Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft
File:                     rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft (raw, json)
Hash identifier:          BGu8b0Rtc6jZ26G7/SnReXr7SZipoWnbURmPTmNairs=
Subject key identifier:   26:CE:BF:60:4A:3C:5A:60:4B:A9:D2:62:3F:DB:F3:ED:C8:FD:92:30
Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2
Certificate issuer:       /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2
Certificate serial:       04BC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft
Manifest number:          04A8
Signing time:             Thu 24 Apr 2025 23:43:02 +0000
Manifest this update:     Thu 24 Apr 2025 23:43:01 +0000
Manifest next update:     Thu 01 May 2025 23:43:01 +0000
Files and hashes:         1: rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl (hash: 0Ll3l9/nBReOsGYjGLT/BkW7+VgCDacgRqZCCGB3glk=)
                          2: B016290E2CE211EC8664D47EC4F9AE02.roa (hash: N+v5XDTe3qGrc3Im5miqpHu358OzdQqGsyKCPQ1e/9E=)
                          3: 14172F4C264311EEB0342B45C4F9AE02.roa (hash: Ugkrxpmo+RhmzNNOs4CXnhFZe2ur3HMxWdH+GOY5OTg=)
                          4: 8C2F1C96367F11EEB689C243C4F9AE02.roa (hash: NMuBSgtK/HkuND8tStUDe+Ag9eP8OhZhvhWqets1kM8=)
                          5: AF91ADB42CE211EC8664D47EC4F9AE02.roa (hash: vVCpAMW7qiQGHNF6JhfNX4AfCfOmlSNmnkvMLMOZ1EI=)
                          6: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (hash: sOUIWYOFE2CSPs3Drpz/bEhxmM04l8k3SIDOG1UW16M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl
                          rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 01 May 2025 23:43:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1212 (0x4bc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2
        Validity
            Not Before: Apr 24 23:43:01 2025 GMT
            Not After : May  1 23:43:01 2025 GMT
        Subject: CN=680acc85-1de9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:2f:b0:7b:cd:d6:cc:f5:82:cb:bf:32:e5:17:
                    e3:5c:35:74:52:a9:4f:02:9e:ff:20:d8:af:6b:c9:
                    74:45:2c:81:e6:d6:ec:f1:b3:bf:94:c1:3b:1e:3b:
                    f4:30:67:44:2a:6c:f8:12:7c:62:b0:1e:40:b5:b6:
                    a6:de:12:50:90:68:71:c3:77:06:63:52:99:83:58:
                    3c:b0:b9:c6:e9:4c:fe:1f:9f:0a:a6:29:df:c0:db:
                    c3:ad:51:c9:3f:e4:4d:a2:33:97:a6:8a:4a:f3:21:
                    17:2e:4f:fb:a0:2c:5f:f5:ec:e8:ac:f4:01:e2:18:
                    e2:66:ea:4b:7e:95:1e:1b:35:8d:6c:6e:3c:32:12:
                    2f:0b:5d:d5:a4:2e:5a:c3:f4:91:f6:de:ca:83:84:
                    86:81:4b:52:75:14:88:09:bb:b1:89:14:5b:96:de:
                    ce:99:1b:90:33:de:a1:9e:96:16:14:1a:0a:e3:ec:
                    df:86:5b:31:c3:e6:94:ec:ca:d6:a8:4f:9f:13:aa:
                    fe:e8:3f:cb:7b:c2:dd:6f:92:e8:3a:b1:6a:de:83:
                    77:32:04:54:c3:9d:de:71:53:94:2f:9a:2c:78:83:
                    aa:06:08:5b:4b:a9:f1:9b:8e:14:39:5c:8a:84:5b:
                    5b:e9:e7:aa:b6:f6:a2:96:3c:7b:04:ab:7f:f3:d1:
                    07:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:CE:BF:60:4A:3C:5A:60:4B:A9:D2:62:3F:DB:F3:ED:C8:FD:92:30
            X509v3 Authority Key Identifier:
                keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:2d:6f:25:7e:8c:c3:d6:ac:87:86:92:65:e8:fd:93:a9:23:
         38:2f:8d:e7:ed:8f:15:94:0c:b4:78:c5:5f:57:2f:27:e4:7e:
         8f:f8:e1:3a:e4:f7:e5:45:68:1c:85:2a:73:b4:6e:67:fb:c0:
         ab:a0:8c:27:aa:5e:a8:fe:c7:25:23:99:92:56:0d:9d:f2:1a:
         b2:20:2d:45:4f:30:12:b0:8b:e8:88:a1:ba:74:00:50:c2:64:
         e8:fe:7a:3f:24:bf:5a:12:2f:36:b4:93:bd:99:b4:3a:2a:35:
         d8:f4:c6:a8:83:aa:83:23:67:12:ff:7f:01:b9:cd:89:a0:bf:
         23:0a:09:e9:26:21:40:98:5b:c4:d0:82:7a:1e:6d:87:16:80:
         28:9d:f1:f5:ce:0c:c3:eb:2b:46:3a:99:fc:5c:c3:ae:6c:29:
         eb:d3:53:db:de:79:ea:d8:9c:b5:3c:13:bc:29:aa:b8:da:db:
         9c:d0:fb:f7:bd:a5:dc:23:21:55:21:52:00:dd:10:d9:a2:45:
         b8:f2:34:ed:d8:07:5a:36:86:d5:94:41:cb:06:37:15:2f:61:
         2f:66:df:81:ff:24:75:dc:d2:00:0c:29:8e:8e:0c:be:4c:a7:
         6d:b5:6b:11:5d:86:f9:ae:6e:a6:2e:4a:49:a4:75:ec:a1:52:
         0e:5a:fa:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:59:04 2025 by rpki-client