Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft
File:                     5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json)
Hash identifier:          FxN4VSmigFc2I70259q9rMyf6b1zvS9fWb4QXSFjNiE=
Subject key identifier:   EA:B6:C3:20:40:82:D3:25:87:52:B8:EB:AA:05:01:82:04:B3:4D:FB
Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08
Certificate issuer:       /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08
Certificate serial:       04E0
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft
Manifest number:          04D5
Signing time:             Sat 09 Aug 2025 00:16:55 +0000
Manifest this update:     Sat 09 Aug 2025 00:16:54 +0000
Manifest next update:     Sat 16 Aug 2025 00:16:54 +0000
Files and hashes:         1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: 9g5RGLj0j2HPg7sGqOqOP+VbP5eT67S57dafEZOHXJE=)
                          2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=)
                          3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: qsT6gdrcrYiz10awZz/5+uahx1IUYSEl585Lltn+07o=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl
                          rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1248 (0x4e0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08
        Validity
            Not Before: Aug  9 00:16:54 2025 GMT
            Not After : Aug 16 00:16:54 2025 GMT
        Subject: CN=68969376-e506
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fb:e0:03:9f:49:12:ac:06:61:6f:4b:a0:3f:72:
                    08:16:25:a2:db:89:3c:30:5f:eb:69:46:2b:9e:65:
                    65:15:59:19:00:af:e5:8a:0b:8c:46:e6:59:45:cf:
                    bc:30:dd:d3:e7:af:58:b2:34:c0:66:f1:be:b0:aa:
                    d7:1b:22:ae:1f:ed:1b:71:31:25:5e:76:37:64:09:
                    8e:35:61:5a:70:d4:60:8a:c0:92:ea:88:22:4d:fe:
                    1e:b4:68:e7:da:c0:2b:26:45:42:4b:fa:0f:f3:5d:
                    db:b1:16:0c:f5:54:42:f0:b3:17:c6:e3:84:e8:b5:
                    48:13:86:56:18:4a:6b:8f:d2:19:40:22:a9:2d:5f:
                    05:67:ab:9e:ca:23:c9:71:7d:1f:95:cd:f6:8b:03:
                    e7:51:c1:ad:73:4d:bd:29:c6:09:ea:6f:49:5d:fc:
                    5c:72:5a:58:6f:20:5d:21:d8:2a:26:22:97:31:55:
                    8d:a0:4d:64:6f:7a:c6:f2:7b:e4:eb:df:6b:da:d3:
                    fe:c3:5e:ca:fa:6a:42:2f:73:d2:01:94:a2:19:56:
                    1f:37:c5:e5:b3:4c:bd:1a:87:82:5a:35:7c:ac:96:
                    bf:eb:bb:66:bf:8d:97:66:3c:7c:61:bb:48:92:88:
                    a9:96:20:64:69:ae:82:ce:3e:b5:07:90:43:9e:1a:
                    8f:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:B6:C3:20:40:82:D3:25:87:52:B8:EB:AA:05:01:82:04:B3:4D:FB
            X509v3 Authority Key Identifier:
                keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c1:f4:6e:87:74:fc:9a:36:9a:5a:f1:8e:43:50:ce:fd:69:f8:
         92:1e:e5:3d:69:1d:b6:91:e5:4d:08:9d:37:8d:e6:cf:4f:bd:
         1e:5b:31:b3:7d:84:47:58:e4:ee:77:e0:c2:ac:a7:38:6d:65:
         ad:dc:d3:11:57:7f:4a:0d:11:f3:d6:45:b2:bd:1f:d2:ee:72:
         47:15:5a:b3:0d:b3:8b:60:b6:2f:67:74:d3:89:43:c5:d6:5f:
         b9:41:db:80:99:91:b3:1a:06:fc:b4:03:18:e6:53:78:b1:98:
         6d:fa:da:c1:39:c9:c0:e0:5b:7f:f6:bb:3a:32:80:5d:0f:06:
         9e:da:9e:2f:8f:b2:43:e1:f8:d9:c3:e1:5e:34:c7:52:da:8c:
         61:19:7d:d4:ac:09:c0:29:32:ce:06:de:c0:b5:12:10:16:f8:
         b6:c1:10:2d:8e:2d:e8:06:d0:24:79:43:5b:15:d2:6b:62:6f:
         d2:3d:86:e1:88:a8:42:4c:0c:d1:e7:ab:7f:b8:27:54:1b:fc:
         5b:58:9a:fd:f5:32:2d:5c:8f:ab:36:f5:49:cd:23:84:74:f1:
         ac:a3:a9:ed:6f:10:fd:27:af:16:e8:8e:ca:7e:97:e9:ba:1d:
         e9:a9:a4:49:dd:17:64:62:a3:94:67:f9:84:66:1d:12:64:fd:
         94:84:56:64
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0
Q0MxMTZFMDgwHhcNMjUwODA5MDAxNjU0WhcNMjUwODE2MDAxNjU0WjAYMRYwFAYD
VQQDEw02ODk2OTM3Ni1lNTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA++ADn0kSrAZhb0ugP3IIFiWi24k8MF/raUYrnmVlFVkZAK/liguMRuZZRc+8
MN3T569YsjTAZvG+sKrXGyKuH+0bcTElXnY3ZAmONWFacNRgisCS6ogiTf4etGjn
2sArJkVCS/oP813bsRYM9VRC8LMXxuOE6LVIE4ZWGEprj9IZQCKpLV8FZ6ueyiPJ
cX0flc32iwPnUcGtc029KcYJ6m9JXfxcclpYbyBdIdgqJiKXMVWNoE1kb3rG8nvk
699r2tP+w17K+mpCL3PSAZSiGVYfN8Xls0y9GoeCWjV8rJa/67tmv42XZjx8YbtI
koipliBkaa6Czj61B5BDnhqPDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOq2wyBA
gtMlh1K466oFAYIEs037MB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw
OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji
Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP
S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDB9G6HdPyaNppa8Y5DUM79afiSHuU9aR22keVNCJ03jebPT70eWzGz
fYRHWOTud+DCrKc4bWWt3NMRV39KDRHz1kWyvR/S7nJHFVqzDbOLYLYvZ3TTiUPF
1l+5QduAmZGzGgb8tAMY5lN4sZht+trBOcnA4Ft/9rs6MoBdDwae2p4vj7JD4fjZ
w+FeNMdS2oxhGX3UrAnAKTLOBt7AtRIQFvi2wRAtji3oBtAkeUNbFdJrYm/SPYbh
iKhCTAzR56t/uCdUG/xbWJr99TItXI+rNvVJzSOEdPGso6ntbxD9J68W6I7Kfpfp
uh3pqaRJ3RdkYqOUZ/mEZh0SZP2UhFZk
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:13 2025 by rpki-client