Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
File:                     2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json)
Hash identifier:          //PZBBKE9voqbg7moNXnNyp4Z+dHXHT+I1dAPMBlvGs=
Subject key identifier:   6F:1B:D4:88:39:E9:9D:2D:08:26:B4:53:BD:8E:20:DF:65:E6:34:3D
Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7
Certificate issuer:       /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
Certificate serial:       0180
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
Manifest number:          0178
Signing time:             Fri 25 Apr 2025 03:00:01 +0000
Manifest this update:     Fri 25 Apr 2025 03:00:01 +0000
Manifest next update:     Fri 02 May 2025 03:00:01 +0000
Files and hashes:         1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: wVoOvLpszSFVueiomEVWaD6YPWKAvNg0SdcieabqgDY=)
                          2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=)
                          3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl
                          rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 03:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 384 (0x180)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
        Validity
            Not Before: Apr 25 03:00:01 2025 GMT
            Not After : May  2 03:00:01 2025 GMT
        Subject: CN=680afab1-54c6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:c4:63:92:93:b1:2a:08:e3:43:31:2c:e3:84:
                    bf:7c:98:be:f2:15:f4:94:a5:ff:03:cd:04:d9:00:
                    27:34:73:c3:ac:bd:4a:89:f4:d5:91:d0:3d:5b:7e:
                    0f:02:66:02:9b:77:48:a2:c7:2a:f6:a5:f3:f0:29:
                    a1:89:af:40:bf:45:1f:9d:6f:4d:e7:92:6e:71:cd:
                    ce:1f:b9:14:2b:a0:6a:6b:d2:eb:d8:47:b1:bc:f6:
                    43:9b:2f:1d:7f:dc:12:49:e1:2c:8d:d3:83:0f:88:
                    a6:3b:e7:d4:6d:a0:b8:ae:00:98:a0:c2:c4:32:7e:
                    66:57:0a:6a:ea:ce:c7:12:b7:05:0a:e4:73:74:cf:
                    75:74:80:bc:2f:4a:43:0c:e6:e3:80:9c:a3:bc:17:
                    fa:6d:64:9d:4e:af:68:15:fd:79:56:c8:a0:85:d8:
                    f0:73:ef:e3:09:21:d6:96:59:1a:72:1a:ca:06:12:
                    24:fa:cd:c9:22:68:b3:d1:71:cb:47:50:a9:de:16:
                    b4:ed:08:e6:8d:e9:c6:fb:6c:17:10:b3:25:9a:0a:
                    67:51:e1:f3:86:77:29:08:4a:f9:d6:51:ea:66:92:
                    80:92:72:65:6b:81:20:36:b4:0a:4c:5b:ef:b2:b3:
                    82:5a:2f:a5:3e:98:54:e3:1b:e8:a4:84:d7:3c:64:
                    8c:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:1B:D4:88:39:E9:9D:2D:08:26:B4:53:BD:8E:20:DF:65:E6:34:3D
            X509v3 Authority Key Identifier:
                keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:2d:99:c2:40:6c:8b:34:c9:11:52:45:a9:b1:38:7f:9e:da:
         f7:ef:ea:93:96:b8:0d:08:c0:5c:07:e6:4f:06:4f:a4:b5:14:
         2d:7e:7f:0a:55:a0:82:16:6b:41:4d:fe:00:5b:87:df:6a:a9:
         ff:ab:28:2d:10:4a:7c:db:b3:28:c8:29:95:0a:98:e2:b7:2e:
         4d:7b:2c:06:2c:69:3a:66:60:a8:e8:a1:28:f8:51:73:f7:a8:
         35:e4:76:c4:b9:3f:9e:0f:83:53:25:8e:20:51:5a:7b:05:cf:
         01:b1:68:19:f2:df:23:4b:37:2c:94:ed:3c:17:ca:ff:4d:13:
         d0:28:f9:f2:bc:0f:0f:a0:e3:91:d8:9a:60:3b:55:aa:47:dc:
         f7:42:a5:ad:22:70:57:26:16:fb:98:91:62:40:bf:61:4f:b1:
         f5:b6:7e:62:fe:ff:a7:e4:48:6a:04:1f:18:62:0b:f1:ca:00:
         2a:88:fb:d6:fb:7c:80:cd:70:b7:71:cf:29:dd:09:b1:f3:c2:
         ce:47:2e:9c:6e:39:e4:5b:a2:1c:62:64:61:97:12:f7:14:91:
         b9:cb:1b:82:71:be:e1:14:91:cd:d9:ca:90:c8:1c:fb:6d:3c:
         89:95:ce:2e:1a:5c:b0:cf:14:3b:73:df:7c:84:ed:a4:13:06:
         27:e3:56:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:58:44 2025 by rpki-client