Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft
File:                     leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json)
Hash identifier:          wtjhBsVI7XcFiurQDlmgU3BCByu38AEmjngj8b2PI38=
Subject key identifier:   88:CF:F8:11:C8:52:B1:31:6D:F3:EC:7A:EE:CA:34:18:BC:5F:86:F3
Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99
Certificate issuer:       /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199
Certificate serial:       113B
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft
Manifest number:          1131
Signing time:             Fri 08 Aug 2025 17:27:01 +0000
Manifest this update:     Fri 08 Aug 2025 17:27:00 +0000
Manifest next update:     Fri 15 Aug 2025 17:27:00 +0000
Files and hashes:         1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: mf7swijVHnnb/RlEwbGBzfNparOU6cw1lIBRKkK+PAk=)
                          2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl
                          rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4411 (0x113b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199
        Validity
            Not Before: Aug  8 17:27:00 2025 GMT
            Not After : Aug 15 17:27:00 2025 GMT
        Subject: CN=68963364-f5f3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:2e:9c:6c:af:23:fe:04:29:eb:52:d0:0a:06:
                    18:e7:e5:26:c5:49:fe:8a:5e:64:14:c2:7f:02:17:
                    60:0f:3e:df:bd:fe:6e:fa:35:c3:09:95:4f:44:ec:
                    f4:41:6f:e1:65:ed:41:3a:13:56:7e:71:12:25:9c:
                    9f:38:50:93:87:5f:d6:9c:d4:f3:ba:4c:1f:1e:94:
                    9a:a5:66:01:7f:23:fc:99:89:b6:a3:a4:e0:b0:73:
                    b7:e7:37:b4:0c:13:eb:ab:73:ec:3c:5f:6e:23:e1:
                    49:97:16:dc:3a:7b:1c:9d:17:72:b9:a0:8b:12:0a:
                    f5:d1:44:37:1a:b8:dc:f0:e6:db:32:90:f4:4d:64:
                    4f:ee:0e:31:f9:4d:fe:0f:fa:dc:63:19:23:c0:91:
                    f4:55:1b:dd:e1:d3:c5:da:0a:7d:f6:d2:f4:25:94:
                    df:0e:ca:7b:ec:ac:9f:be:18:9f:cb:6d:6f:eb:b5:
                    be:5d:65:c7:a3:74:48:99:6c:5c:e3:1f:bf:29:9a:
                    bd:83:3a:8b:ee:82:13:de:ed:cc:d6:d2:36:22:74:
                    ea:82:5b:c0:15:c5:9b:96:a2:20:67:46:97:12:51:
                    7d:8e:d0:90:e2:2f:31:88:fe:5f:bb:aa:f6:e4:1c:
                    62:8d:58:c9:e2:bc:fe:dc:2e:3e:b3:a1:f3:7f:7d:
                    cb:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:CF:F8:11:C8:52:B1:31:6D:F3:EC:7A:EE:CA:34:18:BC:5F:86:F3
            X509v3 Authority Key Identifier:
                keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:24:6e:eb:2e:1b:a7:cd:cc:48:ec:b5:64:66:09:9c:70:9f:
         d3:e6:86:66:e7:9d:dc:03:10:43:fb:a0:be:e0:91:ff:2b:7d:
         42:a4:7f:37:99:95:4e:ef:74:aa:72:18:79:05:17:77:10:f9:
         1f:f4:96:2e:7f:a3:45:33:02:0f:ba:c1:d5:64:5a:8a:13:97:
         1d:d2:57:a4:0b:83:6f:3c:1d:6b:36:6c:86:3f:a2:5c:fa:99:
         b5:4a:34:ab:b5:f4:b5:91:3e:e3:8a:d9:63:d3:b0:d1:af:77:
         49:8f:71:63:86:d2:5b:30:d0:75:96:a8:ff:4e:ca:75:ad:6a:
         3e:6f:7f:55:ba:a6:fc:36:38:8c:a3:50:ec:58:c5:dc:ba:90:
         19:49:07:88:b9:f2:e5:6b:43:f4:aa:4d:2f:64:08:30:2f:40:
         89:2b:45:d2:52:f0:46:66:7c:6a:72:b1:4a:2c:e5:fd:f9:34:
         63:ca:23:84:65:ca:e8:28:b3:85:4d:f7:d3:17:84:2d:9f:fb:
         8a:5b:e6:ac:b2:3b:74:ce:40:fa:f1:0c:a3:2f:8f:46:9d:0a:
         05:f5:9c:dd:3a:76:3a:3d:de:7b:81:ed:83:65:30:53:cc:21:
         93:41:d3:d2:64:29:b1:58:db:33:3d:f2:50:ed:64:e3:29:26:
         2e:43:70:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:24:41 2025 by rpki-client