Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
File:                     Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json)
Hash identifier:          SX+0+uxQvBLD/PKkhRUsFdDidXjTz8lflkeDgEtUvkI=
Subject key identifier:   04:01:65:BF:D3:AD:F2:81:7B:14:DA:2B:95:9B:55:ED:7D:43:C0:39
Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86
Certificate issuer:       /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286
Certificate serial:       0167
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
Manifest number:          0161
Signing time:             Tue 05 Aug 2025 04:28:10 +0000
Manifest this update:     Tue 05 Aug 2025 04:28:10 +0000
Manifest next update:     Tue 12 Aug 2025 04:28:10 +0000
Files and hashes:         1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: 8WUGfHyFXzKM4eBotSNl1RoimRNMcApsMmVaVV9h9xE=)
                          2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=)
                          3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl
                          rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 04:28:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 359 (0x167)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286
        Validity
            Not Before: Aug  5 04:28:10 2025 GMT
            Not After : Aug 12 04:28:10 2025 GMT
        Subject: CN=6891885a-8432
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:11:7e:ca:9e:ae:ec:94:f4:0e:32:34:7e:97:
                    14:d5:c3:84:44:17:db:0f:43:fb:d0:8b:63:b0:1f:
                    03:39:37:bb:6c:ba:9c:c9:2c:da:d7:9f:80:b2:0c:
                    98:f1:7a:21:36:2f:0e:19:cf:77:5e:6c:9c:66:85:
                    5d:51:5e:cb:0a:49:01:51:93:c2:3f:6e:d1:6a:dd:
                    5d:fc:a5:09:4f:87:c9:55:71:b1:9d:d7:7a:53:c6:
                    ab:76:2c:39:eb:e1:53:31:29:c3:38:11:b7:91:45:
                    1b:81:b4:4d:06:7e:f2:73:25:3e:17:8f:53:4b:4f:
                    83:48:bb:b3:d2:e0:00:86:c4:c2:77:62:b5:c8:48:
                    7d:fa:fc:4d:bb:85:c8:1e:0f:17:ea:f6:98:be:b1:
                    1e:5e:6f:f1:64:16:50:1b:56:7c:4f:d4:2c:d0:c9:
                    28:44:08:a7:76:be:3c:54:b8:9e:25:a0:e0:26:7b:
                    e8:0a:47:8a:f6:fa:2e:0f:20:50:5b:0e:0d:f3:de:
                    29:9c:83:88:0f:45:c9:ac:65:e1:de:3e:57:be:da:
                    ad:f7:c7:75:8d:89:8c:f0:c8:23:18:2b:66:61:e2:
                    7e:0f:c3:7f:6c:31:4c:81:8d:98:c7:78:29:30:80:
                    ee:6c:77:c2:f9:e8:2a:33:36:07:f0:1b:75:fc:a8:
                    34:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:01:65:BF:D3:AD:F2:81:7B:14:DA:2B:95:9B:55:ED:7D:43:C0:39
            X509v3 Authority Key Identifier:
                keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         aa:4d:b2:74:bb:56:d1:5b:b2:1f:db:d5:3c:9f:22:b4:36:2b:
         0a:c3:94:26:6d:d8:6f:e2:23:d0:36:ae:51:55:a7:ae:73:4e:
         e9:3e:b4:28:12:0d:7b:59:71:0d:90:0d:76:ee:4f:d6:25:62:
         1d:84:c6:ba:fe:a1:92:d7:50:48:ca:43:4c:9a:60:9b:81:a3:
         88:92:eb:e8:dc:f2:1c:71:45:2b:31:f6:a4:16:68:ee:c2:ad:
         ff:c0:32:7b:21:85:76:0c:0f:b3:65:d6:04:16:fc:36:db:e1:
         33:3e:60:f4:e4:0f:50:9f:b5:26:60:9d:49:3e:e2:7a:8e:d9:
         55:63:0a:db:04:a8:bf:ae:df:b1:d9:c7:c3:1a:5d:de:18:52:
         18:8e:fe:f5:17:f1:49:66:6d:6a:c2:6a:cf:d3:78:81:4b:57:
         04:60:19:7a:47:98:44:58:fa:fd:2b:1f:68:66:49:c2:76:23:
         69:3e:b3:bc:9f:d5:0f:b7:0f:74:d5:71:c9:6b:e0:d7:ec:f9:
         50:77:b1:9b:f6:38:a8:27:18:fa:c1:3f:9d:63:e5:41:79:10:
         f4:00:38:12:61:91:16:ac:0d:bd:b2:58:8a:ed:8c:1e:88:d0:
         0c:57:ba:16:89:c8:dd:89:ac:33:34:30:87:ec:ca:9f:89:a8:
         7d:f9:6d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:22:57 2025 by rpki-client