Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft
File:                     TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json)
Hash identifier:          S6qbiU59JjURQUeVgI7YI6RQu9zVlUTnt1fF/r1SeiU=
Subject key identifier:   A4:0A:1A:A0:21:9F:E5:83:28:61:F3:D1:9D:A9:82:97:1B:56:B1:9F
Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53
Certificate issuer:       /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53
Certificate serial:       0AC2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft
Manifest number:          0ABB
Signing time:             Fri 08 Aug 2025 19:47:33 +0000
Manifest this update:     Fri 08 Aug 2025 19:47:32 +0000
Manifest next update:     Fri 15 Aug 2025 19:47:32 +0000
Files and hashes:         1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: 0wI4KyKLCI05nbONMIIN9vHPmvi9/S/teRJCQXZqr+Y=)
                          2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl
                          rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2754 (0xac2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53
        Validity
            Not Before: Aug  8 19:47:32 2025 GMT
            Not After : Aug 15 19:47:32 2025 GMT
        Subject: CN=68965454-810f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:c8:45:e0:ed:49:1d:4e:41:35:9e:93:cf:e0:
                    63:73:53:32:02:cf:c7:fd:97:8c:f4:ea:c9:fd:c9:
                    66:57:22:d8:d7:34:77:dc:5e:bc:bc:12:89:36:61:
                    fa:fd:80:29:ed:5b:a9:43:98:81:06:5b:2e:a9:25:
                    fb:48:30:57:de:5e:a1:ed:40:f7:32:0c:3b:21:c1:
                    98:d0:ef:03:26:34:21:69:20:16:e1:37:57:4e:7c:
                    f1:6c:97:06:e1:63:7f:4a:61:cc:9d:68:94:19:b0:
                    d5:79:19:69:b7:97:4a:1e:71:5f:db:d8:29:5d:73:
                    f6:6f:0f:fa:96:c7:a2:2a:55:2b:0f:61:ee:dd:d5:
                    8b:c6:52:cf:1c:a7:3b:1e:36:e8:64:6a:ac:6b:1f:
                    9e:0d:43:7c:c5:98:dc:ad:c0:00:63:93:6d:5b:c0:
                    29:13:3e:45:02:42:ca:b2:e3:be:97:42:3e:5a:83:
                    a7:91:b8:f9:9e:45:d9:83:04:fd:8a:cb:c6:85:48:
                    46:c1:c4:5e:ac:f4:5f:03:ab:57:7d:9e:7e:92:8d:
                    45:8b:a9:96:1b:36:ab:67:c2:f1:d8:f7:da:6e:77:
                    98:94:57:3b:04:16:23:b4:9a:ab:d3:f2:d3:28:de:
                    65:97:71:17:d2:6a:17:0c:29:5d:76:68:22:20:f1:
                    c3:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:0A:1A:A0:21:9F:E5:83:28:61:F3:D1:9D:A9:82:97:1B:56:B1:9F
            X509v3 Authority Key Identifier:
                keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:b1:2c:b8:87:c0:52:0e:a3:f8:68:3a:50:77:d2:fd:25:fb:
         f5:8a:42:3f:b6:b1:16:cb:07:cd:fe:6e:08:e6:c1:88:06:22:
         25:fa:53:79:e5:93:89:9e:9c:74:43:e3:b8:8c:82:8a:0e:37:
         f1:fa:31:22:5b:e8:b6:af:05:2f:ea:b8:08:1c:ce:8b:9f:2a:
         6e:1d:fd:7a:ba:76:b4:f3:33:f2:9c:82:46:57:4b:d0:8d:7b:
         31:57:1c:49:37:95:ef:78:97:11:90:3f:08:59:58:a1:4d:18:
         b4:4d:c3:23:dc:31:10:40:80:a8:c9:a2:95:b5:cd:ca:d1:e5:
         9e:dc:6e:ad:5d:2c:6b:9e:f4:e2:ee:3c:db:63:50:da:9d:54:
         60:d8:9c:df:62:db:2d:4d:af:67:7f:25:c0:15:7d:9e:1e:58:
         69:35:fa:0a:f1:0c:3b:bf:d4:40:f9:a5:72:4f:14:c6:69:a0:
         b1:b2:a3:33:84:4b:cc:cc:3d:86:2d:64:a5:2d:73:da:17:58:
         64:9b:cf:bd:7f:ce:b9:76:62:4e:69:61:b0:f6:76:12:25:25:
         b6:1c:fb:d8:4a:9a:5f:88:2e:45:2b:c0:59:ed:b5:2b:51:6f:
         cf:26:b9:61:ad:0a:f8:56:d0:aa:c8:ce:93:39:0b:f2:df:58:
         8f:11:b1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:47:42 2025 by rpki-client