Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
File:                     poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json)
Hash identifier:          xNjpPsDeJ6Ec5EkyChTDNPFSexiI+zHgA/GjyY7sFK8=
Subject key identifier:   AB:B5:A2:46:AA:56:D0:D1:EF:3C:D9:CE:15:7B:E7:89:E5:8E:E2:17
Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
Certificate issuer:       /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3
Certificate serial:       3500
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
Manifest number:          34D2
Signing time:             Wed 06 Aug 2025 14:45:22 +0000
Manifest this update:     Wed 06 Aug 2025 14:45:22 +0000
Manifest next update:     Wed 13 Aug 2025 14:45:22 +0000
Files and hashes:         1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: kfKYU3NzO/YPsMCwRRJMXsMstcnd5q9vMceeyu1HvG4=)
                          2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 20d7zSG28KO67SoUKSTv5DsgPDhDa3AEuM/R+x5ywro=)
                          3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: Npaiqv8wx3x0juj2XPFP6NT15iQeinsY3d+rnK9Ipa8=)
                          4: A582509EC68611EFB4077137C4F9AE02.roa (hash: htBdLlmm2i58ANdYRz6MXQaGCSG7yL+kzZ3EQqldEig=)
                          5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: t8ZApbp8ZgdmZpVbm08QjAGg0vnpe//NggnR/4OMSk8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl
                          rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 14:45:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13568 (0x3500)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3
        Validity
            Not Before: Aug  6 14:45:22 2025 GMT
            Not After : Aug 13 14:45:22 2025 GMT
        Subject: CN=68936a82-58d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:4c:e7:8b:cb:da:6b:a0:93:ca:1c:19:42:77:
                    1b:db:5a:23:88:51:38:5c:38:6b:49:aa:d7:e5:1c:
                    f6:a6:38:6a:19:37:60:a4:67:ad:78:13:3d:9e:f3:
                    91:85:fd:04:f0:5a:df:28:da:a1:36:60:d4:65:d5:
                    94:02:37:a5:e9:ed:c8:7f:6e:a5:5e:a7:24:d9:39:
                    20:11:57:e9:15:be:80:3c:2d:5b:1e:06:80:54:58:
                    44:cd:39:25:d1:12:fb:ba:54:a4:0e:b4:2f:1b:1b:
                    bf:36:9a:4f:59:52:13:c4:a5:b9:4f:5d:d5:79:d1:
                    a2:6e:c0:27:28:f3:e3:ad:88:1f:2f:e5:bd:a6:96:
                    f4:2d:33:0b:9f:45:f3:1c:eb:bf:95:a6:57:b2:c6:
                    25:17:60:04:a2:30:1c:b7:e4:f1:37:95:65:ef:d7:
                    c6:50:a0:0b:f6:d7:1b:b2:c3:2c:fe:6c:b2:3f:fe:
                    98:b3:4e:d5:23:66:d3:f3:2d:51:cb:61:49:72:65:
                    35:75:a9:62:1e:67:78:19:6f:a6:d4:b3:81:3f:b0:
                    c8:af:92:a4:0d:08:6c:51:17:7a:25:95:e1:fd:60:
                    e3:26:6e:be:62:15:10:ff:62:bb:ff:05:2b:fc:f3:
                    a2:ec:47:39:52:cf:cd:4f:b1:af:f8:ce:73:9f:f6:
                    00:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:B5:A2:46:AA:56:D0:D1:EF:3C:D9:CE:15:7B:E7:89:E5:8E:E2:17
            X509v3 Authority Key Identifier:
                keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:76:3d:af:25:e9:68:09:7d:c7:0b:99:ed:f4:f0:b2:ba:2f:
         16:6b:c9:72:b0:7f:e9:ce:a7:36:89:47:fa:cd:00:6d:bd:3f:
         ee:98:52:c4:07:f2:2e:5c:35:17:24:d3:e0:ca:3f:bf:12:d9:
         17:e4:75:ae:21:19:4b:bd:0b:28:4f:97:ce:7a:47:d6:30:32:
         b1:b7:e1:7c:6d:1c:9b:6d:5e:4c:bf:9f:a8:11:61:ff:73:0c:
         93:7c:7d:08:b2:2a:e3:b2:7e:ad:97:db:14:6d:47:d3:4a:64:
         7e:30:5f:c1:6f:15:d7:89:84:7c:45:34:c5:1e:c2:e5:75:8c:
         46:33:9e:41:19:f4:62:61:9c:cb:d9:10:75:a3:3f:5f:0b:d2:
         37:cb:4b:c6:34:4a:2c:a8:e5:15:6e:49:d1:f3:79:42:da:b5:
         c0:23:11:81:fd:11:b0:68:b7:70:af:17:a2:cd:c0:3f:b9:47:
         c4:2c:9f:05:12:cc:bb:b9:17:e3:8c:cc:a6:25:57:79:5b:0c:
         68:7b:66:1c:83:d4:0f:75:f1:b1:7d:ba:64:73:c2:15:74:7f:
         4f:79:88:b5:da:fa:57:d9:e1:c1:d7:50:ec:e3:c3:9d:27:19:
         5f:e3:68:ce:87:81:9d:33:1d:ef:6d:48:78:ac:69:32:0c:05:
         88:78:f0:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:12:32 2025 by rpki-client