Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
File:                     oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json)
Hash identifier:          pYSDuSBgWZlN861ln7/waPuKvvc9Gkb80yqLOm8Q0F8=
Subject key identifier:   4D:BC:61:CB:12:9F:4B:E9:22:2A:1B:C6:28:89:06:77:D0:7F:EA:99
Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0
Certificate issuer:       /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0
Certificate serial:       02C6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
Manifest number:          02BA
Signing time:             Sat 09 Aug 2025 02:01:21 +0000
Manifest this update:     Sat 09 Aug 2025 02:01:21 +0000
Manifest next update:     Sat 16 Aug 2025 02:01:21 +0000
Files and hashes:         1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: gONtVIjsPrhPIuEb3QbacaYvn5c7kVaHJp33WTX9Kdo=)
                          2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=)
                          3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl
                          rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 710 (0x2c6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0
        Validity
            Not Before: Aug  9 02:01:21 2025 GMT
            Not After : Aug 16 02:01:21 2025 GMT
        Subject: CN=6896abf1-9603
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:a7:09:7b:25:1a:c2:78:48:71:2f:7e:15:5b:
                    bc:39:b8:4f:97:69:1a:cf:04:a2:22:64:47:ca:9d:
                    d2:37:dd:69:d7:c0:3a:bd:9d:b2:28:56:62:ec:6f:
                    6e:31:ee:99:17:fc:5d:da:b9:d2:e1:c4:fc:88:b0:
                    d6:c9:6d:12:7d:af:ea:c2:1b:a2:67:1f:0f:c7:ca:
                    41:d3:db:e3:b4:39:6e:a2:8a:3a:e7:a8:44:cf:ea:
                    4d:84:43:e9:e8:9a:d5:93:9d:d1:8a:6f:ed:48:91:
                    78:51:7a:3b:54:9e:7e:4b:28:c4:ac:26:a3:42:41:
                    d8:14:6b:7f:5a:d6:8c:0e:0b:1f:f0:2f:34:1a:88:
                    f7:a5:08:af:b2:72:17:33:90:7d:5b:44:1d:01:fd:
                    81:7b:04:c9:d7:f1:17:3a:5f:b5:09:73:04:ed:5d:
                    57:54:4c:94:cf:9a:28:10:3a:ea:c4:c3:00:47:71:
                    95:78:31:45:fd:2e:75:07:1c:7a:18:50:37:3c:55:
                    82:da:0f:1a:ab:a4:37:9b:f5:f0:20:2d:2f:2e:5a:
                    5e:87:74:5b:5a:ef:5a:14:55:c7:7a:d9:3a:c4:50:
                    4c:cc:a9:31:5a:05:cf:62:33:4d:1e:82:d3:c3:b0:
                    88:41:b3:4e:82:f4:b4:5a:7e:73:9f:00:05:21:df:
                    74:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:BC:61:CB:12:9F:4B:E9:22:2A:1B:C6:28:89:06:77:D0:7F:EA:99
            X509v3 Authority Key Identifier:
                keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:9d:fd:69:da:b7:66:62:3b:78:09:e6:2f:50:c8:a2:b0:ff:
         fa:cc:0e:5a:8b:b5:e2:78:a0:12:8f:e3:6a:de:00:44:36:aa:
         b9:09:d9:8c:7d:5f:77:b6:3a:88:b0:cb:d0:4a:cc:00:6d:86:
         a5:46:f8:f5:ae:94:dd:bb:82:12:57:4f:6c:75:ee:6e:d8:ec:
         5c:39:7d:24:d4:6d:67:73:59:0c:54:a0:e0:d3:82:fb:e1:68:
         da:76:62:10:4a:bd:8b:a3:30:cb:17:53:46:ae:cc:2c:87:46:
         c3:26:e9:08:d9:e3:10:b5:62:7a:99:60:87:ae:78:00:b5:49:
         59:d7:2f:0b:32:a7:4c:83:cc:63:30:f8:29:5f:db:6a:35:30:
         da:c1:33:90:64:9f:81:cd:f9:17:32:bb:db:4f:d4:42:73:46:
         96:73:f1:c4:99:2b:39:0f:21:77:48:45:79:2c:39:49:ce:7b:
         91:91:51:04:77:b5:20:28:ee:4d:6d:87:5b:e1:de:42:03:83:
         b5:78:1a:50:c4:cc:7f:fa:b0:6d:d5:37:6f:66:b1:d4:be:90:
         e4:72:3a:7d:4c:b6:f1:3e:26:58:5e:2e:f3:ed:28:a6:f7:4c:
         58:00:9c:e0:d2:88:f3:90:d8:a0:ea:2d:a2:ed:f2:76:f7:13:
         07:b0:33:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:08:48 2025 by rpki-client