Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft
File:                     DB8k6eYChXae9hTPqBPuUayemP4.mft (raw, json)
Hash identifier:          5GqK0I5hdHZUaWeAUPybDZWufmcXc1n+9L5Rxd+sp+I=
Subject key identifier:   B7:4B:A9:5E:C4:9A:85:0C:02:E0:E7:9C:5A:96:D8:F6:CE:F1:57:6E
Authority key identifier: 0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE
Certificate issuer:       /CN=A91E754F/serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE
Certificate serial:       0685
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft
Manifest number:          067E
Signing time:             Wed 06 Aug 2025 22:44:47 +0000
Manifest this update:     Wed 06 Aug 2025 22:44:47 +0000
Manifest next update:     Wed 13 Aug 2025 22:44:47 +0000
Files and hashes:         1: DB8k6eYChXae9hTPqBPuUayemP4.crl (hash: tDMJjDqZrjQTfifgx6B6sTiDks7OByXOlliyx4NGUDQ=)
                          2: 26F67E0A842011EB8A4C635AC4F9AE02.roa (hash: /0E6jZ4+7bqUYrWrcsn+EsmkQL/Ndn9BT+YgQs7TIDw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl
                          rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 22:44:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1669 (0x685)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E754F, serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE
        Validity
            Not Before: Aug  6 22:44:47 2025 GMT
            Not After : Aug 13 22:44:47 2025 GMT
        Subject: CN=6893dadf-a070
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:fd:59:65:20:bc:e5:1a:53:ad:7e:2c:b5:36:
                    a4:6c:95:e5:2d:0b:c1:31:86:8a:3c:16:45:db:bc:
                    96:c0:be:aa:29:84:5f:e5:ba:f1:71:bc:d5:46:35:
                    81:45:30:da:86:67:d7:a1:f4:ca:e4:0c:00:38:85:
                    fc:23:33:d3:e3:80:d8:f6:cb:60:b2:f8:af:61:f1:
                    30:2f:9c:bf:ce:b1:f4:82:d9:68:76:fd:fe:16:08:
                    3a:8c:8c:1a:cc:7d:f9:f0:b1:04:ee:d5:a3:9f:36:
                    33:f4:53:8c:fa:10:55:41:29:6b:2c:dc:7e:c0:d7:
                    56:ab:b5:8b:08:1c:17:d6:62:7e:25:63:af:36:ee:
                    f5:c1:2b:7d:df:a5:66:66:8e:38:ab:c8:b8:cf:8c:
                    fb:e8:05:4d:d2:7c:a8:c3:31:46:52:80:85:e7:48:
                    d3:87:ad:ca:4c:22:d0:45:7f:de:0d:7a:9e:3c:85:
                    98:81:9a:c3:b9:21:be:f5:40:60:38:e1:15:4b:a4:
                    da:ee:07:5c:7d:b5:6f:d4:71:94:a3:cf:a4:08:ae:
                    90:33:86:97:92:ff:8e:ec:0b:ad:4b:10:d2:4e:e2:
                    81:2f:f7:3e:d7:c5:a1:3f:49:fe:5a:9d:f2:d8:9b:
                    7b:0e:82:22:c5:b7:09:00:4b:d2:f3:2f:38:4f:51:
                    85:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:4B:A9:5E:C4:9A:85:0C:02:E0:E7:9C:5A:96:D8:F6:CE:F1:57:6E
            X509v3 Authority Key Identifier:
                keyid:0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:b5:02:77:58:9e:eb:64:13:de:9d:f5:1f:0e:45:73:2b:a3:
         b6:eb:67:42:97:e5:ff:33:6a:af:db:bb:43:39:fb:0d:a9:c7:
         68:46:c7:76:31:70:0a:e6:4d:dd:02:e0:d1:c0:13:34:44:b8:
         b0:10:97:bf:eb:63:2f:5d:a9:de:9c:c1:06:e8:d6:1f:ba:52:
         46:11:75:01:bc:26:86:3b:ff:29:b8:44:fb:c1:dc:10:69:11:
         de:37:b3:cf:2b:fd:60:fb:60:d5:cf:b8:d9:3d:bd:40:ac:f7:
         34:15:f1:8c:da:2f:31:d0:c7:34:86:54:3e:69:b8:0a:fb:18:
         2f:a7:5c:3a:d7:35:23:7a:ba:5a:2f:84:a3:a9:be:84:ce:ab:
         16:f7:45:21:4d:78:6c:be:87:e5:30:9c:a2:20:ec:8e:8a:14:
         88:57:9b:e6:5b:7d:33:43:b4:89:ce:a4:94:07:e3:d3:2f:ac:
         2e:6a:30:e3:22:0d:df:08:a8:ee:95:a7:ad:28:6c:62:db:6a:
         4a:d8:76:f5:28:db:2e:23:f8:fc:08:f0:2a:71:00:17:8a:fd:
         dc:e8:0f:64:cd:a7:59:3e:a4:54:bc:13:54:ab:7e:a2:1e:00:
         17:58:39:74:7e:0b:f4:55:de:a2:c5:8f:11:f1:33:90:2f:42:
         ee:76:64:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:17:25 2025 by rpki-client