Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft
File:                     FDeI0jX9adsvJbd3Il96t2naNQs.mft (raw, json)
Hash identifier:          mEfAVwCI6ikUnPxxoBjSD8UlTBbxBiMxvLYL5NvqpjM=
Subject key identifier:   A5:33:E1:4A:9A:1C:F4:12:25:DB:FD:7C:5A:CC:C1:A6:C8:9D:78:EB
Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B
Certificate issuer:       /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B
Certificate serial:       0598
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft
Manifest number:          0590
Signing time:             Fri 08 Aug 2025 23:42:42 +0000
Manifest this update:     Fri 08 Aug 2025 23:42:42 +0000
Manifest next update:     Fri 15 Aug 2025 23:42:42 +0000
Files and hashes:         1: FDeI0jX9adsvJbd3Il96t2naNQs.crl (hash: o7t18Ie++3dOIKZaD2Hgyni/iBT3niHGNsMvYt0Pmdo=)
                          2: 2A52AB54138811F0BA2C056DC4F9AE02.roa (hash: 0AvanG6lwhnjCogGu+WtHXRuTCMKYEBdG6vznbvbdAY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl
                          rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1432 (0x598)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B
        Validity
            Not Before: Aug  8 23:42:42 2025 GMT
            Not After : Aug 15 23:42:42 2025 GMT
        Subject: CN=68968b72-2204
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:88:c4:16:df:8d:17:9d:d9:58:0c:cc:97:4b:
                    6b:3c:a3:78:1b:c8:47:6d:41:f0:df:70:2e:df:fc:
                    e9:58:d8:af:f7:a7:f5:af:41:d5:bb:cc:6f:5a:ed:
                    4e:fb:66:d8:7a:17:7f:0e:6a:d9:a7:c7:c1:e9:7f:
                    5c:11:80:40:be:69:96:54:96:a9:9e:77:3f:e0:16:
                    f2:6d:41:66:28:12:f3:2a:d6:28:18:f5:a4:79:72:
                    4b:74:1d:cc:52:81:85:22:36:b7:87:2c:85:60:1c:
                    76:8f:a8:e8:32:df:bb:5b:4c:0d:8d:68:75:07:19:
                    b0:6f:ba:9e:fe:e1:aa:8e:74:92:66:d0:3e:2e:ae:
                    30:cd:98:55:6f:a3:b8:02:df:07:86:8f:78:c0:1f:
                    db:9b:db:50:6a:f3:e6:07:73:37:3d:ae:6b:ef:a2:
                    f6:97:a8:39:cf:36:14:f8:53:c1:6b:6f:8b:93:78:
                    18:97:bb:13:5a:9c:3c:79:27:c6:16:c4:50:b3:59:
                    df:b1:9d:8a:8a:3d:3b:fe:57:5d:3c:f1:6b:66:5e:
                    35:87:08:b4:da:bd:ee:35:e5:86:c6:5a:05:af:cb:
                    c2:0d:d2:88:d7:e4:82:78:51:c6:8d:9a:32:81:95:
                    cc:b3:82:ea:8e:6e:45:ab:36:fb:49:49:ed:ea:45:
                    6f:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:33:E1:4A:9A:1C:F4:12:25:DB:FD:7C:5A:CC:C1:A6:C8:9D:78:EB
            X509v3 Authority Key Identifier:
                keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:15:c0:97:51:74:2b:b9:2f:02:7c:9a:b0:1e:cd:b0:88:b9:
         e9:b2:41:b4:b2:46:c0:ff:08:32:3e:11:95:d9:cf:7e:8c:aa:
         b5:f6:9b:91:a5:0d:e9:52:6e:13:f7:0c:1f:49:e8:4f:0a:a8:
         07:38:df:96:97:be:17:78:6d:b0:26:e5:8e:d1:40:59:9c:37:
         61:76:8a:34:40:eb:13:12:ad:44:d8:13:63:8c:21:15:69:d9:
         30:0c:64:cd:bf:b0:3c:ea:01:b6:6b:d6:d3:07:2f:16:ab:92:
         e9:2a:a3:87:cc:f2:8b:ad:f6:c7:8d:ca:ce:18:0b:f9:2c:fb:
         54:09:c9:04:5e:73:31:0d:6a:7a:e6:85:0a:b9:a7:4c:98:aa:
         b8:65:47:dd:cf:98:92:9a:c4:31:4e:49:83:93:53:37:b8:f6:
         b2:44:aa:be:70:e7:79:37:71:e0:7b:1e:7a:87:06:c7:a5:e4:
         14:c3:d0:f0:39:6a:28:2b:8d:26:c7:03:27:51:68:ba:e5:33:
         8b:b1:cb:e5:af:b1:ec:40:8e:f3:eb:20:d0:20:aa:6a:e4:b9:
         46:8c:5d:18:a1:eb:24:6d:78:84:6e:5f:94:ea:9b:e7:80:9d:
         f6:00:5e:ec:9e:8b:84:e0:59:55:6d:98:fa:45:4d:5a:c6:6f:
         e1:ab:40:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:06:33 2025 by rpki-client