Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft
File:                     UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft (raw, json)
Hash identifier:          HnPOBsKXJ/bnuKRPtrJIVRrUJw+wgQzVMa+C32Gv000=
Subject key identifier:   FE:DA:A3:7A:E1:5B:9D:5D:9C:E4:02:F9:D9:03:FA:76:17:DA:43:86
Authority key identifier: 50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74
Certificate issuer:       /CN=A91AF2D9/serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74
Certificate serial:       B6
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft
Manifest number:          B2
Signing time:             Tue 05 Aug 2025 06:36:17 +0000
Manifest this update:     Tue 05 Aug 2025 06:36:16 +0000
Manifest next update:     Tue 12 Aug 2025 06:36:16 +0000
Files and hashes:         1: UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl (hash: Drauw0WEl4F5qhAUpT6ST/vcw3p4AmURER1/jcsFe2U=)
                          2: D48472829E9011EF84D96F7DC4F9AE02.roa (hash: DWOCYh9U3Wi0CtHFM/de9pIBC9zRoaOkBAZXQGO2U2Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl
                          rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 06:36:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 182 (0xb6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AF2D9, serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74
        Validity
            Not Before: Aug  5 06:36:16 2025 GMT
            Not After : Aug 12 06:36:16 2025 GMT
        Subject: CN=6891a660-4013
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:5a:51:17:fb:f6:3c:95:b7:e1:e4:59:67:84:
                    49:67:0d:ef:fc:d7:ed:a5:2e:a2:fe:db:00:c8:be:
                    06:54:6b:bf:c1:38:d8:b6:f6:8d:ed:ad:cf:07:dd:
                    83:a2:05:6a:eb:bb:45:b0:21:d8:d3:da:2e:f9:3c:
                    ed:d0:28:5c:be:ae:00:52:35:45:d8:ab:2b:1e:13:
                    c8:53:df:29:67:26:35:31:5a:ab:59:46:72:16:b9:
                    93:39:ff:4e:30:c2:6e:50:09:64:28:dc:58:4f:5c:
                    e0:2b:bc:21:2c:63:f0:4b:84:95:33:a9:34:18:dc:
                    02:ff:a6:f2:d2:8e:bf:82:a5:ea:a3:da:c7:4e:e3:
                    e1:43:a4:a5:d7:db:6b:34:86:e1:a2:63:99:4c:99:
                    e8:98:22:e8:00:24:5c:38:e6:39:69:7d:36:86:9d:
                    76:5a:9e:ba:08:b6:a7:3f:68:45:ce:f8:b4:f5:19:
                    80:d1:bf:a0:fe:50:9c:75:09:0f:62:6a:c0:a5:a8:
                    58:49:11:85:ae:8d:e9:6d:19:35:c1:18:b0:53:be:
                    ae:84:e5:4e:0d:98:e3:c2:ca:51:e6:4f:5f:fc:a6:
                    11:55:0c:88:53:89:ae:ab:4e:ca:df:4a:95:9a:23:
                    b1:44:16:0d:5e:f8:3c:e2:2d:27:c3:93:9d:83:fa:
                    1a:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:DA:A3:7A:E1:5B:9D:5D:9C:E4:02:F9:D9:03:FA:76:17:DA:43:86
            X509v3 Authority Key Identifier:
                keyid:50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:fb:36:17:d7:22:d0:13:e2:f5:60:20:c9:56:f5:ad:29:ac:
         14:6b:50:56:fa:8e:49:8b:f5:8e:ff:a2:0b:d0:de:fe:f7:99:
         2b:d4:82:f0:16:ee:90:4a:bb:db:fc:98:44:b2:1a:09:44:ec:
         52:ea:75:37:9a:1d:0d:80:59:65:3f:cd:01:af:f1:50:33:6e:
         bd:7f:d8:06:c3:51:54:54:b9:5c:2e:75:da:5d:b5:b9:18:b0:
         a9:4a:01:34:d2:3d:cd:67:4a:0e:b4:e4:e9:0e:81:1d:df:dd:
         fe:f1:c8:2b:2e:a9:90:54:18:3b:71:8c:32:5b:2a:7f:d3:aa:
         2a:10:01:71:38:b1:8b:ab:b2:c5:54:50:0b:43:9f:e3:ad:99:
         c3:93:48:36:2f:d9:38:8a:dd:30:54:1c:24:d0:2d:e3:c8:78:
         22:09:35:e6:b5:ac:72:00:9c:ad:4d:0a:18:3b:33:f6:d7:e3:
         b1:ed:13:99:7d:32:f3:a0:8d:c5:c0:5f:b6:5b:f0:5d:19:6c:
         b6:6c:12:38:88:49:92:78:09:9e:0b:6d:86:95:69:48:77:da:
         69:a7:e8:dd:9f:4b:94:c3:4c:b0:b8:7b:59:ca:e5:e6:70:d6:
         b0:0b:5c:23:01:64:c8:05:4e:91:b4:48:b1:4e:c1:74:46:b8:
         da:ee:1a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:23:44 2025 by rpki-client