Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
File:                     CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json)
Hash identifier:          mWn6i1P9Amw9In5YJ2KISgXHS7J64VVFyxesC69r2VE=
Subject key identifier:   65:93:05:F6:DB:D0:EF:2E:0F:2D:98:58:01:B2:50:45:A4:77:23:70
Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF
Certificate issuer:       /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF
Certificate serial:       01B8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
Manifest number:          01B5
Signing time:             Thu 07 Aug 2025 03:34:43 +0000
Manifest this update:     Thu 07 Aug 2025 03:34:43 +0000
Manifest next update:     Thu 14 Aug 2025 03:34:43 +0000
Files and hashes:         1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: Izh0sKxaB+aa8KFpfpS9U2bvJXrwqYEKFkjOhyd1bms=)
                          2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl
                          rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 03:34:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 440 (0x1b8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF
        Validity
            Not Before: Aug  7 03:34:43 2025 GMT
            Not After : Aug 14 03:34:43 2025 GMT
        Subject: CN=68941ed3-bba0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:e2:53:76:ce:21:6f:6c:df:4c:d5:f7:f1:b4:
                    85:aa:30:75:3d:3d:df:d4:2c:ff:c1:3d:ab:3e:40:
                    ac:25:88:c3:0a:b2:3c:3a:ad:09:de:e9:85:2f:00:
                    e4:f6:91:38:0d:0e:9e:89:e6:02:f5:c2:9b:38:9e:
                    70:3b:f5:5b:b4:2d:b0:ef:22:25:be:ad:95:1f:a5:
                    f1:f6:06:10:b1:ee:0a:dc:2c:9c:15:d5:29:81:47:
                    8b:af:6d:36:eb:ed:f9:46:c1:66:39:24:66:6f:86:
                    7d:2b:48:e9:e3:06:07:ef:1c:1b:b1:e9:64:27:86:
                    35:06:9d:45:80:c9:be:cd:e6:a1:53:a0:f5:ce:d1:
                    fd:89:33:64:a1:a2:f0:e6:7a:07:b4:33:e9:b0:46:
                    fc:8a:1b:c5:17:7a:44:d8:e3:95:49:6c:85:d0:fa:
                    66:67:b1:76:17:de:01:b7:14:58:17:eb:7c:83:32:
                    c5:02:87:14:57:c0:b1:fa:e9:26:64:d1:e8:70:11:
                    b3:64:92:3d:23:6e:3b:54:64:3c:d5:70:4e:0b:6a:
                    b5:6e:6f:12:ac:2f:4a:be:e1:bf:fd:cb:81:90:0b:
                    1d:a0:eb:16:e0:0a:91:81:bd:99:3d:82:35:89:5b:
                    52:5a:f1:e2:f0:d7:ed:51:20:b2:73:69:04:c2:e8:
                    62:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:93:05:F6:DB:D0:EF:2E:0F:2D:98:58:01:B2:50:45:A4:77:23:70
            X509v3 Authority Key Identifier:
                keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:4e:fd:a8:53:1b:03:4f:3a:3f:27:0c:f8:d9:f1:67:83:cc:
         7a:16:f4:97:06:50:1c:27:0e:cb:22:11:98:be:74:c3:46:6e:
         7f:1b:95:3e:09:72:47:5b:a3:88:e1:c1:55:70:ea:b8:16:bb:
         b3:6e:1d:2a:75:09:50:c6:48:b3:cb:ee:1c:3f:9b:81:eb:f2:
         04:97:73:df:4d:a1:c6:55:f0:8b:31:44:59:88:9a:50:d1:97:
         f2:a6:de:4b:36:f8:40:61:91:28:0f:0c:11:de:32:dc:14:d5:
         e0:6e:c7:cf:43:44:c7:8c:3f:c9:f4:57:86:7d:c1:1f:72:18:
         1e:54:5f:15:33:35:ec:e9:ea:47:8e:73:0c:b6:ac:c0:52:eb:
         7d:49:79:0a:df:94:9d:00:0a:7c:a6:56:cc:06:49:3e:a6:b9:
         3b:3d:2e:b1:f8:40:78:79:52:a1:b8:ea:96:18:77:a6:c7:5e:
         57:d8:04:09:47:c8:f5:12:4d:de:68:25:16:8c:ed:ce:7d:9d:
         94:ec:06:4f:59:f8:11:01:3f:2c:31:01:b5:65:38:2a:a1:fa:
         a5:59:d4:e5:1b:ab:be:89:a9:d5:3e:f3:66:23:fa:28:8e:7f:
         9b:f0:4b:39:4b:03:21:d2:6d:b6:07:00:aa:e6:5b:2f:e8:cf:
         07:50:1e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:08:01 2025 by rpki-client