Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
File:                     lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json)
Hash identifier:          lXC6d51oPyy7ImtmMjEpP2bvJqo3q6Q2NgYANcX3fu0=
Subject key identifier:   10:B1:8A:19:85:F7:83:CF:3B:AF:07:7F:39:55:1E:65:2C:5F:B0:59
Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2
Certificate issuer:       /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2
Certificate serial:       0252
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
Manifest number:          024A
Signing time:             Thu 07 Aug 2025 02:26:33 +0000
Manifest this update:     Thu 07 Aug 2025 02:26:33 +0000
Manifest next update:     Thu 14 Aug 2025 02:26:33 +0000
Files and hashes:         1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: Xo94qv6chO2E8Ynsws5jgbk1MKckKzgLqloMSV1Y0Tc=)
                          2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: sR0eTjFYTlKs7mzVHMIl7telIMsp7nYju6MlYaiMBkg=)
                          3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: 64gg/L8X7dQV3AAOAv3MN1klInujbmxMEcZ9X63m+I4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl
                          rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 02:26:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 594 (0x252)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2
        Validity
            Not Before: Aug  7 02:26:33 2025 GMT
            Not After : Aug 14 02:26:33 2025 GMT
        Subject: CN=68940ed9-8f3b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:0e:0d:fb:59:39:95:32:cc:1f:ef:51:40:16:
                    84:1d:df:29:df:3e:3c:4d:ac:a0:fc:00:fd:a4:ef:
                    f1:00:ab:7a:21:dc:57:02:f1:7f:5d:ed:06:9b:02:
                    ef:de:76:8c:3b:16:f7:ea:f6:5c:f8:df:ef:e2:f9:
                    d6:be:66:5a:84:fd:f5:a9:c8:11:87:77:4c:be:84:
                    43:23:64:0c:10:47:30:2d:b1:92:8f:61:df:ee:f8:
                    8f:b9:fd:ac:e7:62:19:a3:f4:6f:50:13:d3:75:b9:
                    74:f6:39:92:15:12:54:0a:f5:b7:a0:34:0e:75:3b:
                    c2:b7:ed:25:5d:e3:be:bd:2c:51:27:f7:42:7a:cd:
                    cb:98:04:9e:82:65:88:8f:16:af:7f:21:47:ba:c8:
                    ac:13:71:45:2c:89:bd:8b:90:50:b3:70:db:0c:a8:
                    91:b6:07:ed:b3:a9:85:31:8d:98:2e:bd:9c:da:24:
                    94:3c:01:cd:66:7a:aa:90:53:05:64:93:32:cf:f1:
                    fe:72:6f:30:e9:d3:59:60:2c:7f:1e:9d:51:db:ed:
                    35:39:65:40:c5:f4:27:a9:4e:3a:7d:f7:7f:05:d3:
                    b6:45:d9:ca:e8:49:26:3e:8b:ad:73:63:cc:99:7c:
                    5e:b8:9e:ba:25:98:66:6f:5f:52:4d:a7:d0:e9:ee:
                    39:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:B1:8A:19:85:F7:83:CF:3B:AF:07:7F:39:55:1E:65:2C:5F:B0:59
            X509v3 Authority Key Identifier:
                keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:fc:98:1f:b1:af:b4:e0:5d:eb:b7:bd:41:40:2c:95:15:96:
         18:e1:8c:a2:85:77:19:84:e6:fc:f8:8f:52:2a:73:99:5d:78:
         20:37:9f:ee:ae:ea:85:f8:f9:ef:5d:53:f3:91:27:06:3f:29:
         c4:0d:65:c7:0a:7b:9d:dd:db:f0:5c:e2:57:d7:44:71:4c:68:
         d7:af:af:19:1e:e1:74:b1:6a:3a:51:9b:55:a2:96:81:87:65:
         d1:a2:75:db:a1:8a:4e:31:2a:77:61:d9:72:1c:9e:09:67:27:
         50:fe:ad:56:2d:6e:56:55:67:92:c9:59:9d:b1:c3:62:f8:35:
         b6:35:5d:d0:3a:46:00:cf:46:53:93:61:48:66:07:43:c7:81:
         b8:89:bf:62:ff:98:4e:b0:6f:ff:4a:bb:4a:ff:be:3f:a7:89:
         1e:cd:27:8b:0c:9d:a7:e5:2d:4b:87:d8:7a:7f:4a:09:9f:62:
         2d:99:42:df:20:e9:a8:9f:0f:bf:9c:d7:e2:70:31:f9:ea:fc:
         6b:7d:de:a3:2d:d3:31:ae:3d:63:18:64:50:d7:c5:e5:2f:b9:
         66:96:02:46:d6:09:3e:54:5b:ce:6f:ca:cf:10:ff:0d:6a:24:
         4f:bc:da:9d:23:2b:10:f8:bd:7c:37:ff:af:74:b0:84:39:a5:
         ee:e3:f7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:05:32 2025 by rpki-client