Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft
File:                     XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json)
Hash identifier:          uAkXULzK9//S1/hrcuUB4jh6iPjueyuE5znfKlF41dA=
Subject key identifier:   BF:3C:91:83:94:91:7D:71:74:CE:7F:DE:4F:D2:C5:52:F9:34:12:99
Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE
Certificate issuer:       /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE
Certificate serial:       6E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft
Manifest number:          64
Signing time:             Thu 07 Aug 2025 07:47:21 +0000
Manifest this update:     Thu 07 Aug 2025 07:47:20 +0000
Manifest next update:     Thu 14 Aug 2025 07:47:20 +0000
Files and hashes:         1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: qVgoOn4yIPqgtIIgO7CVKqV38clb7GrZzfKUOL6hvGo=)
                          2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl
                          rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 110 (0x6e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE
        Validity
            Not Before: Aug  7 07:47:20 2025 GMT
            Not After : Aug 14 07:47:20 2025 GMT
        Subject: CN=68945a08-20fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:1b:4b:e6:cd:b4:e6:04:ba:50:e9:8f:bd:e5:
                    d1:ae:98:7f:b6:95:a6:7c:24:eb:dc:43:80:42:63:
                    e4:3f:00:cd:1b:99:32:11:8c:d1:cb:f4:e5:02:d2:
                    d0:a0:e9:66:f2:93:4e:70:a9:f4:16:e5:75:23:19:
                    90:b6:f8:f3:09:5e:0a:fc:5f:cd:31:61:f4:cc:34:
                    b7:64:14:5e:31:49:ad:54:85:1e:8c:a5:21:23:10:
                    b1:f8:32:0d:44:fd:be:ea:68:a0:4d:b3:50:f5:15:
                    3e:61:a6:ea:4b:cb:bb:da:cc:6a:c3:bb:5f:ec:44:
                    a0:c3:0c:e8:9f:dc:90:0e:f1:ac:17:58:8e:26:36:
                    46:82:25:9c:49:1d:6e:78:e4:cb:16:79:a1:b7:ec:
                    0f:b1:df:49:81:bb:9d:43:5d:32:25:dc:6a:46:8e:
                    17:13:4a:b6:90:47:97:d1:54:74:b5:63:a3:15:62:
                    fe:23:ed:a6:f2:3e:78:97:f9:e6:b5:eb:75:21:c7:
                    40:15:b9:d6:de:ab:5b:5c:da:5b:13:a4:26:62:ed:
                    5f:93:8b:80:8d:8e:df:7f:7e:63:9c:4b:bc:86:b6:
                    44:41:82:c3:69:f0:16:9a:5f:31:28:a6:52:a3:96:
                    3f:2b:2c:7c:8f:b2:01:c2:b8:3f:42:9d:09:ef:0c:
                    70:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:3C:91:83:94:91:7D:71:74:CE:7F:DE:4F:D2:C5:52:F9:34:12:99
            X509v3 Authority Key Identifier:
                keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:45:c9:f1:de:c7:ef:ae:4d:f3:a8:0a:1d:da:21:00:07:df:
         cd:8f:12:80:0c:2f:b8:71:ee:48:28:ec:31:41:06:9a:b4:67:
         47:c3:2e:43:18:07:23:ba:d9:df:48:0c:a0:3d:2f:e0:bb:93:
         38:7d:10:6f:a6:a3:89:c3:e2:e1:e7:48:fa:d8:3e:12:a6:62:
         fd:4e:45:97:69:d4:9e:e2:75:c0:8f:c9:ff:72:70:20:e3:a7:
         bb:37:0a:47:df:1f:d5:7a:fa:a5:e9:d0:5a:a3:1c:d7:08:59:
         ea:79:f1:87:52:4d:de:13:cb:4e:73:0a:99:06:16:0a:d9:61:
         ba:7e:69:d4:16:89:b8:41:35:d1:ab:15:69:56:bd:04:3f:29:
         92:31:73:37:37:79:ab:6d:38:b3:97:34:2d:c4:25:ba:dc:e1:
         a7:28:75:c7:4c:e5:37:72:ed:2f:30:ce:7f:cf:fa:d8:74:3e:
         31:c9:a6:04:be:5d:ee:20:53:bb:7e:e9:f6:77:40:c8:ce:81:
         df:54:a4:79:a1:32:e5:ad:a8:01:8e:dd:6e:06:c8:31:52:ac:
         24:be:1f:77:8f:5d:76:a9:45:4e:7a:90:5f:e4:9a:79:c5:3f:
         6f:27:ee:fb:37:74:7b:33:0e:f7:14:58:89:07:7b:cb:a4:5f:
         05:99:2e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:51:40 2025 by rpki-client