Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft
File:                     sCOWweSXbcJLufJA9c5Vbtgn-is.mft (raw, json)
Hash identifier:          5i5hxuU6IKPAmzo763X02GLM6dywln1GMq6ZWNZ3zkE=
Subject key identifier:   2D:ED:06:34:F4:EA:79:2D:DB:4D:C1:60:34:34:F9:C4:50:B2:BD:87
Authority key identifier: B0:23:96:C1:E4:97:6D:C2:4B:B9:F2:40:F5:CE:55:6E:D8:27:FA:2B
Certificate issuer:       /CN=A91124CD/serialNumber=B02396C1E4976DC24BB9F240F5CE556ED827FA2B
Certificate serial:       0107
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft
Manifest number:          0105
Signing time:             Tue 05 Aug 2025 05:28:56 +0000
Manifest this update:     Tue 05 Aug 2025 05:28:55 +0000
Manifest next update:     Tue 12 Aug 2025 05:28:55 +0000
Files and hashes:         1: sCOWweSXbcJLufJA9c5Vbtgn-is.crl (hash: Z2DC6lpA6VQSOY2r3kYmQUAraoFH8ujelfPICgT9BoQ=)
                          2: CC6220C0E02E11EEBA9D291AC4F9AE02.roa (hash: EfnXa4JTXRSQtpkoLm2l4ZqnMhuE0NVKwTVdEbOaaqM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.crl
                          rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 05:28:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 263 (0x107)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91124CD, serialNumber=B02396C1E4976DC24BB9F240F5CE556ED827FA2B
        Validity
            Not Before: Aug  5 05:28:55 2025 GMT
            Not After : Aug 12 05:28:55 2025 GMT
        Subject: CN=68919698-95fe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:74:5e:dd:26:1e:d4:05:47:4f:3f:1b:fa:67:
                    56:67:6a:6b:5a:b1:75:18:b4:1b:4a:1b:bc:01:32:
                    a0:c4:02:28:5a:bd:6b:6c:cf:7f:7a:72:59:1a:08:
                    30:24:f4:51:0c:02:d8:0a:65:66:8a:14:d6:dc:13:
                    af:6b:83:40:6c:35:23:a6:85:2f:5a:6f:19:ef:91:
                    66:06:4f:2a:a9:57:b2:91:ca:bb:78:5d:5d:a7:a2:
                    68:d7:4b:84:5d:0f:ea:f2:34:3f:c3:62:6c:eb:ff:
                    bb:44:89:ab:17:b3:c7:b4:d5:c2:8a:8d:7a:6f:b0:
                    76:08:e3:41:e9:b6:f8:87:15:32:4a:78:63:27:da:
                    a1:0e:28:66:0c:ad:57:57:57:86:31:49:9c:11:a0:
                    bc:5a:a8:75:21:52:e0:8e:b4:b0:06:dc:38:71:97:
                    a6:cd:2e:43:34:db:a8:19:56:6e:b0:f0:bb:6f:4f:
                    01:ad:52:a9:6d:4e:d5:b9:e8:06:26:c9:e6:bf:67:
                    a4:59:f0:6d:31:e4:67:ce:16:cd:00:3e:6f:30:89:
                    fa:2f:8f:a0:ad:64:6c:96:7a:7e:5d:70:41:ae:4d:
                    fb:ce:d5:4b:e7:57:1b:30:07:1a:12:9a:bf:89:e5:
                    8f:27:2a:18:6e:41:9b:a6:f7:2a:ba:8d:22:19:86:
                    96:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:ED:06:34:F4:EA:79:2D:DB:4D:C1:60:34:34:F9:C4:50:B2:BD:87
            X509v3 Authority Key Identifier:
                keyid:B0:23:96:C1:E4:97:6D:C2:4B:B9:F2:40:F5:CE:55:6E:D8:27:FA:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ba:c1:df:58:3a:ca:55:ba:ea:fa:70:2e:49:f3:11:3b:e0:40:
         76:fc:ac:45:c2:3a:79:5f:68:69:c3:c4:8f:71:3a:7c:6c:e4:
         ee:02:f9:7c:19:c0:28:79:36:ab:e4:a0:a4:6e:8c:c0:df:2f:
         fb:8f:e3:13:f7:44:3e:96:bc:2e:05:b4:87:9a:78:70:3b:ea:
         1c:53:78:39:32:f5:7c:c0:52:6d:d0:f4:07:bc:49:fc:a5:09:
         43:96:23:75:5b:82:2c:5f:92:cf:1e:50:50:13:fd:90:8a:15:
         e2:5a:bf:de:31:e6:c0:46:e8:ae:8d:ed:c3:f8:2f:b2:aa:4c:
         f0:1d:35:41:10:bd:9d:e1:28:91:72:55:0c:9f:a5:71:5c:ba:
         51:79:ff:1c:48:31:06:fe:e7:fb:0e:7c:f0:1f:7a:2f:a1:92:
         1b:fb:6c:55:b9:72:09:7b:c3:ce:0a:42:c3:f7:69:51:3a:9b:
         7e:e5:ce:e6:74:5e:50:b4:a1:30:47:15:bf:ce:0d:05:64:7f:
         41:f0:c0:92:45:66:b0:76:d3:43:44:ad:dd:62:8f:ce:2b:4a:
         57:ee:9d:c8:81:a2:cf:0a:9f:0f:6e:04:31:a6:21:40:6c:0d:
         03:7a:e0:cd:e0:29:bb:cb:31:6b:20:88:7d:e5:9a:03:cb:54:
         dc:7d:42:29
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTI0Q0QxMTAvBgNVBAUTKEIwMjM5NkMxRTQ5NzZEQzI0QkI5RjI0MEY1Q0U1NTZF
RDgyN0ZBMkIwHhcNMjUwODA1MDUyODU1WhcNMjUwODEyMDUyODU1WjAYMRYwFAYD
VQQDEw02ODkxOTY5OC05NWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAv3Re3SYe1AVHTz8b+mdWZ2prWrF1GLQbShu8ATKgxAIoWr1rbM9/enJZGggw
JPRRDALYCmVmihTW3BOva4NAbDUjpoUvWm8Z75FmBk8qqVeykcq7eF1dp6Jo10uE
XQ/q8jQ/w2Js6/+7RImrF7PHtNXCio16b7B2CONB6bb4hxUySnhjJ9qhDihmDK1X
V1eGMUmcEaC8Wqh1IVLgjrSwBtw4cZemzS5DNNuoGVZusPC7b08BrVKpbU7VuegG
Jsnmv2ekWfBtMeRnzhbNAD5vMIn6L4+grWRslnp+XXBBrk37ztVL51cbMAcaEpq/
ieWPJyoYbkGbpvcquo0iGYaWUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3tBjT0
6nkt203BYDQ0+cRQsr2HMB8GA1UdIwQYMBaAFLAjlsHkl23CS7nyQPXOVW7YJ/or
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDRC9COTdCNzYzOEUw
MkQxMUVFOUEwNDJGNUNDNEY5QUUwMi9zQ09Xd2VTWGJjSkx1ZkpBOWM1VmJ0Z24t
aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3NDT1d3ZVNYYmNKTHVmSkE5YzVWYnRnbi1pcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
MjRDRC9COTdCNzYzOEUwMkQxMUVFOUEwNDJGNUNDNEY5QUUwMi9zQ09Xd2VTWGJj
Skx1ZkpBOWM1VmJ0Z24taXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQC6wd9YOspVuur6cC5J8xE74EB2/KxFwjp5X2hpw8SPcTp8bOTuAvl8
GcAoeTar5KCkbozA3y/7j+MT90Q+lrwuBbSHmnhwO+ocU3g5MvV8wFJt0PQHvEn8
pQlDliN1W4IsX5LPHlBQE/2QihXiWr/eMebARuiuje3D+C+yqkzwHTVBEL2d4SiR
clUMn6VxXLpRef8cSDEG/uf7DnzwH3ovoZIb+2xVuXIJe8POCkLD92lROpt+5c7m
dF5QtKEwRxW/zg0FZH9B8MCSRWawdtNDRK3dYo/OK0pX7p3IgaLPCp8PbgQxpiFA
bA0DeuDN4Cm7yzFrIIh95ZoDy1TcfUIp
-----END CERTIFICATE-----
Generated at Wed Aug 6 11:02:21 2025 by rpki-client