Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft
File:                     F4AJbMkKtq6vCNeasYxUx7d6U6A.mft (raw, json)
Hash identifier:          2I7k2TvPlmrtfS4otZeiBdBlT9GCpuCj24t5Jf+uuBE=
Subject key identifier:   39:7C:DA:F0:74:36:4F:0D:E8:D9:CE:28:71:A8:99:5F:81:00:41:A7
Authority key identifier: 17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0
Certificate issuer:       /CN=A91A4543/serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0
Certificate serial:       2A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft
Manifest number:          29
Signing time:             Fri 08 Aug 2025 21:09:21 +0000
Manifest this update:     Fri 08 Aug 2025 21:09:21 +0000
Manifest next update:     Fri 15 Aug 2025 21:09:21 +0000
Files and hashes:         1: F4AJbMkKtq6vCNeasYxUx7d6U6A.crl (hash: YJDfQ0vYvXnQJNq5sURpUO4daw5defX656kESIxBqgQ=)
                          2: 458F65E8572511F0BE0E492AC4F9AE02.roa (hash: 8eHBf/IW6Kdn5rzP/J/PseLHB5iblvBzJEKUGKo/wC0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.crl
                          rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 42 (0x2a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A4543, serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0
        Validity
            Not Before: Aug  8 21:09:21 2025 GMT
            Not After : Aug 15 21:09:21 2025 GMT
        Subject: CN=68966781-5519
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:b4:8a:cc:6b:66:e3:ed:e6:cb:59:df:1a:d1:
                    0c:0d:e2:78:65:56:6e:e9:10:29:03:8f:32:b7:da:
                    9a:30:31:52:a9:da:65:aa:5d:99:1f:71:64:00:14:
                    8a:69:97:6b:ea:5e:c9:8f:52:0c:9f:6d:15:29:d8:
                    e1:30:c2:d3:bf:fb:7e:61:14:1c:94:85:61:4e:d4:
                    e1:14:10:2a:0a:1c:8a:6e:86:93:68:a0:20:3f:fb:
                    e3:16:74:92:bc:1f:bc:5f:f9:b9:a3:d9:ea:a3:79:
                    b3:f3:53:96:d4:3b:12:03:c8:b1:4e:2f:80:19:e7:
                    8b:4c:70:16:45:ea:da:45:0c:00:df:2b:e8:41:09:
                    07:f3:e2:89:a7:85:21:09:f2:f8:de:1a:81:cd:91:
                    35:ed:59:ac:35:e7:6f:e7:05:e8:c7:1d:9a:88:c3:
                    c2:55:fc:3f:9a:2c:3a:bb:c4:a5:09:e2:b2:f4:47:
                    b0:2b:40:40:b3:8f:d8:2b:05:e8:ed:49:73:ff:0a:
                    ab:81:6c:1f:63:d7:6e:07:55:d8:fb:a3:ff:96:2c:
                    f2:4a:0b:f5:72:e7:61:9a:cc:46:13:40:8d:3a:6f:
                    fd:b8:77:c1:21:ac:68:fd:0f:3b:d2:7f:a5:ea:07:
                    5c:72:5f:79:de:d0:b3:96:6f:6e:ba:5c:6c:91:23:
                    6a:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:7C:DA:F0:74:36:4F:0D:E8:D9:CE:28:71:A8:99:5F:81:00:41:A7
            X509v3 Authority Key Identifier:
                keyid:17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:34:e2:6e:15:74:61:09:7b:9f:3c:28:3e:08:a1:5e:f7:2e:
         43:09:6a:ad:2b:5c:b2:06:26:39:eb:e3:22:7a:3a:d2:e4:11:
         9b:e3:64:1b:7a:45:ea:af:6c:79:38:8d:c1:ed:fd:c6:3e:a5:
         f1:30:22:10:c2:1f:41:12:1d:c7:de:ed:44:bf:9e:6d:73:3c:
         a1:a1:8c:68:c6:eb:05:57:74:35:25:2b:6e:ab:1d:67:6f:56:
         c2:1d:68:63:25:a3:68:38:ae:f8:e9:61:61:e5:fb:81:56:98:
         8e:e9:a7:6c:09:ff:ba:38:d1:01:50:f2:0a:ba:1d:11:a3:ac:
         e6:2d:19:59:4c:7d:c4:6d:d6:2d:5a:2b:71:0f:52:d3:77:41:
         2e:65:0d:76:ba:18:b6:a2:77:c5:66:27:f5:cf:c3:e1:16:93:
         6f:7b:e0:5d:1c:0a:14:a6:43:9b:b6:14:58:6c:ef:3b:64:64:
         48:75:8e:2b:89:24:55:09:ba:dc:d6:82:18:9a:98:2e:ee:c7:
         75:ff:60:2e:26:fe:af:95:5e:bf:fd:60:a2:59:5b:af:00:fe:
         97:9a:6c:78:08:07:6f:61:65:ef:1e:80:c1:1e:f8:09:bd:af:
         2e:43:7c:21:0e:80:96:2a:ef:ad:16:84:c4:d2:de:f7:b8:fe:
         85:d0:90:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:04:57 2025 by rpki-client