Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
File:                     g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json)
Hash identifier:          8P9ssMahgibLQH1qeSGW56sV8JW6mh9DDflwyrrt5QM=
Subject key identifier:   13:20:43:BD:73:F0:FB:03:F4:B9:17:1A:03:8E:E1:13:C4:F1:43:23
Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF
Certificate issuer:       /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF
Certificate serial:       E1
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
Manifest number:          DF
Signing time:             Tue 05 Aug 2025 05:57:39 +0000
Manifest this update:     Tue 05 Aug 2025 05:57:38 +0000
Manifest next update:     Tue 12 Aug 2025 05:57:38 +0000
Files and hashes:         1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: 4oDSz7KApAVLuWvK6umcT0dkmuP4Ie4DHTphORmjSKc=)
                          2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl
                          rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 225 (0xe1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF
        Validity
            Not Before: Aug  5 05:57:38 2025 GMT
            Not After : Aug 12 05:57:38 2025 GMT
        Subject: CN=68919d52-59f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:a9:52:9f:e6:4b:4f:5c:68:34:40:7b:77:4c:
                    8e:ef:72:99:e4:9c:f3:bb:5a:6e:8c:7a:84:70:47:
                    ac:b6:cc:4b:bc:fa:1d:5d:19:46:cd:a8:ab:c5:6c:
                    5b:7f:91:7e:88:e0:91:52:65:49:f6:03:4c:41:a0:
                    37:29:2b:1e:98:ca:bf:3e:22:d1:69:f8:a4:0d:a6:
                    ac:79:e2:4f:1d:e7:74:bc:8e:76:d3:3b:eb:4c:7b:
                    64:95:d2:7a:c1:bb:82:39:e6:a3:82:15:28:0b:23:
                    02:f1:16:52:e8:76:20:8b:59:6d:20:40:6f:ce:7d:
                    89:24:1b:ca:82:1b:71:7c:3c:26:86:12:49:2d:d0:
                    4d:f9:b7:ed:98:21:a6:53:ae:12:c8:6f:c1:3e:5c:
                    48:0e:13:5e:78:38:3e:a9:a0:47:a6:4f:4e:fa:1f:
                    8c:68:2c:b8:a1:e9:8d:05:a5:3a:2e:0f:8e:57:db:
                    9f:16:c0:44:78:80:05:9a:9a:5a:95:63:e6:b5:18:
                    67:9a:98:9d:cb:1d:51:2c:3e:60:8c:cc:85:93:f1:
                    f6:ff:8b:5a:b2:85:83:72:20:cf:08:a9:4d:b5:b1:
                    ea:83:d0:93:4d:40:36:74:69:0e:f2:fa:fb:b9:fd:
                    4a:8d:1d:bd:6b:2c:0a:ff:58:17:d1:b7:02:e6:24:
                    af:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:20:43:BD:73:F0:FB:03:F4:B9:17:1A:03:8E:E1:13:C4:F1:43:23
            X509v3 Authority Key Identifier:
                keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:78:c2:52:57:32:c0:02:34:5f:f7:ca:70:06:70:28:81:6e:
         50:80:2e:d1:e5:46:f1:6b:23:7d:81:18:13:a0:48:85:d9:81:
         62:1d:3f:cc:0b:95:3d:66:03:b5:63:e9:79:5a:bd:07:2f:ad:
         af:6a:43:c1:30:47:e6:1f:3c:6a:2c:72:78:3f:9f:c6:33:b3:
         52:75:21:b6:be:ef:67:82:d4:e5:ca:5f:a9:72:f7:b9:f9:af:
         2d:9f:e0:07:80:ee:bd:f9:35:85:17:43:ad:8c:2d:dd:76:56:
         59:c1:ad:54:a0:93:81:91:83:39:13:48:3e:e7:e7:04:e7:c9:
         41:77:54:97:0c:60:84:bb:46:f7:74:d8:a8:6b:5d:08:c9:d8:
         58:5c:17:b4:59:ba:d9:c6:20:8a:57:50:b0:3d:4d:42:de:3e:
         b7:d2:9f:03:cb:b2:19:dc:12:c0:4d:12:a6:aa:e3:f0:a6:73:
         c6:a4:ae:3a:8c:d8:84:12:87:38:94:44:97:46:f6:79:a1:8d:
         90:b4:98:c9:bb:74:0b:42:3b:c2:16:6b:91:fa:24:1b:3f:c4:
         61:e9:b0:3d:34:37:8e:2e:9f:92:08:3f:02:98:2c:f4:5e:5d:
         49:bf:2b:da:1b:f7:dc:24:2e:46:7c:ce:9f:be:cb:de:ec:9d:
         04:ef:94:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:18:07 2025 by rpki-client