Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft
File:                     hxSXyIUOQWJXlcT42UXHs9BBbB8.mft (raw, json)
Hash identifier:          jcB4JfsgrsAQUy9P4ug7TrAUVJW55ETLyABvJyCk2bw=
Subject key identifier:   85:CE:58:C1:BD:F3:3E:73:22:48:AD:05:B8:B0:F5:B1:E1:7E:E5:15
Authority key identifier: 87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F
Certificate issuer:       /CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F
Certificate serial:       0650
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft
Manifest number:          064A
Signing time:             Sun 10 Aug 2025 22:42:16 +0000
Manifest this update:     Sun 10 Aug 2025 22:42:15 +0000
Manifest next update:     Sun 17 Aug 2025 22:42:15 +0000
Files and hashes:         1: hxSXyIUOQWJXlcT42UXHs9BBbB8.crl (hash: DgmmfVx9xBhuxoUJ8Eu8zalBNxjsLYRKSyECNmFIpxc=)
                          2: 925B815E9ABE11EBA445A74FC4F9AE02.roa (hash: tc+HUzngZ7VVMdvUKEWM7ZZWawGnaExqZ4p3l2kRuv4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl
                          rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1616 (0x650)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C6825, serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F
        Validity
            Not Before: Aug 10 22:42:15 2025 GMT
            Not After : Aug 17 22:42:15 2025 GMT
        Subject: CN=68992047-979a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:3f:60:fa:4e:8b:70:4b:0a:da:ea:85:e2:72:
                    46:58:69:1f:0b:55:18:60:76:78:c6:07:31:a1:62:
                    7b:2e:8c:51:20:2c:7b:3a:fd:17:31:02:82:e0:8c:
                    c2:05:a2:90:c3:e1:db:54:bc:74:44:f1:e9:2e:82:
                    c3:be:24:78:d0:9f:93:5c:67:f2:aa:70:35:88:22:
                    6b:c1:6a:f4:8e:be:ab:be:c9:4a:5b:2b:f5:59:8d:
                    d6:76:5a:7f:91:af:5a:09:e4:98:0c:63:73:14:13:
                    90:e1:21:da:cf:07:a0:35:07:3d:dc:10:1d:b5:a4:
                    38:61:80:01:90:82:1c:b7:e2:ea:d1:c5:99:e3:b6:
                    fd:2b:6e:2d:09:f5:5e:ef:4e:fc:70:fc:ed:80:ba:
                    92:65:15:82:6a:9f:55:b7:43:d9:1a:4c:51:15:f6:
                    42:8b:8b:4e:2e:e9:57:70:ab:9f:23:d7:65:22:2e:
                    a9:73:5f:59:a9:58:5d:aa:dc:23:5f:4f:19:e1:64:
                    7c:2d:45:98:46:10:ae:f0:f4:69:16:a0:02:6e:51:
                    2d:e4:32:13:bf:e8:16:48:11:1f:e5:f5:15:2a:a1:
                    a6:61:8c:d5:d9:ca:d9:8e:91:39:1f:c4:ae:3d:32:
                    b4:62:14:e9:94:8b:44:ed:b7:1e:8f:9a:8e:64:73:
                    ef:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:CE:58:C1:BD:F3:3E:73:22:48:AD:05:B8:B0:F5:B1:E1:7E:E5:15
            X509v3 Authority Key Identifier:
                keyid:87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:fc:43:d7:ca:d2:2f:aa:44:55:e7:b6:35:cc:73:5d:3b:5d:
         67:aa:ba:88:e2:17:fe:7a:fc:f7:42:d5:3e:a1:04:8a:8d:36:
         b3:26:4b:6a:d8:98:50:0f:c0:c1:fd:b4:6d:da:48:85:d2:c3:
         4d:63:ae:41:c0:bf:55:bb:a3:04:16:d0:40:cc:ae:82:ce:89:
         98:c0:8b:e9:2e:53:46:05:af:1b:32:6a:6d:12:de:f5:55:16:
         15:04:1c:7e:59:98:db:88:2c:2a:11:ea:b6:2f:cf:f4:08:c2:
         57:38:95:a1:a1:1c:af:cc:d1:e4:7a:ed:5e:50:22:20:88:d9:
         b7:b7:4a:1a:fa:be:24:c6:c3:1b:3c:6e:9b:0e:14:2b:12:1d:
         5c:85:d0:e1:48:ee:e2:d7:64:94:c6:bc:a4:93:be:14:2a:41:
         84:ca:14:81:42:09:f6:87:fb:13:2f:ba:2d:9b:21:cf:5c:50:
         07:a8:b0:ab:d2:df:72:6c:b0:1d:77:3f:5f:59:67:0f:95:72:
         7b:18:96:ee:84:89:9b:06:73:a6:2b:49:61:9c:4d:e7:eb:85:
         53:9f:6f:ae:7e:90:2d:bf:ae:2d:55:b5:95:73:e8:6b:ab:49:
         9d:9e:51:d9:08:3a:1d:72:d0:69:04:5e:47:83:62:83:1a:3a:
         fa:67:d8:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:48:39 2025 by rpki-client