Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft
File:                     rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft (raw, json)
Hash identifier:          aZA3rEa6qvKSVzfaqvzZoitdFblAWSwGvCyxB5LZcgY=
Subject key identifier:   FE:4A:4B:FB:4D:A9:A7:FD:38:2B:6E:EA:AF:82:82:2D:63:7C:E5:C0
Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2
Certificate issuer:       /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2
Certificate serial:       04BE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft
Manifest number:          04AA
Signing time:             Tue 29 Apr 2025 00:29:49 +0000
Manifest this update:     Tue 29 Apr 2025 00:29:49 +0000
Manifest next update:     Tue 06 May 2025 00:29:49 +0000
Files and hashes:         1: rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl (hash: LB2QIQPjcOfdLIbjosd5ifUhqSAvOWwOMYGj8o/rEgI=)
                          2: B016290E2CE211EC8664D47EC4F9AE02.roa (hash: N+v5XDTe3qGrc3Im5miqpHu358OzdQqGsyKCPQ1e/9E=)
                          3: 14172F4C264311EEB0342B45C4F9AE02.roa (hash: Ugkrxpmo+RhmzNNOs4CXnhFZe2ur3HMxWdH+GOY5OTg=)
                          4: 8C2F1C96367F11EEB689C243C4F9AE02.roa (hash: NMuBSgtK/HkuND8tStUDe+Ag9eP8OhZhvhWqets1kM8=)
                          5: AF91ADB42CE211EC8664D47EC4F9AE02.roa (hash: vVCpAMW7qiQGHNF6JhfNX4AfCfOmlSNmnkvMLMOZ1EI=)
                          6: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (hash: sOUIWYOFE2CSPs3Drpz/bEhxmM04l8k3SIDOG1UW16M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl
                          rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 06 May 2025 00:29:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1214 (0x4be)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2
        Validity
            Not Before: Apr 29 00:29:49 2025 GMT
            Not After : May  6 00:29:49 2025 GMT
        Subject: CN=68101d7d-045e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:b8:36:43:de:77:79:45:30:d4:70:86:24:a5:
                    8d:7f:dc:69:47:3e:d5:fc:3f:b1:3a:fa:70:57:46:
                    f0:12:a1:ab:3b:b7:de:21:34:3f:f9:bd:03:35:03:
                    16:35:19:c3:02:17:90:b8:1a:df:d2:d2:f3:31:fc:
                    87:77:4a:26:1f:e1:84:a0:66:3f:72:a1:94:94:66:
                    8d:bf:33:e1:d5:c8:e4:88:76:11:a2:ad:73:98:c2:
                    62:22:9f:93:5c:ed:da:e6:52:12:f0:a6:12:b6:e3:
                    5e:a4:fd:89:02:f3:e2:b4:a8:18:36:3e:2c:d5:6e:
                    51:09:58:a2:00:80:9c:25:de:f8:2f:8c:db:8c:02:
                    75:c2:81:59:53:01:a6:74:b2:60:af:05:66:f3:54:
                    fb:62:65:52:db:48:81:be:40:1b:e1:cf:3d:e8:d5:
                    de:8d:cb:88:06:ce:2a:23:51:6a:5a:45:28:f4:36:
                    11:f0:f7:93:ef:72:82:f3:50:2f:70:19:77:15:9c:
                    29:ed:8c:64:69:c5:f2:d3:70:db:e1:a0:7b:c0:86:
                    00:7b:86:46:2c:dd:e5:c0:1f:b5:9c:0c:9c:79:37:
                    26:bd:2b:39:02:c9:f7:5e:f1:bc:7f:bd:5c:0c:77:
                    bd:00:b1:a0:ba:d1:37:a6:50:80:21:ea:89:8b:0f:
                    00:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:4A:4B:FB:4D:A9:A7:FD:38:2B:6E:EA:AF:82:82:2D:63:7C:E5:C0
            X509v3 Authority Key Identifier:
                keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:f3:3d:9b:ca:36:30:1a:6e:36:ee:f7:ff:6e:26:1e:a9:59:
         8a:87:ee:77:26:c6:5b:bc:3d:d5:f8:59:50:c8:f0:44:76:41:
         a6:fe:51:3b:d6:4a:35:7e:09:f6:8d:df:e3:87:a1:1f:39:73:
         bd:c8:73:2b:e6:b2:30:0a:12:ac:fd:70:09:00:95:5d:75:c0:
         bb:73:92:cb:59:6e:6a:63:e5:60:ae:84:d5:6a:d6:3c:6d:a3:
         f5:49:21:69:77:c6:a3:a2:cf:60:bf:fe:aa:a0:c5:52:b6:c9:
         60:f2:6b:fe:c9:1e:bf:71:f8:84:2d:9c:fe:fb:a2:50:f9:4a:
         86:fd:56:8f:4a:68:6a:1c:09:22:bf:c2:ac:3d:6c:85:15:a6:
         78:f0:9d:d1:3a:be:ef:a4:f0:42:18:25:7f:2b:01:af:97:f4:
         0a:d0:26:24:76:0e:c1:4b:3a:a1:bb:bb:13:d0:74:08:36:26:
         56:a8:44:74:3a:c1:fd:f5:44:62:0d:ae:62:5f:f3:c8:ac:ed:
         ee:d5:7e:e3:b4:5e:b2:26:84:81:9c:08:f6:97:1b:4f:3a:b0:
         f5:cc:ea:fb:d9:c7:b1:35:b3:a5:ad:9f:fa:67:cc:c6:3a:dc:
         e0:5f:88:3d:46:72:dd:5d:6c:2e:07:a5:db:0e:34:c7:fa:53:
         0e:a5:74:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 00:51:32 2025 by rpki-client