Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft
File:                     g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft (raw, json)
Hash identifier:          x04TGZaR6yRBI7hx0qAStsiq5aysw43NNue2fea+NYc=
Subject key identifier:   A4:4E:7D:38:07:52:EF:2F:6E:70:0A:AC:3A:49:EE:EE:3B:79:9A:77
Authority key identifier: 83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68
Certificate issuer:       /CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68
Certificate serial:       01AA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft
Manifest number:          01A6
Signing time:             Fri 25 Apr 2025 02:27:41 +0000
Manifest this update:     Fri 25 Apr 2025 02:27:40 +0000
Manifest next update:     Fri 02 May 2025 02:27:40 +0000
Files and hashes:         1: g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl (hash: asTHPaJQQH+QKfCmewZAR4PNjLL1QZFPBEa45gCYWjY=)
                          2: 93E8AC909CA111ED97E7FC20C4F9AE02.roa (hash: yz7MYEbOgQ8Al3poUxihFYnUX5uLUR4cvOqS22MeFsU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl
                          rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 02:27:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 426 (0x1aa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AB4BA, serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68
        Validity
            Not Before: Apr 25 02:27:40 2025 GMT
            Not After : May  2 02:27:40 2025 GMT
        Subject: CN=680af31c-c27a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:f5:5e:09:22:96:52:ee:fe:d6:39:db:d8:04:
                    8f:b7:46:bd:59:6b:55:40:96:c9:c9:fa:a2:48:0a:
                    0d:11:f0:bb:18:48:f3:13:0f:b8:15:16:30:50:ef:
                    05:2d:5d:8a:6f:f2:4a:88:98:32:b8:d9:fc:0d:c8:
                    db:2f:ae:5e:9c:c3:20:93:e8:6e:74:16:9d:6c:2f:
                    7a:3c:c8:c0:c1:0c:e3:d8:28:ab:bd:7b:f6:aa:6d:
                    32:66:84:4b:c8:a7:51:8f:33:2f:cb:cb:d3:a3:8f:
                    91:70:7a:5e:f9:1e:c6:09:90:40:f4:00:f4:d2:25:
                    47:bc:6f:0a:a8:05:e3:ee:f6:48:9a:08:28:48:3e:
                    9e:06:92:90:cf:35:54:78:fb:34:e0:9a:2f:5e:3b:
                    14:aa:32:10:f3:cc:0f:7c:a7:d2:60:ed:8b:d3:e8:
                    81:91:30:e1:85:37:48:ef:11:ab:97:69:6c:7a:19:
                    6b:b3:65:3a:d3:99:bc:9f:48:54:38:31:a5:68:a6:
                    b6:20:be:f8:a4:82:48:2b:86:44:e7:ea:27:4d:33:
                    2d:bd:09:1b:9f:20:2e:a1:81:62:87:aa:55:e5:a4:
                    a8:ae:8d:77:10:2f:83:cd:45:f1:cb:03:f0:f5:b6:
                    5e:74:56:4c:e8:91:1a:8b:70:1f:b7:f4:96:c3:6b:
                    25:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:4E:7D:38:07:52:EF:2F:6E:70:0A:AC:3A:49:EE:EE:3B:79:9A:77
            X509v3 Authority Key Identifier:
                keyid:83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:66:f3:c3:8e:19:ce:ab:5f:84:e0:da:79:3b:b9:f3:a1:0c:
         29:af:9c:12:30:41:19:1b:10:7c:ee:74:35:3d:38:4f:25:b0:
         3f:f2:27:ae:60:ff:11:e0:b0:86:04:8f:b5:90:ce:db:f2:c2:
         3f:3a:40:86:1f:4b:95:60:be:fd:04:22:62:c1:01:d7:13:aa:
         ef:70:4a:5e:f6:cf:80:4f:09:44:c0:21:a2:ea:82:80:27:36:
         bf:65:bb:70:6b:0e:01:28:06:7f:97:01:62:05:0d:c5:b9:13:
         b0:56:9b:4f:d3:46:7e:3d:91:fb:7d:88:a6:f2:b5:4f:da:a6:
         09:57:c8:7e:74:83:34:6a:96:1b:ba:03:1c:1a:44:32:30:65:
         84:10:9d:7c:9a:b3:42:ce:dc:6c:a9:ff:67:12:fb:1d:da:f3:
         96:1c:c9:46:d6:19:b7:79:21:0a:b6:9f:00:29:2a:4f:9e:67:
         95:af:56:c3:ee:6f:78:c8:bd:63:b8:db:47:0d:e7:39:0d:73:
         e4:8a:7b:d2:9d:26:90:2e:f0:71:b2:84:01:16:86:ca:7d:05:
         1f:fa:17:a8:45:e7:63:64:1a:7e:e4:91:8c:5b:7e:c2:47:97:
         21:cb:b5:08:c4:19:bf:0f:e7:cd:d4:d0:ce:ee:b8:e7:62:05:
         a8:9e:cb:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:58:32 2025 by rpki-client