Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft
File:                     L0yMSsxFXG1aSQxAkLOjUqivHLU.mft (raw, json)
Hash identifier:          vMGqYsKATlN/JFrwEog3VZUducXo04oXRJmBAGFjkfI=
Subject key identifier:   29:45:DE:83:EA:BF:CB:A7:78:3A:20:A6:E9:C8:AD:F5:BF:2F:57:F2
Authority key identifier: 2F:4C:8C:4A:CC:45:5C:6D:5A:49:0C:40:90:B3:A3:52:A8:AF:1C:B5
Certificate issuer:       /CN=A9130128/serialNumber=2F4C8C4ACC455C6D5A490C4090B3A352A8AF1CB5
Certificate serial:       044C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft
Manifest number:          0441
Signing time:             Sat 09 Aug 2025 00:48:20 +0000
Manifest this update:     Sat 09 Aug 2025 00:48:19 +0000
Manifest next update:     Sat 16 Aug 2025 00:48:19 +0000
Files and hashes:         1: L0yMSsxFXG1aSQxAkLOjUqivHLU.crl (hash: kIoN3GZeXJ5arYGPWzwNjVDL/UteBVjBpZAcdOW2QhA=)
                          2: BD6C86326AEC11ECB61ECF30C4F9AE02.roa (hash: ycvRnCz+W4ba8DDROuCngyAKLqsVfBGFpl90bOtHXMA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.crl
                          rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1100 (0x44c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9130128, serialNumber=2F4C8C4ACC455C6D5A490C4090B3A352A8AF1CB5
        Validity
            Not Before: Aug  9 00:48:19 2025 GMT
            Not After : Aug 16 00:48:19 2025 GMT
        Subject: CN=68969ad4-db07
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:62:f9:15:1f:d2:76:2f:3a:da:98:51:14:65:
                    cc:f2:c8:fd:82:70:52:6c:ea:9b:5d:7d:06:82:cb:
                    2b:27:69:84:3e:10:50:af:14:51:8b:63:4a:59:e6:
                    0b:9e:6f:3d:b1:7c:b8:5c:c6:03:d7:c0:f5:fe:fb:
                    e0:e9:a8:8b:8d:44:31:23:66:51:d9:77:2c:6f:2e:
                    f9:37:8e:f8:37:55:f1:8b:ee:6c:eb:23:db:b8:dc:
                    da:75:df:a8:d1:fe:7d:81:11:58:4d:1e:11:ad:03:
                    d0:ef:da:68:85:11:9d:d0:90:95:54:e1:21:fd:d3:
                    52:f3:9f:7f:25:bb:7e:a1:a3:67:4b:8d:9a:e8:9b:
                    29:fd:e5:d8:2e:1c:e6:d5:00:6c:a5:62:1e:da:a4:
                    ac:7e:5e:35:4e:11:db:ac:ed:69:c0:e4:4e:ae:1a:
                    48:70:1a:a3:32:a8:b3:c2:0f:d2:e5:25:62:10:71:
                    3c:70:75:8e:4b:6e:2b:c2:0a:13:df:85:34:e4:ad:
                    da:64:4d:96:ca:6b:12:2d:1c:32:25:20:b1:dd:1d:
                    60:3e:f1:d1:2c:f5:9b:d8:13:9c:39:4a:f8:15:d4:
                    98:e4:67:da:34:31:cc:88:5a:63:b5:88:05:b0:bf:
                    89:d0:a3:42:cb:43:89:8b:91:8d:19:a0:3f:b6:71:
                    e6:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:45:DE:83:EA:BF:CB:A7:78:3A:20:A6:E9:C8:AD:F5:BF:2F:57:F2
            X509v3 Authority Key Identifier:
                keyid:2F:4C:8C:4A:CC:45:5C:6D:5A:49:0C:40:90:B3:A3:52:A8:AF:1C:B5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:99:b0:5e:3e:6a:fb:26:ca:02:b3:22:f9:a9:bb:9b:ad:27:
         0b:a3:0a:6a:d5:18:11:0d:c2:f1:5f:8d:8f:da:17:d3:57:a9:
         7b:96:a7:78:24:0a:73:83:02:2b:43:91:95:15:8e:8a:96:6d:
         d1:ce:44:11:a9:20:52:5c:a9:09:15:65:29:78:24:7b:c6:ac:
         df:6b:7a:54:40:8a:b0:6c:cf:fd:af:b0:68:d2:3a:85:cb:0c:
         35:e8:85:38:7e:44:3e:c8:51:7b:f6:e3:a5:b6:b4:d0:c8:ab:
         67:ff:55:02:a9:7c:77:19:f5:df:de:58:ac:d3:ba:9f:0c:e5:
         6c:9b:43:8f:a0:a1:4f:39:16:ee:64:7f:2d:8e:7a:08:54:e4:
         e6:df:53:f0:2f:ae:43:f5:34:36:28:78:9d:8a:c6:2c:91:57:
         c7:fa:e3:0e:4b:87:1b:cd:42:8b:0e:06:7f:b5:59:23:c1:42:
         79:1a:67:50:07:57:a3:68:52:4e:f7:7e:1f:c3:9f:a4:44:82:
         62:8a:bd:98:a9:81:38:d3:65:6d:3e:18:5d:e7:32:5f:f6:96:
         fe:91:22:a6:11:d2:42:1a:72:82:a1:c1:d0:71:dc:50:1d:8d:
         4e:05:f6:38:58:67:b8:1e:65:77:8e:af:1f:83:1c:c0:3b:55:
         8d:6f:e6:a4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzAxMjgxMTAvBgNVBAUTKDJGNEM4QzRBQ0M0NTVDNkQ1QTQ5MEM0MDkwQjNBMzUy
QThBRjFDQjUwHhcNMjUwODA5MDA0ODE5WhcNMjUwODE2MDA0ODE5WjAYMRYwFAYD
VQQDEw02ODk2OWFkNC1kYjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxGL5FR/Sdi862phRFGXM8sj9gnBSbOqbXX0GgssrJ2mEPhBQrxRRi2NKWeYL
nm89sXy4XMYD18D1/vvg6aiLjUQxI2ZR2Xcsby75N474N1Xxi+5s6yPbuNzadd+o
0f59gRFYTR4RrQPQ79pohRGd0JCVVOEh/dNS859/Jbt+oaNnS42a6Jsp/eXYLhzm
1QBspWIe2qSsfl41ThHbrO1pwOROrhpIcBqjMqizwg/S5SViEHE8cHWOS24rwgoT
34U05K3aZE2WymsSLRwyJSCx3R1gPvHRLPWb2BOcOUr4FdSY5GfaNDHMiFpjtYgF
sL+J0KNCy0OJi5GNGaA/tnHmLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClF3oPq
v8uneDogpunIrfW/L1fyMB8GA1UdIwQYMBaAFC9MjErMRVxtWkkMQJCzo1Korxy1
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEyOC85MUJDMzc1MjZB
RTgxMUVDQTQ0ODQ2NUJDNEY5QUUwMi9MMHlNU3N4RlhHMWFTUXhBa0xPalVxaXZI
TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0wweU1Tc3hGWEcxYVNReEFrTE9qVXFpdkhMVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MDEyOC85MUJDMzc1MjZBRTgxMUVDQTQ0ODQ2NUJDNEY5QUUwMi9MMHlNU3N4RlhH
MWFTUXhBa0xPalVxaXZITFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCJmbBePmr7JsoCsyL5qbubrScLowpq1RgRDcLxX42P2hfTV6l7lqd4
JApzgwIrQ5GVFY6Klm3RzkQRqSBSXKkJFWUpeCR7xqzfa3pUQIqwbM/9r7Bo0jqF
yww16IU4fkQ+yFF79uOltrTQyKtn/1UCqXx3GfXf3lis07qfDOVsm0OPoKFPORbu
ZH8tjnoIVOTm31PwL65D9TQ2KHidisYskVfH+uMOS4cbzUKLDgZ/tVkjwUJ5GmdQ
B1ejaFJO934fw5+kRIJiir2YqYE402VtPhhd5zJf9pb+kSKmEdJCGnKCocHQcdxQ
HY1OBfY4WGe4HmV3jq8fgxzAO1WNb+ak
-----END CERTIFICATE-----
Generated at Sun Aug 10 16:08:53 2025 by rpki-client