Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft
File:                     MOfescUi55FZhZK2RTCIY8oADhg.mft (raw, json)
Hash identifier:          6LS1PuaKDp6i0aez5/t+oCFlUJue/yVYlGp7xtAVYLg=
Subject key identifier:   46:62:86:4D:6D:50:B8:A8:46:C3:00:9F:D5:87:5C:E0:05:B1:DA:81
Authority key identifier: 30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18
Certificate issuer:       /CN=A91E76B8/serialNumber=30E7DEB1C522E791598592B645308863CA000E18
Certificate serial:       1466
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft
Manifest number:          144A
Signing time:             Sat 02 Aug 2025 17:04:08 +0000
Manifest this update:     Sat 02 Aug 2025 17:04:08 +0000
Manifest next update:     Sat 09 Aug 2025 17:04:08 +0000
Files and hashes:         1: MOfescUi55FZhZK2RTCIY8oADhg.crl (hash: SiKFTKSLTBYhDImOoJ0C6sgdyDgWlZXpgtxC5I0vHYI=)
                          2: ECBAA694826F11ED963DD626C4F9AE02.roa (hash: dEUjWtTlj2rNYIxixfb1q7kgTimYlRGEihBrx/cv4cU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl
                          rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 09 Aug 2025 17:04:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5222 (0x1466)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E76B8, serialNumber=30E7DEB1C522E791598592B645308863CA000E18
        Validity
            Not Before: Aug  2 17:04:08 2025 GMT
            Not After : Aug  9 17:04:08 2025 GMT
        Subject: CN=688e4508-c3d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:67:57:3d:cf:8f:9a:fe:0c:03:4e:5a:76:d8:
                    f5:a2:c6:17:32:99:24:16:e9:d5:91:d2:9e:56:e5:
                    7d:0c:ca:c0:7f:a8:3a:c9:2c:84:39:bc:ba:d9:91:
                    9b:08:0b:9b:ba:cd:63:64:2f:e7:93:c5:82:02:77:
                    9f:33:c0:1d:2a:6a:b7:42:39:ca:40:20:c3:a9:94:
                    0a:58:e0:6d:e2:0b:88:04:bb:b0:f9:7e:ad:e9:f9:
                    be:a8:d4:ba:33:9e:6f:50:26:ec:e5:06:68:20:1f:
                    43:80:d8:dd:06:70:f9:7a:d0:cd:8b:f6:0f:f0:b6:
                    46:8f:90:35:88:51:b2:99:bf:c4:51:06:53:e2:61:
                    ce:38:71:dc:7e:46:ac:4a:6e:6c:29:92:b8:c0:ef:
                    e8:b5:91:ee:2c:9d:26:e2:61:23:96:c4:c6:26:18:
                    67:82:02:8d:af:65:97:f9:e7:6d:02:1c:33:50:58:
                    bc:f6:4a:dc:76:63:60:6d:20:78:de:c6:97:0f:4a:
                    94:15:e7:f6:1f:d1:0a:d8:63:6a:f5:a8:b9:95:10:
                    b0:75:8e:3e:12:19:6a:4e:02:2c:88:6b:4d:96:44:
                    73:d7:0e:32:9e:00:25:4b:c4:95:72:e8:fc:49:1a:
                    1c:18:a1:49:c1:3b:e0:a0:17:5e:31:05:f9:53:5a:
                    08:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:62:86:4D:6D:50:B8:A8:46:C3:00:9F:D5:87:5C:E0:05:B1:DA:81
            X509v3 Authority Key Identifier:
                keyid:30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:41:71:29:39:77:81:bc:fe:69:31:aa:69:fd:77:fb:b3:57:
         36:03:c2:28:d0:0e:d8:ee:b7:8c:63:1f:d7:fe:6e:bf:d2:f6:
         3f:9c:e6:53:1a:3e:a4:43:07:de:09:b6:37:7c:d1:82:64:78:
         82:3f:a4:8f:1d:4d:7c:9a:ef:9f:73:4c:82:cd:4e:1d:0d:7a:
         c6:45:ac:45:1b:9d:02:62:c5:e6:47:f7:67:5d:66:91:f5:35:
         a8:ce:3d:d9:f1:61:30:1e:5b:d6:29:60:27:e1:33:24:a6:af:
         e5:79:7d:49:27:e6:4e:8e:d6:8b:35:53:ae:c5:1c:9f:c1:52:
         3d:b4:9a:31:a7:cf:89:21:c5:5e:01:35:1c:eb:f3:91:09:39:
         9a:ce:20:dc:5c:f4:a2:fd:db:d2:21:b4:1b:58:88:f4:3c:70:
         2e:30:7f:00:5a:ff:98:39:4f:7c:a3:89:bd:fa:8b:aa:57:f4:
         7d:3e:b5:68:0e:42:bb:5f:7e:2d:ce:f1:1b:ce:2d:51:c5:69:
         fe:ac:c3:c1:bd:3f:c8:8e:e8:29:a8:8b:92:51:ba:54:f5:58:
         32:c4:53:68:0c:85:4c:27:47:94:13:48:06:f0:3a:52:35:72:
         1d:df:e5:18:11:36:17:71:d9:c9:1d:86:51:8e:ea:28:03:8e:
         47:4b:f8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:05:38 2025 by rpki-client