Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft
File:                     GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft (raw, json)
Hash identifier:          5xfjtQnIESGqvNTfU4QQbtcxuJ4XhGb75LDjMjikQO8=
Subject key identifier:   2A:04:C8:48:44:77:CC:8C:AF:9D:47:B2:F4:E3:12:D3:90:0A:23:DA
Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17
Certificate issuer:       /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17
Certificate serial:       01A8
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft
Manifest number:          0195
Signing time:             Mon 11 Aug 2025 02:41:37 +0000
Manifest this update:     Mon 11 Aug 2025 02:41:36 +0000
Manifest next update:     Mon 18 Aug 2025 02:41:36 +0000
Files and hashes:         1: GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl (hash: DVZedmOI0CzoASseEHKX86L2OHn339IPLGiyLjwpIf0=)
                          2: 1F388278205F11F0A895DE1EC4F9AE02.roa (hash: QotOqnglA46ODcG/lG9E8XyvCGo9HnekdR3etzUrE4c=)
                          3: 926A40AC205E11F0A7552513C4F9AE02.roa (hash: 4KMF0OCYbNDwaW3aLIgUQJgQPdi1cw9YHAWu6imOU70=)
                          4: 9781D91CB36B11EEA3394737C4F9AE02.roa (hash: ezxJgBFw2tKKcU962PajWcu+NU//ODot2RyjD71Fn24=)
                          5: 12D4E3D41AA411F0A196BA66C4F9AE02.roa (hash: vvnk4u9DNse+nnNTrLADNzPvSMLhalyiJs4z4ddnMBI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl
                          rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 424 (0x1a8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91991D3, serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17
        Validity
            Not Before: Aug 11 02:41:36 2025 GMT
            Not After : Aug 18 02:41:36 2025 GMT
        Subject: CN=68995860-2e91
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:47:7c:db:ef:14:61:dc:0a:f2:37:59:36:65:
                    5a:87:7c:16:49:a4:a3:ec:5a:7d:5e:75:db:f6:56:
                    5d:09:bc:f6:7d:c9:b3:36:30:d6:8e:50:24:44:dc:
                    46:c9:1a:0d:84:67:45:3b:98:be:d1:c0:73:fa:8e:
                    fd:c0:63:2f:3a:f1:ce:1d:a0:70:34:f8:d8:6c:63:
                    b0:79:60:d5:02:10:8f:e6:0b:29:0b:0f:34:b8:97:
                    5f:48:f9:00:e5:c5:85:15:4b:86:61:8f:c9:0b:f8:
                    3c:21:de:0f:be:cf:d7:36:24:7b:de:aa:ab:9f:bd:
                    75:cd:f1:76:56:b0:e7:f3:fd:05:38:e3:8e:b9:b9:
                    bb:d0:1d:49:e6:27:cf:00:49:d0:88:fd:59:d9:25:
                    09:58:cb:e0:06:0d:67:b0:43:3f:75:89:bc:7b:88:
                    d4:30:e1:21:fd:53:05:55:6f:7e:a6:12:ce:58:4a:
                    95:ec:0a:b9:14:9b:42:c2:69:a1:f1:6b:b5:57:cf:
                    5a:69:5a:44:7c:9f:cb:8e:f8:85:1e:fe:e0:db:b7:
                    3a:ac:59:e7:2d:78:90:3a:82:d6:88:0c:2d:25:c7:
                    63:3d:aa:7e:3a:e6:e6:27:3a:a3:bf:ad:e9:a6:85:
                    5e:50:bc:6c:3b:cb:9a:7d:ac:f9:2e:75:46:28:91:
                    3b:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:04:C8:48:44:77:CC:8C:AF:9D:47:B2:F4:E3:12:D3:90:0A:23:DA
            X509v3 Authority Key Identifier:
                keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         da:8c:01:8e:45:a9:14:2e:da:2d:47:fb:b2:b3:97:2f:80:14:
         4d:ba:7a:49:8d:0b:df:78:3f:e9:03:ad:4e:98:99:90:71:4e:
         cf:20:f8:c9:da:da:a4:a1:e2:da:d6:c2:0d:0a:d5:94:57:7e:
         1d:2a:e3:a0:27:78:4d:43:3b:00:a3:1e:2f:28:c8:57:a4:6a:
         01:4b:8b:80:a1:3e:d6:6c:01:13:2c:31:2d:c5:ac:36:b8:05:
         a5:94:ef:87:c5:a0:54:36:62:52:22:ee:85:06:fe:5f:e2:1f:
         20:40:d3:69:58:fe:89:de:fc:15:96:9e:47:0d:15:97:87:d2:
         e9:7e:46:5e:1a:19:52:2e:6d:81:36:4a:1a:54:84:90:77:cd:
         30:3b:1c:19:13:76:13:a0:d2:61:7d:95:23:51:5e:63:7f:30:
         59:35:f8:4c:34:30:de:53:9a:66:a0:0f:e5:8c:22:67:7b:50:
         1a:c6:a7:a2:46:f4:96:2e:8d:99:ea:62:35:3e:c6:6e:ba:fd:
         6c:2c:f1:d4:f8:17:d2:1c:88:90:0b:11:02:b2:6c:c0:53:04:
         d3:76:03:44:55:12:84:5b:b1:65:90:5b:35:c4:0c:62:12:52:
         63:69:27:c3:c1:9a:d8:d4:63:4e:11:54:d1:b3:a2:c4:e7:35:
         06:f0:f2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:35:15 2025 by rpki-client