Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft
File:                     5Otd-leSQpC7j-xFuZd_xsf2-jc.mft (raw, json)
Hash identifier:          BNggkcA1hyC2fKpa1mvlGL3CeKKWWHngE/1NM5wZNgo=
Subject key identifier:   74:49:6D:BD:E5:36:A5:A8:77:2F:65:A6:DB:15:43:DF:88:25:B5:C3
Authority key identifier: E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37
Certificate issuer:       /CN=A91A8B0B/serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37
Certificate serial:       0CB1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft
Manifest number:          0C9D
Signing time:             Sat 02 Aug 2025 18:24:47 +0000
Manifest this update:     Sat 02 Aug 2025 18:24:46 +0000
Manifest next update:     Sat 09 Aug 2025 18:24:46 +0000
Files and hashes:         1: 5Otd-leSQpC7j-xFuZd_xsf2-jc.crl (hash: c/r1OJFdkc1ur4dy5NbJ0uUhASRzM2gxLYX1SaA9nhc=)
                          2: 5842DDF0FCE511E9BFA4B27AC4F9AE02.roa (hash: 6JiNuWz5Fkw8aMu3lON6uTLPgLOG+xf9uCqK1rE3Qew=)
                          3: EA17F65E6C6711ECB7C0925AC4F9AE02.roa (hash: 80MLiBcpNIycThAKM26TDicBsDE58l79IER/QoSPi08=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl
                          rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 09 Aug 2025 18:24:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3249 (0xcb1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A8B0B, serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37
        Validity
            Not Before: Aug  2 18:24:46 2025 GMT
            Not After : Aug  9 18:24:46 2025 GMT
        Subject: CN=688e57ee-68ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:4b:47:7c:74:10:d4:ce:c9:25:7a:70:a6:d0:
                    75:bf:23:1c:cd:b4:cd:3d:ed:e8:68:e6:25:28:bf:
                    91:2d:e8:9a:61:ab:37:8b:e5:90:8f:b7:29:93:59:
                    1a:cf:f6:b2:9f:23:30:86:c6:2e:74:d7:64:bb:e5:
                    91:08:7b:65:05:3e:05:16:8b:59:08:4a:11:50:3a:
                    58:77:df:55:55:3d:18:76:02:51:a8:b2:ee:7d:85:
                    40:84:7f:3c:20:58:ae:a1:a0:e0:19:8f:22:c6:35:
                    ab:b8:f4:c8:8a:24:92:47:c1:1b:23:a3:26:4f:10:
                    b1:db:f8:77:39:60:77:c6:86:0f:7a:54:ba:39:20:
                    78:c9:8e:a6:12:69:0b:0f:31:15:ce:f9:b7:c3:54:
                    26:cc:f0:6b:af:39:b1:3e:39:d8:f7:13:21:dc:46:
                    c7:25:93:82:48:9a:f9:b6:ed:81:86:0d:45:48:1e:
                    53:0a:ab:fd:5d:92:9e:e8:c2:b6:e2:e9:38:a8:9d:
                    fe:f4:47:bc:38:86:73:31:a1:54:30:43:47:1b:ff:
                    6d:d8:fc:ef:18:b2:97:10:1b:3b:f5:ef:1d:f1:c5:
                    9d:e9:d2:73:03:d5:be:ef:09:0d:9f:fb:16:94:c3:
                    cb:f9:38:70:e6:ee:bf:74:80:1a:be:5a:2f:51:a7:
                    89:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:49:6D:BD:E5:36:A5:A8:77:2F:65:A6:DB:15:43:DF:88:25:B5:C3
            X509v3 Authority Key Identifier:
                keyid:E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:ed:0b:a6:9a:ad:d6:63:72:47:aa:62:8d:52:a6:00:33:84:
         ca:8c:09:7a:e0:7f:fa:6a:6f:13:6d:22:78:69:c6:da:1a:0b:
         75:fd:96:99:d1:1f:ef:26:93:b7:3a:9b:c0:ea:87:18:5d:d1:
         74:73:df:24:98:a5:5d:40:f8:89:75:71:e8:25:a6:e3:55:c4:
         0c:93:b9:8e:25:a6:07:3a:60:6c:b2:73:b5:6c:0e:59:25:9c:
         5d:83:12:5f:5b:1f:f3:3d:bf:c6:1d:90:1c:df:23:ad:2a:92:
         ea:16:25:58:da:74:39:41:33:bc:b3:a0:c8:bc:43:96:c8:14:
         41:86:d0:f6:6e:0e:e1:b8:f8:dd:5b:29:2a:8b:08:fa:a1:a3:
         45:83:02:c2:81:13:2a:0b:ee:8f:c7:b7:dd:fc:0d:90:f2:5e:
         b7:42:14:09:1e:ff:46:66:57:a5:a4:b8:6d:6b:23:f3:da:e5:
         07:aa:11:7c:65:ad:0b:44:5e:3b:40:ac:26:57:12:d0:48:a1:
         07:b0:15:62:89:9f:45:13:34:09:62:f3:4f:63:21:38:d6:29:
         d2:26:5d:12:a1:e3:85:2b:b3:c2:f1:76:2d:43:83:99:a1:da:
         c5:b6:52:bf:30:33:f4:74:40:01:64:e6:c1:8a:ad:2a:5b:f3:
         04:be:23:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:30:56 2025 by rpki-client