Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft
File:                     lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json)
Hash identifier:          Zi8tg/0Ev4nWMAuPjXKvC3tKmnkrowoIIN1a1TaXQQo=
Subject key identifier:   E1:6E:18:80:43:AD:71:BF:E7:5E:8D:C7:85:80:83:C0:AA:ED:91:00
Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87
Certificate issuer:       /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87
Certificate serial:       34CF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft
Manifest number:          34BA
Signing time:             Fri 08 Aug 2025 15:23:08 +0000
Manifest this update:     Fri 08 Aug 2025 15:23:08 +0000
Manifest next update:     Fri 15 Aug 2025 15:23:08 +0000
Files and hashes:         1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: l7BAdDELpMC4GhyDYViimEbSmu+GB4iKP2CznYU+XJY=)
                          2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: INyUubVzyzPFDA6zTyRhkIRyBY0HoCb9vhAv2oVdZVY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl
                          rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13519 (0x34cf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87
        Validity
            Not Before: Aug  8 15:23:08 2025 GMT
            Not After : Aug 15 15:23:08 2025 GMT
        Subject: CN=6896165c-b89e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:b5:c7:c3:9b:39:a5:9d:41:f9:3d:9f:86:4d:
                    f8:9b:a6:d2:e9:2c:e1:2e:15:a0:e2:ca:a2:22:b3:
                    65:c0:4d:05:fc:9a:39:d7:57:41:d9:2d:f7:c0:d2:
                    fb:2c:4e:fa:dd:9b:e8:8e:96:8a:9b:dc:3f:53:22:
                    c7:56:2c:83:bf:6b:d3:6f:51:1f:3b:31:e2:54:87:
                    cf:a8:44:fc:5a:00:49:f9:8b:7b:30:a5:c8:01:95:
                    d1:6e:73:2e:b8:0c:a8:f8:de:5e:78:d6:37:7b:41:
                    52:e0:b6:58:09:01:50:01:68:50:41:df:b6:2b:1c:
                    0b:3e:cd:1d:68:f2:ea:0e:77:ec:b4:4e:11:f1:52:
                    a7:1b:47:53:6c:ee:1f:25:5e:1e:4f:de:a8:8a:ec:
                    4e:40:20:25:f2:2c:88:c3:12:de:cb:1a:cd:4a:24:
                    8b:65:a9:05:40:e2:c1:78:c2:e9:dc:32:d4:06:dc:
                    57:c6:8e:f3:cb:e3:4f:e2:e7:be:5c:76:c3:b5:48:
                    9b:87:9b:d3:d1:da:44:16:da:63:6f:6a:da:97:9c:
                    fe:d0:c5:0e:18:09:83:39:09:b1:68:d3:61:68:26:
                    eb:be:78:0d:01:7f:95:fd:3f:30:19:bd:76:76:9e:
                    f8:32:97:98:6e:7e:ff:99:fc:9c:a2:85:ef:5b:1c:
                    8c:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:6E:18:80:43:AD:71:BF:E7:5E:8D:C7:85:80:83:C0:AA:ED:91:00
            X509v3 Authority Key Identifier:
                keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:cf:f9:e2:c5:ae:ee:dc:f2:18:5c:44:ac:83:4a:04:3c:db:
         62:01:61:d5:f1:b9:7f:3d:86:29:43:fc:aa:e1:50:5f:87:d6:
         86:a7:20:ca:7e:3b:02:99:5c:47:7f:c9:5a:7c:91:10:16:db:
         9d:c9:0e:63:0e:6f:c4:e7:41:ea:c6:2e:26:1d:e6:ca:c0:0d:
         38:4a:ac:49:61:0a:2d:cc:4c:d8:61:61:84:1e:81:cb:46:60:
         6e:66:31:5e:ca:ad:0b:84:2c:35:8d:46:83:67:e9:54:0b:4c:
         4c:a8:ff:87:8d:58:fe:5a:00:1e:34:6a:8b:fb:af:00:1a:9e:
         6b:ca:fe:68:e2:6f:93:74:e4:97:37:00:c2:77:d3:41:4d:93:
         2c:5e:05:f6:8c:c5:90:7b:11:d5:18:b6:01:9e:a9:08:e1:8a:
         91:cf:99:c6:5a:5f:cf:14:96:4a:ce:d6:67:66:a4:12:05:b7:
         b5:1d:5e:d0:f8:12:13:02:4a:63:07:16:11:66:98:6c:91:82:
         54:a3:41:72:81:3b:20:51:c9:c6:f1:0f:c4:34:51:3b:17:0b:
         b5:fa:38:8f:fe:dd:87:2e:f8:c1:03:e0:e9:4e:ba:16:23:23:
         d3:fe:18:1d:d1:e0:f1:d0:39:58:59:67:53:78:ab:09:ba:c5:
         61:8b:27:9c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICNM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1
QjE3QjJCODcwHhcNMjUwODA4MTUyMzA4WhcNMjUwODE1MTUyMzA4WjAYMRYwFAYD
VQQDEw02ODk2MTY1Yy1iODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0LXHw5s5pZ1B+T2fhk34m6bS6SzhLhWg4sqiIrNlwE0F/Jo511dB2S33wNL7
LE763ZvojpaKm9w/UyLHViyDv2vTb1EfOzHiVIfPqET8WgBJ+Yt7MKXIAZXRbnMu
uAyo+N5eeNY3e0FS4LZYCQFQAWhQQd+2KxwLPs0daPLqDnfstE4R8VKnG0dTbO4f
JV4eT96oiuxOQCAl8iyIwxLeyxrNSiSLZakFQOLBeMLp3DLUBtxXxo7zy+NP4ue+
XHbDtUibh5vT0dpEFtpjb2ral5z+0MUOGAmDOQmxaNNhaCbrvngNAX+V/T8wGb12
dp74MpeYbn7/mfycooXvWxyMDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFuGIBD
rXG/516Nx4WAg8Cq7ZEAMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE
QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL
NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE
Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAFz/nixa7u3PIYXESsg0oEPNtiAWHV8bl/PYYpQ/yq4VBfh9aGpyDK
fjsCmVxHf8lafJEQFtudyQ5jDm/E50Hqxi4mHebKwA04SqxJYQotzEzYYWGEHoHL
RmBuZjFeyq0LhCw1jUaDZ+lUC0xMqP+HjVj+WgAeNGqL+68AGp5ryv5o4m+TdOSX
NwDCd9NBTZMsXgX2jMWQexHVGLYBnqkI4YqRz5nGWl/PFJZKztZnZqQSBbe1HV7Q
+BITAkpjBxYRZphskYJUo0FygTsgUcnG8Q/ENFE7Fwu1+jiP/t2HLvjBA+DpTroW
IyPT/hgd0eDx0DlYWWdTeKsJusVhiyec
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:42:56 2025 by rpki-client