Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.mft
File:                     stpsovF-3e60xFAzYfTYgigLyog.mft (raw, json)
Hash identifier:          M7EY+sGQUwLaNZXGJS49PAZ88Rc22GP3EeVnAQ61e2Q=
Subject key identifier:   48:B9:F4:59:82:05:A7:07:78:0A:13:1C:62:91:B9:AA:AE:1C:F9:8B
Authority key identifier: B2:DA:6C:A2:F1:7E:DD:EE:B4:C4:50:33:61:F4:D8:82:28:0B:CA:88
Certificate issuer:       /CN=A9122FD2/serialNumber=B2DA6CA2F17EDDEEB4C4503361F4D882280BCA88
Certificate serial:       080C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stpsovF-3e60xFAzYfTYgigLyog.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.mft
Manifest number:          080C
Signing time:             Mon 04 Aug 2025 21:10:18 +0000
Manifest this update:     Mon 04 Aug 2025 21:10:17 +0000
Manifest next update:     Mon 11 Aug 2025 21:10:17 +0000
Files and hashes:         1: stpsovF-3e60xFAzYfTYgigLyog.crl (hash: IESZ6URmk6dTAUYfH5enOvDiaB8Y4WaLfCjlIh6Fno8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.crl
                          rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stpsovF-3e60xFAzYfTYgigLyog.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 21:10:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2060 (0x80c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9122FD2, serialNumber=B2DA6CA2F17EDDEEB4C4503361F4D882280BCA88
        Validity
            Not Before: Aug  4 21:10:17 2025 GMT
            Not After : Aug 11 21:10:17 2025 GMT
        Subject: CN=689121b9-0867
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:1f:13:4f:3f:b6:14:b5:0f:68:1d:8a:bc:6d:
                    7e:3d:9f:ed:0f:53:a6:26:69:e2:07:f0:a1:27:10:
                    a2:4a:12:3b:69:00:6e:81:24:b1:c7:02:e8:0b:33:
                    d8:dd:d2:97:a6:39:7d:61:a2:64:f0:bf:a7:db:83:
                    35:cb:64:8b:fa:f0:23:10:43:b9:1a:71:96:a7:dc:
                    e3:c9:dc:d1:91:cc:6f:8a:72:d1:0c:05:3f:4d:ec:
                    14:ac:0a:0a:e5:5d:fe:eb:ff:54:8b:3a:76:da:ba:
                    cc:66:68:20:d5:70:55:97:b3:e9:05:fe:ad:2a:e0:
                    f4:14:2c:d7:0e:c8:0f:fe:ec:2f:36:4a:f1:f6:9b:
                    f7:ae:fa:26:3f:98:9e:1e:b6:8c:6c:34:07:a0:07:
                    56:f3:ec:49:42:f5:8d:1f:6d:dd:79:a2:50:9a:b4:
                    10:77:b7:aa:58:eb:dd:eb:3b:4f:d4:2d:a0:dd:e9:
                    e5:45:7f:97:f5:9b:76:eb:44:32:d6:67:46:bc:86:
                    c8:55:6e:7c:9a:c1:a8:82:80:6d:8e:2a:a7:4e:41:
                    5d:3a:25:d7:d9:90:10:ce:9d:a6:2e:6f:03:3f:74:
                    36:54:00:41:60:cd:5e:8c:c2:1f:c1:b3:82:08:a9:
                    3d:67:4a:37:2f:90:42:20:20:08:63:d2:03:60:1f:
                    f0:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:B9:F4:59:82:05:A7:07:78:0A:13:1C:62:91:B9:AA:AE:1C:F9:8B
            X509v3 Authority Key Identifier:
                keyid:B2:DA:6C:A2:F1:7E:DD:EE:B4:C4:50:33:61:F4:D8:82:28:0B:CA:88

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stpsovF-3e60xFAzYfTYgigLyog.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:9d:17:a1:48:2b:f2:38:c7:d6:8b:9c:03:10:09:52:73:79:
         97:2f:55:5b:da:96:f6:83:5a:d6:e4:b5:6e:d2:b1:c9:a4:c4:
         dc:fb:4d:61:94:31:2e:fa:89:41:e4:66:c4:37:fb:49:d8:7e:
         4f:bd:d9:7a:e7:5f:f6:68:1a:72:50:da:13:6c:cd:82:d7:6f:
         7d:52:92:52:2e:91:35:87:08:c3:64:75:32:25:08:34:a5:43:
         b2:07:bc:6b:ab:f7:3f:18:71:b4:4f:05:18:ba:d0:d6:d9:db:
         df:cb:b1:f9:fe:3f:54:a3:23:2a:66:f7:5c:7a:9e:7b:a8:e1:
         35:df:5d:c0:b2:bb:b0:c1:94:21:32:5a:cb:4b:c9:5f:f5:8e:
         85:80:a2:c6:7d:e1:94:98:bd:db:28:f9:17:3d:8e:00:3e:31:
         1a:18:77:d2:69:7f:b8:95:7e:36:25:55:40:04:fa:19:a6:36:
         bf:3e:41:8a:8c:ba:b9:80:28:57:21:ae:41:12:f8:eb:00:ad:
         be:4a:65:54:3b:0d:e7:2d:24:a5:87:46:c5:62:3c:19:d6:63:
         f9:dd:39:c2:c5:a8:52:6e:2b:11:17:f7:cc:42:a1:57:82:6f:
         b1:fa:2f:10:72:22:bf:65:e3:16:dc:46:c8:1b:37:9f:79:2a:
         61:c2:15:74
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjJGRDIxMTAvBgNVBAUTKEIyREE2Q0EyRjE3RURERUVCNEM0NTAzMzYxRjREODgy
MjgwQkNBODgwHhcNMjUwODA0MjExMDE3WhcNMjUwODExMjExMDE3WjAYMRYwFAYD
VQQDEw02ODkxMjFiOS0wODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArR8TTz+2FLUPaB2KvG1+PZ/tD1OmJmniB/ChJxCiShI7aQBugSSxxwLoCzPY
3dKXpjl9YaJk8L+n24M1y2SL+vAjEEO5GnGWp9zjydzRkcxvinLRDAU/TewUrAoK
5V3+6/9Uizp22rrMZmgg1XBVl7PpBf6tKuD0FCzXDsgP/uwvNkrx9pv3rvomP5ie
HraMbDQHoAdW8+xJQvWNH23deaJQmrQQd7eqWOvd6ztP1C2g3enlRX+X9Zt260Qy
1mdGvIbIVW58msGogoBtjiqnTkFdOiXX2ZAQzp2mLm8DP3Q2VABBYM1ejMIfwbOC
CKk9Z0o3L5BCICAIY9IDYB/wXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEi59FmC
BacHeAoTHGKRuaquHPmLMB8GA1UdIwQYMBaAFLLabKLxft3utMRQM2H02IIoC8qI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkZEMi9DODFCMjYyOEU1
RkIxMUVBODQ1NDRBNzRDNEY5QUUwMi9zdHBzb3ZGLTNlNjB4RkF6WWZUWWdpZ0x5
b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3N0cHNvdkYtM2U2MHhGQXpZZlRZZ2lnTHlvZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MkZEMi9DODFCMjYyOEU1RkIxMUVBODQ1NDRBNzRDNEY5QUUwMi9zdHBzb3ZGLTNl
NjB4RkF6WWZUWWdpZ0x5b2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAfnRehSCvyOMfWi5wDEAlSc3mXL1Vb2pb2g1rW5LVu0rHJpMTc+01h
lDEu+olB5GbEN/tJ2H5Pvdl651/2aBpyUNoTbM2C1299UpJSLpE1hwjDZHUyJQg0
pUOyB7xrq/c/GHG0TwUYutDW2dvfy7H5/j9UoyMqZvdcep57qOE1313AsruwwZQh
MlrLS8lf9Y6FgKLGfeGUmL3bKPkXPY4APjEaGHfSaX+4lX42JVVABPoZpja/PkGK
jLq5gChXIa5BEvjrAK2+SmVUOw3nLSSlh0bFYjwZ1mP53TnCxahSbisRF/fMQqFX
gm+x+i8QciK/ZeMW3EbIGzefeSphwhV0
-----END CERTIFICATE-----
Generated at Wed Aug 6 00:50:57 2025 by rpki-client