Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
File:                     2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json)
Hash identifier:          5Xzow3cr8sf5pVIxIM/xs4bgt8bE2R9UTgh7H0G2HUs=
Subject key identifier:   75:EA:C8:09:20:45:5F:BD:EB:65:AD:A2:6E:88:6D:EF:45:F6:45:87
Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7
Certificate issuer:       /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
Certificate serial:       0181
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
Manifest number:          0179
Signing time:             Sun 27 Apr 2025 02:45:08 +0000
Manifest this update:     Sun 27 Apr 2025 02:45:07 +0000
Manifest next update:     Sun 04 May 2025 02:45:07 +0000
Files and hashes:         1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: rDxj0annwbF6Dx6VDDNL2B4Ayqnr/aVcXlj4ZYagRKo=)
                          2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=)
                          3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl
                          rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 04 May 2025 02:45:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 385 (0x181)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
        Validity
            Not Before: Apr 27 02:45:07 2025 GMT
            Not After : May  4 02:45:07 2025 GMT
        Subject: CN=680d9a34-e43f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:62:27:e3:0e:f1:31:bc:98:d4:70:6e:b2:f2:
                    76:06:14:e6:b6:e3:7d:52:ee:3e:bd:92:31:8b:86:
                    f2:10:c3:4f:14:84:47:0f:b1:98:01:05:8d:32:4c:
                    4a:24:81:2c:99:f3:13:fe:dc:b2:ae:49:2c:74:fe:
                    33:dd:ea:27:78:15:12:d3:78:53:c6:ec:9a:ef:4c:
                    66:54:7e:bb:cf:2d:7c:61:27:e3:5f:a3:e7:9b:42:
                    35:b1:fd:7b:7a:ad:94:8e:68:a6:c8:1d:63:69:3f:
                    47:4c:48:2d:ac:64:5b:fe:d4:09:52:e4:9f:ee:5f:
                    d6:78:e6:05:fa:34:c8:56:57:b1:97:82:08:25:56:
                    21:51:01:34:02:6b:fd:f7:39:aa:1a:af:30:6d:fa:
                    a8:bb:fa:17:14:4b:43:2d:cf:38:37:2a:af:89:64:
                    dd:39:ca:fc:cd:e0:95:71:b6:57:e2:23:1f:db:1c:
                    35:a0:d1:a5:a3:a1:3c:ba:e6:a7:35:6c:c3:1f:93:
                    24:30:0b:7a:61:1f:7c:e0:7b:30:89:64:94:61:60:
                    5d:61:5f:dc:f1:5a:7d:fc:f6:9b:e1:80:b3:68:b2:
                    6f:e6:0b:e6:9f:e1:62:fb:2b:d3:6e:32:62:f9:2f:
                    0f:38:f6:cd:ba:f6:2f:88:ee:64:a4:db:ef:5a:00:
                    f3:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:EA:C8:09:20:45:5F:BD:EB:65:AD:A2:6E:88:6D:EF:45:F6:45:87
            X509v3 Authority Key Identifier:
                keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:3b:50:f9:60:32:43:57:e7:c2:08:d2:5d:57:38:09:36:b1:
         46:b4:80:29:47:57:2a:d2:6b:77:b8:47:9a:ba:15:1e:ce:67:
         5b:34:ee:05:e1:41:88:31:cf:90:16:e4:eb:d0:77:50:7a:56:
         97:0c:6d:ed:21:5d:fc:5c:85:7d:98:a0:eb:bc:ab:cd:05:9e:
         0d:1e:4f:53:61:75:45:8d:dc:f4:f2:2f:2f:66:dc:09:5f:77:
         19:e8:f4:68:6d:36:49:da:23:c8:2b:f0:7f:40:21:f5:6a:02:
         30:2d:80:d6:7a:cb:18:a4:77:5e:06:dd:58:10:da:46:db:8c:
         8b:ff:62:6c:3f:9a:db:aa:b7:20:57:1c:a4:88:0c:59:d8:ea:
         ab:29:77:73:e4:43:d6:f8:a6:b4:e3:2b:25:66:a0:af:fb:67:
         9e:4d:0a:47:ca:1c:49:7a:00:3c:c3:c0:4a:d4:f7:d7:63:6f:
         8b:3f:2c:2b:17:4b:fe:b1:81:b4:e3:28:46:cc:e9:12:e1:ea:
         cf:0d:5e:22:b4:56:3c:ec:ba:f0:bc:00:3d:31:f4:76:b2:04:
         06:46:4b:40:49:05:33:b0:99:5a:f4:5d:90:a0:8f:5a:74:e9:
         77:8b:b3:d9:a6:8a:8b:a9:cc:36:af:05:a0:0c:8c:37:e8:bd:
         1b:3c:14:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:36:20 2025 by rpki-client