Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft
File:                     HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft (raw, json)
Hash identifier:          gJck025rDCoLu1o9IsOZeyInktWoVd6Sj6zoBUOZLDE=
Subject key identifier:   6F:6F:83:22:49:2F:B3:66:AA:20:AF:68:EC:F4:09:B7:D4:C3:21:F0
Authority key identifier: 1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66
Certificate issuer:       /CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866
Certificate serial:       34C3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft
Manifest number:          34B8
Signing time:             Wed 06 Aug 2025 14:57:39 +0000
Manifest this update:     Wed 06 Aug 2025 14:57:39 +0000
Manifest next update:     Wed 13 Aug 2025 14:57:39 +0000
Files and hashes:         1: HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl (hash: ZdStthKt6As76O/9TG6u3Qz2Sp4BqIK4CHcGCEvHfDg=)
                          2: 08FA1EC60C0911EDBDF8C44FC4F9AE02.roa (hash: alhBAf8jvRhFefsbDXOa8VjrZGUtci5WGYLgfA9nSPA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl
                          rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 14:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13507 (0x34c3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F2CA8, serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866
        Validity
            Not Before: Aug  6 14:57:39 2025 GMT
            Not After : Aug 13 14:57:39 2025 GMT
        Subject: CN=68936d63-ad95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:e8:f9:16:0d:30:b8:4b:2d:22:9f:5e:4a:2f:
                    ac:c2:5a:51:c1:d0:98:5c:0e:d0:65:a8:f0:49:0e:
                    9e:c2:74:c4:9d:62:33:ff:64:d0:47:72:30:78:d9:
                    3a:1b:85:11:65:f3:ac:ea:7e:4c:73:a9:0e:80:41:
                    22:11:d3:a7:e9:a9:d9:07:c1:6b:64:59:b5:51:a4:
                    f8:93:63:cf:f6:75:75:c7:9a:7a:08:d9:67:f7:58:
                    2a:46:64:94:bc:79:b7:82:1d:6e:bf:66:e3:82:38:
                    9f:3a:46:39:a1:ec:d1:f2:0c:1e:32:70:28:ad:2d:
                    13:ac:ce:e9:b3:f0:1c:21:0d:7b:90:4a:13:bc:95:
                    42:88:24:f2:30:ad:0a:5e:55:cf:42:c3:ac:e2:18:
                    e9:d6:d5:47:50:37:f0:66:2e:b1:45:40:65:64:d7:
                    23:1c:41:a6:10:f7:d2:f8:50:47:ab:a6:2b:87:91:
                    0c:80:4e:07:0c:bd:a2:db:9d:f7:63:5c:ef:41:25:
                    1a:6e:84:78:4e:53:b2:96:a7:49:b2:74:72:3a:d3:
                    8b:d4:e0:25:da:73:f5:29:d7:7a:15:21:19:05:c7:
                    aa:a5:4c:a0:2c:03:8d:f5:90:38:00:c4:f8:92:58:
                    4e:b1:cb:d2:a9:13:7f:79:d7:e4:74:16:7f:d2:48:
                    d4:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:6F:83:22:49:2F:B3:66:AA:20:AF:68:EC:F4:09:B7:D4:C3:21:F0
            X509v3 Authority Key Identifier:
                keyid:1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:b2:f4:b9:6d:8d:64:2d:7a:96:58:59:b7:a4:ad:55:cc:e5:
         76:42:92:4c:d5:74:89:e6:54:06:b4:2c:82:30:a8:4e:56:7b:
         f5:4c:73:35:b5:bc:8e:d7:03:d3:2c:de:73:f8:ab:71:0c:35:
         6e:69:c5:5d:c1:b6:dd:46:ae:7a:6b:2b:73:c9:81:6a:de:ba:
         09:eb:0a:23:7f:4f:f5:8a:89:65:d4:2e:b8:18:68:22:73:13:
         32:fc:04:eb:5d:33:3d:00:28:bf:83:0a:ed:5b:9b:a9:67:b0:
         82:fb:b6:7d:b3:64:9f:6d:c1:95:c0:db:d9:63:f0:f2:b6:0d:
         bb:17:d3:0b:4d:cc:96:1b:45:68:c7:f3:b1:e2:34:1e:97:cd:
         77:34:9d:e5:4e:f2:18:f3:75:ac:7e:58:99:c7:b0:13:50:e7:
         3e:d3:ad:af:94:3b:64:b7:10:15:e8:78:5f:e4:f0:48:9d:e3:
         c4:63:23:87:b3:cd:b5:14:26:cb:be:30:b1:01:06:09:5f:a3:
         29:6b:03:a0:e9:95:c8:9f:14:2c:a3:71:aa:8b:6f:4d:95:92:
         18:67:65:92:aa:d9:a9:02:aa:13:e6:78:fa:91:97:30:68:b0:
         66:e7:fb:1e:6d:5c:45:80:bb:be:28:22:92:25:4b:fb:d6:ff:
         d4:51:f3:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:37:25 2025 by rpki-client