Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft
File:                     wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft (raw, json)
Hash identifier:          9dprOMFb08i6ptbdcngaqi9wy0XWMmlByvIPGKjWV0Y=
Subject key identifier:   6B:79:71:83:08:2E:54:A4:B3:79:23:CF:39:E4:FD:F9:9B:6A:1E:64
Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19
Certificate issuer:       /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219
Certificate serial:       3005
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft
Manifest number:          2FFC
Signing time:             Wed 06 Aug 2025 15:30:20 +0000
Manifest this update:     Wed 06 Aug 2025 15:30:20 +0000
Manifest next update:     Wed 13 Aug 2025 15:30:20 +0000
Files and hashes:         1: wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl (hash: 6t+17gf+NuOjJp7ahrJVfGIyBbwXg+tpGCH5NwY8Eok=)
                          2: 47A21580B6CC11EC98672826C4F9AE02.roa (hash: qjc1TRQ4aj3UWDrfE4OMe7D9VpKX+4bRXdtLVlC/TX8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl
                          rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 15:30:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 12293 (0x3005)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A445C, serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219
        Validity
            Not Before: Aug  6 15:30:20 2025 GMT
            Not After : Aug 13 15:30:20 2025 GMT
        Subject: CN=6893750c-459f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:3f:50:e2:6d:13:c2:db:40:47:51:cc:10:e5:
                    14:76:47:61:c8:20:03:b9:57:7e:4d:cd:1b:50:26:
                    dd:8c:eb:af:65:f2:64:0c:65:d3:74:a8:f8:1f:c6:
                    a8:14:eb:94:76:42:bf:12:5e:0b:39:03:98:fb:84:
                    43:9d:fa:79:35:8d:3e:99:79:d8:90:f2:68:bc:ed:
                    52:9b:11:16:55:d6:9b:2c:26:11:c7:cf:c2:18:ee:
                    29:2e:d2:73:cc:ca:54:61:a0:b7:0a:d1:6c:37:33:
                    90:1c:e3:34:fa:f2:fc:24:3d:e6:eb:3b:5c:f6:c4:
                    a3:80:5e:d3:0e:2b:ab:73:69:31:24:c6:cc:35:d8:
                    25:af:60:a2:da:94:a2:fc:0b:84:8f:24:cb:d3:07:
                    8a:e2:d9:1d:e5:66:a4:02:bd:bb:7a:59:c7:70:70:
                    94:0a:90:db:41:0f:47:1b:d0:09:f6:c2:05:40:d0:
                    42:38:78:a1:3c:00:c3:bd:86:d0:b5:a1:01:59:48:
                    bd:0a:3d:cc:32:fb:36:47:b3:4f:54:91:1e:1b:bb:
                    02:32:cc:e9:9a:34:9b:85:c0:34:e3:22:cc:5e:67:
                    09:5c:20:5c:3b:0a:21:34:e7:27:9c:c1:c4:a3:81:
                    4c:1d:45:e9:6a:f5:0d:91:ca:4d:c4:ee:0e:3a:87:
                    ba:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:79:71:83:08:2E:54:A4:B3:79:23:CF:39:E4:FD:F9:9B:6A:1E:64
            X509v3 Authority Key Identifier:
                keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:30:2d:60:5e:c5:49:1f:59:c9:61:8b:ee:5f:ca:5a:a5:d8:
         77:62:ee:c6:a9:24:cd:fc:22:fd:7b:d7:7a:fb:cd:80:ce:7c:
         1e:5c:fd:bf:db:5c:00:da:42:8a:b1:8a:a2:16:56:7f:ba:aa:
         38:0c:4d:f2:1e:6e:05:96:c3:c5:b8:49:cb:f7:31:0f:74:5f:
         62:f1:a8:4c:5b:ca:34:aa:5f:c6:0a:9b:9e:c1:08:0e:1b:90:
         db:b3:66:1a:0f:2b:12:c4:2d:59:27:83:aa:91:cd:c2:25:5c:
         80:5e:62:7c:26:d8:75:ac:b9:63:84:71:76:ee:2b:b3:5b:aa:
         4b:81:34:bc:54:da:b7:b5:f4:31:74:8f:91:78:a3:76:05:ea:
         7c:90:f9:15:15:e5:f1:c1:78:d0:fb:0f:1e:7d:30:8d:42:21:
         d5:58:dd:8b:f9:01:19:db:78:5e:8c:88:5d:44:fe:2d:a6:44:
         f1:fc:ca:36:4f:33:ea:f8:f7:81:6c:31:06:cf:7a:42:c0:a7:
         25:0a:41:96:fb:fe:6e:d3:f1:2e:18:c5:6d:f6:d7:e6:09:9a:
         d9:f4:3f:5c:41:0b:8a:c0:e6:30:07:c6:16:1e:02:a5:35:50:
         22:82:85:d2:19:e7:2b:7f:35:10:a3:0e:de:73:72:d6:b3:16:
         04:51:5b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:28:14 2025 by rpki-client