Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft
File:                     akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json)
Hash identifier:          mttYvvdjwxEaYcasLrhvxQ0Lr7Z1TO7A4fMATXw3q7M=
Subject key identifier:   56:FF:1E:97:AE:2A:8E:33:45:4C:A2:38:D6:ED:BF:16:B9:4B:54:0E
Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A
Certificate issuer:       /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A
Certificate serial:       0A64
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft
Manifest number:          0A4F
Signing time:             Wed 06 Aug 2025 19:59:29 +0000
Manifest this update:     Wed 06 Aug 2025 19:59:29 +0000
Manifest next update:     Wed 13 Aug 2025 19:59:29 +0000
Files and hashes:         1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: CZsystZ1YNk55GN6FqylqGvvIOkMBCbwDPOzOBSbPkE=)
                          2: 57C25DB2E42811EA881AB667C4F9AE02.roa (hash: E9181+VVT+rwNNkc7uINFuNWW6wPgms9gTqr7A850dY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl
                          rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 19:59:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2660 (0xa64)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A
        Validity
            Not Before: Aug  6 19:59:29 2025 GMT
            Not After : Aug 13 19:59:29 2025 GMT
        Subject: CN=6893b421-167e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:fc:d2:4b:e6:69:7e:2b:70:cd:58:6b:6f:fa:
                    97:f3:f3:01:12:e9:51:e7:13:6c:e6:42:fb:7c:d6:
                    e8:12:7f:c4:2f:da:26:50:96:6d:06:02:39:c7:5e:
                    ac:77:71:65:ff:37:05:4a:88:d3:c2:b4:de:bf:a8:
                    35:0e:94:97:ad:62:ee:cf:ce:7c:de:74:22:22:80:
                    4a:c1:1f:88:90:c1:da:08:70:f4:49:ff:a6:75:ae:
                    b7:34:4d:09:78:39:be:9a:73:87:28:dc:9e:1b:17:
                    79:0b:bf:65:53:95:a2:bd:2b:2d:cd:dc:9c:95:41:
                    c7:0d:b6:97:08:93:42:e9:c4:39:ee:10:56:b1:90:
                    3f:c5:46:26:b1:40:14:ff:b0:87:28:e9:91:10:ab:
                    44:b3:72:c7:67:33:24:e1:b2:2b:66:e9:99:b1:82:
                    30:94:e5:5b:ff:5f:f0:c5:8c:b8:3a:11:de:20:fc:
                    5d:fc:f8:19:b2:90:1f:bf:9a:b4:40:c1:9f:09:ec:
                    6b:f0:5e:c7:29:92:99:bc:e9:0c:a5:d9:78:8e:8b:
                    05:c4:44:c1:74:9e:c2:38:24:85:f2:61:2c:9e:83:
                    b1:6f:7b:19:db:29:f8:99:e2:a2:a7:12:dd:3a:23:
                    4e:bc:46:8d:05:57:69:74:e2:4e:10:99:bb:d3:4d:
                    03:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:FF:1E:97:AE:2A:8E:33:45:4C:A2:38:D6:ED:BF:16:B9:4B:54:0E
            X509v3 Authority Key Identifier:
                keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:bd:84:8e:ca:3c:cf:27:90:11:fc:d4:36:ea:6a:11:6d:c2:
         e6:cf:85:8b:7a:3b:fe:e7:cf:34:0c:df:a6:2b:54:0d:40:a6:
         33:b1:17:2f:2b:86:61:b2:d4:cf:99:d4:0b:2f:af:b9:d5:f6:
         3b:3e:d8:29:00:a9:54:3b:3f:d7:a0:e5:34:f3:1e:c3:1a:ee:
         ec:82:50:46:ee:46:d8:f1:43:75:2d:b4:4a:49:bc:c4:fe:47:
         57:38:d7:f3:68:a8:ef:0e:37:a0:f9:19:c7:91:f1:f0:72:89:
         db:55:93:5c:5b:91:66:9d:e0:4e:ef:01:db:07:6b:ec:e3:f8:
         bc:44:28:ef:83:91:fb:46:27:e8:35:d7:b4:12:a3:78:5a:46:
         3b:4d:35:f0:f0:43:e4:49:6c:ee:8d:2d:8d:87:62:4d:42:97:
         3e:8a:da:42:41:90:39:03:80:f1:1e:ba:fc:3a:e3:17:e6:1a:
         23:9e:38:ac:71:61:a6:ba:c8:e1:cf:5c:96:ef:03:bd:66:2a:
         4b:b2:8e:47:42:98:63:60:e6:b9:f5:56:89:98:8b:f5:24:ba:
         9d:c1:16:61:a4:6b:1d:c9:c3:9d:f7:5c:0d:5b:a9:64:64:7e:
         5f:45:78:a6:23:36:fc:26:7f:a2:4e:8f:33:cd:b8:03:aa:eb:
         7c:49:52:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 13:01:10 2025 by rpki-client