Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft
File:                     gkVvIaH33yOGQR-g7REgZPbrw5o.mft (raw, json)
Hash identifier:          R5gTAh/2lU7Ns+IPlOVUjf0r3U+Sa77UCPYTLggLKjA=
Subject key identifier:   C1:85:5B:02:64:FB:C0:11:CD:82:DC:0C:C1:38:34:A9:0E:21:9A:57
Authority key identifier: 82:45:6F:21:A1:F7:DF:23:86:41:1F:A0:ED:11:20:64:F6:EB:C3:9A
Certificate issuer:       /CN=A91E94F0/serialNumber=82456F21A1F7DF2386411FA0ED112064F6EBC39A
Certificate serial:       03F9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft
Manifest number:          03F3
Signing time:             Sat 09 Aug 2025 01:01:00 +0000
Manifest this update:     Sat 09 Aug 2025 01:00:59 +0000
Manifest next update:     Sat 16 Aug 2025 01:00:59 +0000
Files and hashes:         1: gkVvIaH33yOGQR-g7REgZPbrw5o.crl (hash: hM+kJZAwfoYw0XtqnUyd5GbVUifP9jyh5dgE6Uma9fY=)
                          2: F15E709A880611ECAF18133AC4F9AE02.roa (hash: bpLtQ8qLL6l2ZogXhZIDbdT4T6FC+6P3DrjrNo4piak=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.crl
                          rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1017 (0x3f9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E94F0, serialNumber=82456F21A1F7DF2386411FA0ED112064F6EBC39A
        Validity
            Not Before: Aug  9 01:00:59 2025 GMT
            Not After : Aug 16 01:00:59 2025 GMT
        Subject: CN=68969dcb-1bd9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:ae:fd:25:26:7c:e2:43:57:ff:5a:59:09:c6:
                    17:e8:f2:08:22:78:d9:31:cd:cc:22:8c:79:ec:e5:
                    02:89:a4:ff:e8:57:89:7a:10:b9:88:d7:d9:75:30:
                    1a:22:48:ed:16:77:c6:ea:00:0c:a9:5b:2e:ac:99:
                    3f:30:f0:c0:0e:7f:6f:b6:18:88:e9:e4:a7:d7:37:
                    3c:7d:4f:f0:a5:73:8c:5c:6b:93:a5:30:f3:09:60:
                    b8:d8:5c:eb:ca:7a:a9:5b:ba:4e:9e:17:c7:5c:59:
                    25:fc:d3:bb:f7:1e:b2:f7:d6:82:02:aa:16:ba:a7:
                    09:27:30:8c:03:7b:c8:f3:10:7c:31:88:7d:58:f4:
                    95:27:42:e5:84:21:b4:e8:51:ab:46:04:3a:2e:1c:
                    e0:a7:4d:b1:1a:77:9c:9a:19:5b:d7:a3:7c:93:ac:
                    24:05:78:a5:7c:ff:a4:0d:0a:9f:7a:75:ca:71:d2:
                    6a:ce:69:77:5e:c9:a9:10:54:ce:2d:d5:7f:ac:c5:
                    fa:55:e6:65:f6:65:2d:29:57:44:16:b2:9b:4e:c0:
                    a6:70:52:47:a5:a4:dd:c4:66:16:d6:a8:10:55:58:
                    51:92:98:31:8d:04:ad:8f:97:98:49:44:bb:56:96:
                    6b:7b:84:dd:c0:64:d8:ea:cb:d6:f8:a2:f3:e7:98:
                    0d:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:85:5B:02:64:FB:C0:11:CD:82:DC:0C:C1:38:34:A9:0E:21:9A:57
            X509v3 Authority Key Identifier:
                keyid:82:45:6F:21:A1:F7:DF:23:86:41:1F:A0:ED:11:20:64:F6:EB:C3:9A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         98:d2:5e:7f:18:88:6e:ed:96:7b:33:a7:52:02:cf:a5:56:c0:
         2c:14:e3:b3:74:59:66:43:6f:a3:41:db:6d:b3:60:7c:13:3d:
         ef:d5:3f:91:94:4a:e4:b4:60:77:67:19:5f:24:53:bd:4f:51:
         fe:a8:9c:dd:49:f2:97:cb:bb:50:4b:19:c6:7f:7b:95:4e:20:
         3e:5c:ba:58:91:4f:40:e5:ee:d8:d5:af:fa:38:1d:3d:5d:77:
         3b:e7:8c:ae:01:d0:c0:0c:ce:95:31:ec:c0:77:15:d3:57:f5:
         0c:a7:26:16:15:57:ec:64:e9:c6:52:7c:c4:ae:90:84:79:2b:
         45:8d:47:97:b7:14:94:6a:4d:ae:e2:a9:61:5c:b2:07:81:ac:
         64:9f:8a:5b:b1:c8:a1:28:8b:b4:bd:7b:e3:81:2f:c6:41:f4:
         5a:ff:c8:c0:79:8e:91:67:80:82:07:9d:10:56:98:8c:da:7c:
         c2:c6:6a:c0:ec:8a:ce:e7:66:19:03:07:fb:f4:b4:d2:5d:83:
         ad:bb:b9:d8:52:62:19:4b:12:f4:52:cd:a0:06:94:0c:4b:31:
         69:19:13:14:7e:e4:7f:f1:96:25:1c:19:80:8c:53:74:83:4f:
         89:a8:94:f6:e2:e4:7f:99:5c:a1:2f:04:59:e8:a7:52:df:3b:
         e6:d3:c8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:05:36 2025 by rpki-client