Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft
File:                     f7FuQPo8p3_OJMTJpGRWg8OeihE.mft (raw, json)
Hash identifier:          W83s+fqsVRuMykd9cBDzE0NOs6AiihJmcspHAh3TgZU=
Subject key identifier:   2A:D2:3B:FB:EB:C7:86:3B:18:F8:CF:A5:E5:5A:38:37:EC:28:D1:D4
Authority key identifier: 7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11
Certificate issuer:       /CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11
Certificate serial:       018E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft
Manifest number:          018B
Signing time:             Sun 27 Apr 2025 02:32:54 +0000
Manifest this update:     Sun 27 Apr 2025 02:32:54 +0000
Manifest next update:     Sun 04 May 2025 02:32:54 +0000
Files and hashes:         1: f7FuQPo8p3_OJMTJpGRWg8OeihE.crl (hash: V8xFY6DGRgwad7eQ4sbcofs1d47CQAy+L4N3Sp6Svms=)
                          2: AB3814CEC85411EDAE5D9322C4F9AE02.roa (hash: hP+l6tFfGRtL/s3PVotLK1C45PriZjz7pB5mLcbuaqE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl
                          rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 04 May 2025 02:32:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 398 (0x18e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AF83D, serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11
        Validity
            Not Before: Apr 27 02:32:54 2025 GMT
            Not After : May  4 02:32:54 2025 GMT
        Subject: CN=680d9756-492c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:9a:c7:76:0d:26:bd:ae:45:25:65:dd:14:da:
                    58:36:e5:27:ca:4a:8f:1b:f8:9d:cc:7e:bb:95:84:
                    3c:9c:8c:48:a7:bf:db:30:fa:b7:62:2d:6d:16:a2:
                    7b:6a:aa:da:0b:b6:45:54:1c:d9:6f:10:81:d1:ad:
                    1e:4f:40:5f:5e:0e:20:26:99:50:d5:66:7a:8f:cc:
                    80:b9:18:04:de:b3:6f:90:11:c4:07:8a:19:71:f8:
                    b0:77:01:f5:2e:9e:dc:77:9d:73:49:b4:dd:f7:b7:
                    75:a2:a4:5d:1c:11:3a:00:97:03:69:e7:d6:be:80:
                    3e:bb:11:ee:12:f1:40:54:24:4b:e0:86:64:dc:fe:
                    bf:f6:e1:93:2f:92:c8:3a:dd:cf:7e:51:06:17:b2:
                    22:c5:ce:48:fb:85:e9:8d:2a:02:f7:e4:e6:4a:20:
                    5e:e5:4d:38:07:bb:17:7c:9b:16:6b:03:8f:b8:5c:
                    fb:4d:47:81:6b:6a:0f:1d:e8:5a:22:77:55:b2:30:
                    9a:71:c5:5a:e0:90:5f:49:0b:b0:11:41:2b:09:a5:
                    a7:a7:9a:0e:e3:51:04:c9:eb:c7:b1:83:4b:5e:cb:
                    f0:e1:bb:d5:ee:66:80:7c:bd:46:a0:54:6f:ab:18:
                    d9:84:bf:12:70:72:c7:ed:9f:8a:c4:1b:82:18:28:
                    db:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:D2:3B:FB:EB:C7:86:3B:18:F8:CF:A5:E5:5A:38:37:EC:28:D1:D4
            X509v3 Authority Key Identifier:
                keyid:7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:39:3c:47:44:3f:9c:b1:aa:43:70:f2:04:a4:ba:7b:78:25:
         8d:75:3f:33:bc:01:28:73:01:0b:11:89:70:aa:be:9c:20:13:
         fa:95:52:eb:1b:0b:44:76:d7:b3:e8:21:36:15:45:c8:69:42:
         79:05:26:19:21:56:b0:20:ac:09:dd:d2:bb:88:18:e4:9b:3a:
         a5:e9:cd:e3:0e:03:31:74:09:61:b3:65:bf:44:04:90:74:39:
         c9:06:0f:5a:02:80:aa:4f:a9:dc:7f:f8:a7:5c:45:a9:5e:90:
         a1:dc:9c:2b:e4:c6:16:9e:94:2f:70:d6:66:39:80:1a:c0:8a:
         33:84:9c:44:6f:3a:0d:8a:ec:01:47:fa:ba:ab:97:f9:c8:f3:
         63:26:bb:ec:a5:56:b3:5a:aa:19:00:8b:f6:47:9c:21:8b:aa:
         fd:69:45:cd:ed:58:f2:96:00:09:16:dc:33:cd:db:15:bc:c4:
         f9:5a:bc:89:eb:1c:e3:2e:ca:ae:c0:3a:49:ae:d2:92:a8:57:
         42:fd:db:47:d3:e0:46:56:58:b6:2c:f7:19:76:cb:4f:04:b6:
         22:b2:62:97:6e:61:63:b9:2e:62:6b:72:f2:03:54:83:a1:96:
         55:4b:80:4c:ad:19:3d:b8:bf:52:64:7d:88:78:ee:2c:18:f1:
         46:77:6d:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:33:50 2025 by rpki-client