Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft
File:                     VU9dfGbsUOhKiru6mWgXfkcp02Y.mft (raw, json)
Hash identifier:          KQJa3nkxRZJ9MeN7nnTkdvSRkeBLtF5sTe/+UXHlxMY=
Subject key identifier:   64:48:5C:D7:08:48:34:09:01:DC:AE:C6:0D:60:FD:03:73:4F:63:55
Authority key identifier: 55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66
Certificate issuer:       /CN=A91E8BE3/serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366
Certificate serial:       7A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft
Manifest number:          79
Signing time:             Sat 09 Aug 2025 07:16:12 +0000
Manifest this update:     Sat 09 Aug 2025 07:16:11 +0000
Manifest next update:     Sat 16 Aug 2025 07:16:11 +0000
Files and hashes:         1: VU9dfGbsUOhKiru6mWgXfkcp02Y.crl (hash: Ci4bDXVELy7ylHKvOGtOV0eFwnX2/hKYfwkrg5iijkI=)
                          2: 0AC098846EDA11F08D404571C4F9AE02.roa (hash: XUaCHo7ISEfVt8zg4dz4qiHM8RTC6XTgDTg25gi/BRg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl
                          rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 122 (0x7a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E8BE3, serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366
        Validity
            Not Before: Aug  9 07:16:11 2025 GMT
            Not After : Aug 16 07:16:11 2025 GMT
        Subject: CN=6896f5bb-e602
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:10:88:5e:ba:15:9f:31:e8:9b:42:5b:4a:21:
                    54:d2:01:d4:12:53:f3:a6:dc:88:61:7c:19:6c:b0:
                    eb:75:24:84:ba:6f:46:04:c5:34:86:bd:67:8d:16:
                    24:18:57:bf:77:73:56:7a:7a:b9:99:72:63:7a:16:
                    96:5c:e2:4b:15:e2:77:7b:86:cc:5a:e2:5b:da:d5:
                    0e:a6:5a:f6:b2:93:b4:46:e3:5d:e4:04:ca:2b:05:
                    d4:07:c2:ad:c9:8c:4b:f4:eb:ef:f3:bc:e1:43:f6:
                    95:b0:b8:53:6b:7a:10:77:7d:bc:17:60:21:96:ec:
                    72:6e:89:51:03:ef:e3:85:9e:d8:f9:a8:d9:5f:d3:
                    ff:76:01:7f:16:f6:2c:4d:e1:48:04:b6:2c:1a:7e:
                    44:c5:6f:f9:68:94:0a:d5:ed:72:28:87:fc:5c:41:
                    f1:2a:1b:80:b9:b3:b7:29:23:65:39:4a:da:e2:e7:
                    0c:0c:d0:96:a3:52:0e:35:a1:94:90:c7:25:40:3d:
                    3d:d1:01:e0:a6:25:9c:c9:43:17:90:0f:87:eb:b4:
                    a8:3d:36:25:a0:2a:9e:de:f6:ac:a1:e5:02:d6:03:
                    d1:c8:4f:44:aa:29:c2:58:f9:75:51:2f:92:af:76:
                    5f:8d:fa:4b:c2:b6:8e:af:4b:4b:70:19:40:42:07:
                    2a:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:48:5C:D7:08:48:34:09:01:DC:AE:C6:0D:60:FD:03:73:4F:63:55
            X509v3 Authority Key Identifier:
                keyid:55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:b6:6e:24:16:5f:fc:47:4d:02:f4:85:39:61:cb:ca:e7:e1:
         fd:3e:ba:84:9e:e4:01:d4:b3:5e:42:a0:fb:4e:8a:14:22:13:
         8b:15:8d:28:83:13:f3:5c:4c:6d:99:63:50:a3:14:66:0d:70:
         19:1b:10:27:94:d7:79:d7:9b:1c:f8:f9:de:60:f5:9a:9c:67:
         05:3e:db:1c:6c:3b:35:e9:be:f3:a6:fc:a0:e2:55:84:86:5d:
         db:74:73:7d:47:40:b7:33:b0:ca:f2:93:8d:d0:ab:a0:95:f6:
         60:96:e3:dd:eb:af:39:c0:d8:f6:9f:14:dc:4e:4a:72:e9:e7:
         85:6b:67:9c:1d:eb:54:90:fe:ff:48:3b:fa:e1:8d:9f:df:63:
         9f:42:f8:48:97:ef:63:c2:62:37:da:36:99:70:77:e0:08:6e:
         0c:98:8d:1b:02:5b:cc:8d:0a:63:8d:98:18:82:a7:63:6a:f8:
         f4:e4:1a:91:d3:74:a6:82:e3:02:8b:45:f4:a3:06:bb:b5:26:
         6f:ae:0c:28:c2:13:88:a1:dd:5c:2e:d0:d1:b9:65:5c:53:35:
         f2:43:87:02:6a:f8:29:ff:58:f8:3a:5f:3a:3a:d8:11:71:a6:
         08:6b:2c:f7:0d:fd:15:70:f8:ee:d2:94:5e:c8:39:70:f2:c4:
         73:f7:44:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:12:55 2025 by rpki-client