3:d2:12:db:14:ce:92:1c:a8:05:10:df:03:
                    cd:13:6d:75:c3:cc:46:1b:07:1e:74:09:0e:03:a9:
                    0f:dc:52:6a:d6:d4:95:a2:85:ad:83:0d:67:f5:72:
                    44:ec:b9:a7:f4:0c:57:42:9b:bb:16:8f:9a:5d:4f:
                    10:9d:f9:dd:63:db:95:9a:77:bc:e2:8b:d8:82:b6:
                    27:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:BA:B0:B7:70:DC:73:E9:26:95:0E:95:DC:99:01:78:57:3A:6E:5A
            X509v3 Authority Key Identifier:
                keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:7d:00:57:d0:3c:fe:1a:b1:11:cd:5f:7e:d3:51:95:9b:25:
         ae:e9:58:00:3c:45:78:a0:88:6c:1c:6d:b4:9d:a8:ed:df:ba:
         96:fc:b6:49:9d:2f:d1:9a:0f:c1:4b:6c:c2:be:ca:8d:20:15:
         2a:9d:2c:33:b5:18:6c:77:f5:95:bf:0e:3a:b9:a6:e4:b8:54:
         df:ea:04:4c:3d:25:5a:48:df:6f:b3:c0:f1:c8:f7:b1:77:c5:
         12:58:f0:34:89:8c:2d:25:93:e0:8c:c8:4b:01:a6:1c:a9:a6:
         ab:f6:dc:65:8d:74:10:6e:73:42:c0:e0:84:2f:59:2e:10:b9:
         91:14:3f:87:e7:e9:b3:ef:48:74:27:47:ca:c0:2a:59:56:a0:
         e4:8c:36:54:60:24:0a:ee:a7:25:38:c2:c8:41:80:60:db:b8:
         4e:82:4b:35:3c:e4:35:d0:55:7e:fd:e5:20:0c:e4:19:42:ed:
         52:fd:d7:13:6b:9b:c0:d5:85:73:4c:3e:6e:24:46:ed:75:e0:
         9e:44:d1:9d:7d:ed:08:79:1f:9c:55:48:55:ab:93:45:6d:7f:
         74:27:6c:42:69:8d:d7:1b:3a:af:17:1d:3c:4e:9b:28:ee:20:
         aa:17:2a:7b:5a:c6:61:a2:14:eb:af:a3:67:4c:72:e2:8e:28:
         73:bb:a6:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:05:35 2025 by rpki-client