Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft
File:                     AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json)
Hash identifier:          GHYGY+aZYd9cn5T01L3mUzcac2JdULld2y3jMbGwee4=
Subject key identifier:   AE:6A:0C:93:42:30:46:25:09:86:2F:CE:52:67:70:11:27:A3:7D:1D
Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF
Certificate issuer:       /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF
Certificate serial:       89
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft
Manifest number:          88
Signing time:             Mon 11 Aug 2025 06:49:54 +0000
Manifest this update:     Mon 11 Aug 2025 06:49:53 +0000
Manifest next update:     Mon 18 Aug 2025 06:49:53 +0000
Files and hashes:         1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: EI/XPkcQBPB/4jNr3Zgy5QV4ytf2TZwC3Ykhu9xawIQ=)
                          2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl
                          rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 18 Aug 2025 06:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 137 (0x89)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D09BC, serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF
        Validity
            Not Before: Aug 11 06:49:53 2025 GMT
            Not After : Aug 18 06:49:53 2025 GMT
        Subject: CN=68999291-e069
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:7d:a9:5f:d6:9d:a5:8a:6c:6c:06:94:51:d1:
                    23:aa:3a:08:89:f5:a2:97:94:05:ca:e6:bc:ea:f5:
                    b0:65:1f:e9:1f:9c:09:bb:b7:f2:a5:f9:4e:9d:2d:
                    a5:42:7f:6d:21:de:1e:bc:ca:a7:78:be:b7:1b:67:
                    aa:91:70:94:a6:bb:61:d0:53:9f:ea:36:07:de:ff:
                    2b:9a:b4:7e:e6:e8:d8:a1:03:0e:24:41:34:09:7a:
                    7d:e2:b9:aa:bc:7f:02:3a:73:5d:81:54:25:ce:cb:
                    9a:f7:42:1d:8a:8a:17:03:07:53:d2:ec:5a:7b:bf:
                    f7:62:ec:c2:b6:a2:07:01:2c:a6:2c:81:11:90:66:
                    d7:2f:f5:3d:ad:39:ed:ef:ad:f0:72:f9:47:04:55:
                    6e:dc:2a:cc:30:e1:4c:db:e6:be:75:de:27:f5:6c:
                    2e:81:40:0a:06:1a:b9:0b:a2:12:d7:c3:07:d3:ef:
                    d8:d9:ef:54:d3:4f:39:59:50:8b:43:16:de:73:d0:
                    ae:99:ce:5f:6e:c9:81:11:2f:a1:52:52:4b:22:52:
                    c8:f7:72:cf:45:e3:7f:9d:6d:44:2d:77:d2:f6:15:
                    65:83:12:61:ac:83:44:55:4e:3b:68:da:6f:01:4c:
                    c7:28:38:78:cf:9e:d6:aa:f5:7b:1d:f2:62:0e:14:
                    ff:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:6A:0C:93:42:30:46:25:09:86:2F:CE:52:67:70:11:27:A3:7D:1D
            X509v3 Authority Key Identifier:
                keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:90:26:33:b9:e1:52:c7:a8:38:fd:23:96:03:a2:c6:87:c7:
         91:e5:1b:33:70:0e:fc:15:71:52:5f:31:33:21:23:91:65:23:
         cb:33:47:aa:3a:22:8f:6e:9d:7c:35:a0:0c:b0:c9:1a:54:14:
         d5:0a:9c:e1:bf:c1:1c:95:70:85:fd:0b:78:b5:f7:2c:03:66:
         f2:aa:5d:57:10:48:b6:41:12:7d:d8:1f:c6:dc:65:46:d2:6e:
         ab:3f:4c:af:67:53:fd:ea:aa:17:bf:15:6d:89:65:e9:de:fd:
         84:e4:d2:cb:56:17:21:68:ea:d4:ee:35:ec:6e:bf:a9:6a:a5:
         91:65:ad:40:18:94:ce:cd:c3:d5:92:cc:ba:95:42:91:14:f6:
         d3:8e:3a:1c:3d:79:0a:98:a1:d9:41:81:09:7a:59:80:51:22:
         88:e1:01:59:3a:64:ad:3f:07:8f:5c:e0:e9:36:7a:36:b0:4b:
         95:56:14:4b:d2:a9:5f:0d:02:66:2a:a4:6a:4d:88:39:74:1a:
         6b:4e:1a:5c:2e:bf:0b:d2:d2:20:39:e6:c4:16:96:0a:fd:86:
         f6:65:94:64:e4:c1:64:03:8c:0e:6e:a4:5a:94:f7:d8:e6:aa:
         d3:7a:7f:1f:ff:f3:80:a7:e1:19:19:ae:fa:82:0d:79:44:17:
         88:7e:35:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:50:19 2025 by rpki-client