Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft
File:                     K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json)
Hash identifier:          V9vKau4ZbTs68ofopbTbiaUIe88qHPAst0p4zEBtxco=
Subject key identifier:   B2:4E:7D:43:AD:69:A1:68:62:F1:84:D2:3B:7A:69:B6:FB:D3:0A:09
Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B
Certificate issuer:       /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B
Certificate serial:       16E4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft
Manifest number:          16CB
Signing time:             Fri 08 Aug 2025 16:48:36 +0000
Manifest this update:     Fri 08 Aug 2025 16:48:36 +0000
Manifest next update:     Fri 15 Aug 2025 16:48:36 +0000
Files and hashes:         1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: F1SFzP3gDRwpvT0n9l8Gn7fGIJ35boIpSt+V1zK04Zc=)
                          2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=)
                          3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl
                          rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5860 (0x16e4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B
        Validity
            Not Before: Aug  8 16:48:36 2025 GMT
            Not After : Aug 15 16:48:36 2025 GMT
        Subject: CN=68962a64-c2b3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:c8:31:fb:28:ed:9b:f2:25:42:a0:2e:fc:4c:
                    e9:58:e1:a9:df:58:e2:f0:ed:98:20:92:5e:98:7f:
                    cf:f9:3c:4d:dc:66:b0:9b:53:f4:0b:a7:1c:a8:45:
                    1f:cf:20:da:00:49:fd:78:21:35:a7:39:50:77:f0:
                    26:74:cc:bc:07:ae:8f:24:08:25:d5:49:30:57:4b:
                    42:b4:24:89:17:4c:b5:15:9d:eb:cb:d1:c1:92:36:
                    22:0f:c6:7e:da:2c:de:7a:93:74:f5:c6:07:5d:aa:
                    61:27:9e:a1:55:2d:b4:03:a5:63:4c:d6:31:db:0e:
                    9c:a8:7a:cb:0b:6b:d3:cd:16:26:f5:af:8f:85:fd:
                    52:29:a6:91:ed:57:12:b5:7c:2e:b1:50:2c:50:47:
                    52:8b:63:2f:1e:4d:a0:4f:45:de:2a:d8:14:1c:92:
                    23:de:0e:6b:65:36:25:a1:ff:46:5d:cb:02:cf:98:
                    df:8e:09:8c:29:c3:e7:b4:91:ee:da:6b:d3:9e:a8:
                    00:18:56:e1:e2:41:58:82:f8:a5:04:68:2d:6d:6f:
                    9d:df:e2:ff:af:79:67:09:d4:00:2f:15:82:6e:ff:
                    a3:6e:f8:1c:cf:bc:13:75:fd:62:47:7d:a0:30:f1:
                    6a:db:7d:65:71:f0:ef:0a:1f:be:17:65:17:44:b9:
                    dd:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:4E:7D:43:AD:69:A1:68:62:F1:84:D2:3B:7A:69:B6:FB:D3:0A:09
            X509v3 Authority Key Identifier:
                keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:d4:51:80:37:ad:5f:af:87:7d:03:b7:25:8b:6e:9b:e7:53:
         bc:48:a2:c1:bf:b4:35:7d:3e:4a:8d:62:a2:8e:d1:d3:07:00:
         a8:94:be:71:58:f4:ea:17:6a:c9:f0:ce:b0:87:6e:78:fb:f0:
         b4:32:0c:d1:12:92:97:7f:7a:ad:cd:b0:6b:b2:19:3a:24:79:
         8f:1a:90:69:76:ce:7f:f3:1b:86:0d:16:17:b8:5d:5e:d2:d2:
         e4:59:ce:de:3d:0f:f0:6e:ff:6a:87:ce:44:02:28:b2:ed:2f:
         e1:31:a4:22:21:de:e2:46:6b:8a:b1:f0:77:19:14:28:e7:f6:
         aa:c3:f6:1e:04:d7:96:9c:e6:eb:cd:f4:82:fc:6b:d1:bd:f9:
         26:d1:3f:73:99:5e:04:7b:4c:c2:e2:a4:80:79:e6:8c:7e:44:
         22:3c:00:f5:20:86:45:bb:0d:68:51:1c:3b:f1:81:ed:2c:f3:
         26:e1:81:9d:24:10:35:94:bf:65:6d:fe:fb:31:b1:fb:b4:ee:
         2a:e7:93:db:d9:8e:a0:4c:83:dc:a8:69:99:d7:0c:a9:69:dc:
         ac:4e:57:1c:da:34:c2:34:e6:74:8b:23:e5:ae:72:bd:b5:98:
         76:ad:73:67:bd:2e:2d:1c:58:1a:3b:65:95:7c:29:62:0b:20:
         78:a1:f9:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:08:01 2025 by rpki-client