Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft
File:                     7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft (raw, json)
Hash identifier:          8G4MDg3hHF7Hr7LJH7s6j89AJtHOlYZ54mtzJYJzib4=
Subject key identifier:   1A:BB:DE:DD:6A:5A:EC:BB:81:87:2A:4E:7A:8A:EB:7A:4B:40:F9:44
Authority key identifier: EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00
Certificate issuer:       /CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00
Certificate serial:       07FA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft
Manifest number:          07F3
Signing time:             Sun 10 Aug 2025 21:01:13 +0000
Manifest this update:     Sun 10 Aug 2025 21:01:13 +0000
Manifest next update:     Sun 17 Aug 2025 21:01:13 +0000
Files and hashes:         1: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl (hash: bptfOMG4sXLwN579RoONzrcDK4NfjkRyyuwY2Zd72p8=)
                          2: D3EE2024F42211EA8FE7AE53C4F9AE02.roa (hash: GW9s3WIygsKZLnHwRZ6mSkc9+Me0q/KYVWFIK75BZGs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl
                          rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2042 (0x7fa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9136D8B, serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00
        Validity
            Not Before: Aug 10 21:01:13 2025 GMT
            Not After : Aug 17 21:01:13 2025 GMT
        Subject: CN=68990899-d5bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:c5:9d:f1:bd:05:85:72:80:92:fb:b4:33:c5:
                    5c:79:16:ee:20:29:64:3d:99:4b:47:45:42:f1:fb:
                    8b:c3:64:c5:6e:f5:22:b2:a2:93:7f:cb:a4:57:ae:
                    2b:4f:99:3b:8b:f1:2b:58:35:fe:3f:85:d7:64:cc:
                    b1:a6:54:a6:e2:9b:b7:40:7d:f7:77:c9:0b:d7:b0:
                    b4:00:26:1e:6f:42:5a:e5:27:ff:12:0b:48:96:a2:
                    50:97:93:17:83:9d:03:ad:d1:7a:84:aa:af:8c:c0:
                    50:e0:15:94:fc:30:52:da:4f:28:12:1e:62:a4:b2:
                    39:f0:3d:cd:74:d6:57:80:aa:f3:00:0e:45:91:ca:
                    07:bb:4d:7c:17:f5:88:6f:61:b9:47:78:01:1e:42:
                    cd:3e:80:f5:21:c2:3a:13:88:ba:54:9d:f8:a9:2e:
                    a8:4a:12:ba:48:21:f5:ad:ee:b2:39:e7:31:48:f6:
                    f7:b4:02:1d:27:31:cd:af:73:63:ae:d7:f6:06:8d:
                    74:ef:58:9b:28:c1:f7:ff:7f:01:0c:2e:b8:d1:5c:
                    05:d7:bc:c3:41:77:4c:4f:6e:2c:bd:34:19:b0:7b:
                    7f:14:48:69:59:74:45:01:13:40:8c:78:86:3a:9f:
                    65:4b:a9:77:1b:11:1c:a1:1a:fc:36:ac:e7:d9:98:
                    b6:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:BB:DE:DD:6A:5A:EC:BB:81:87:2A:4E:7A:8A:EB:7A:4B:40:F9:44
            X509v3 Authority Key Identifier:
                keyid:EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:5c:26:9d:24:d5:9b:4c:fd:3d:8c:14:14:7b:33:21:c5:29:
         81:41:be:a4:27:68:85:11:b9:52:6c:ac:fd:7d:d3:93:3f:38:
         7c:a4:dc:9d:d8:36:08:d6:19:1c:0a:12:aa:5d:c3:30:1d:3b:
         98:e4:20:3c:08:91:1f:88:57:38:05:fc:89:3f:46:48:80:1e:
         53:80:a0:b4:11:c6:27:f6:11:00:08:8d:ea:89:0a:99:ba:a6:
         b9:73:3c:39:92:b5:ef:b0:67:a7:44:77:bb:8f:5c:7e:bf:36:
         b5:f2:41:be:e5:e2:7f:74:d3:7f:5a:29:52:63:6f:23:66:02:
         ab:a6:fb:3e:15:30:bc:92:5c:27:58:fa:dd:4d:30:11:a7:91:
         1c:4d:ca:8d:39:da:af:48:5e:ff:c0:75:02:e1:c6:f2:45:79:
         32:e6:6f:78:25:41:a5:2b:1d:ae:3a:2c:3e:04:74:0d:1c:34:
         b8:c1:28:ae:59:d7:6b:26:ca:89:d8:45:01:ee:e9:a6:4f:bf:
         af:16:6d:20:91:80:2f:e2:fc:65:b2:1f:6a:e2:71:53:5c:0d:
         17:ed:1c:e7:68:53:2b:9e:a7:e8:9f:3a:9f:97:e6:5b:b2:a6:
         99:9e:86:fa:c4:b3:3b:a6:f6:4d:7d:9e:4d:3c:27:6b:4e:37:
         c0:18:02:75
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzZEOEIxMTAvBgNVBAUTKEVGMUE5NkQxMTJERTE2MjJCMTFDOEM3RTk0QUVCMDQw
RURENkFCMDAwHhcNMjUwODEwMjEwMTEzWhcNMjUwODE3MjEwMTEzWjAYMRYwFAYD
VQQDEw02ODk5MDg5OS1kNWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAucWd8b0FhXKAkvu0M8VceRbuIClkPZlLR0VC8fuLw2TFbvUisqKTf8ukV64r
T5k7i/ErWDX+P4XXZMyxplSm4pu3QH33d8kL17C0ACYeb0Ja5Sf/EgtIlqJQl5MX
g50DrdF6hKqvjMBQ4BWU/DBS2k8oEh5ipLI58D3NdNZXgKrzAA5FkcoHu018F/WI
b2G5R3gBHkLNPoD1IcI6E4i6VJ34qS6oShK6SCH1re6yOecxSPb3tAIdJzHNr3Nj
rtf2Bo1071ibKMH3/38BDC640VwF17zDQXdMT24svTQZsHt/FEhpWXRFARNAjHiG
Op9lS6l3GxEcoRr8Nqzn2Zi2NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq73t1q
Wuy7gYcqTnqK63pLQPlEMB8GA1UdIwQYMBaAFO8altES3hYisRyMfpSusEDt1qsA
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ4Qi9EMDBBQTg1Q0Y0
MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZpS3hISXgtbEs2d1FPM1dx
d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzd4cVcwUkxlRmlLeEhJeC1sSzZ3UU8zV3F3QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
NkQ4Qi9EMDBBQTg1Q0Y0MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZp
S3hISXgtbEs2d1FPM1dxd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCpXCadJNWbTP09jBQUezMhxSmBQb6kJ2iFEblSbKz9fdOTPzh8pNyd
2DYI1hkcChKqXcMwHTuY5CA8CJEfiFc4BfyJP0ZIgB5TgKC0EcYn9hEACI3qiQqZ
uqa5czw5krXvsGenRHe7j1x+vza18kG+5eJ/dNN/WilSY28jZgKrpvs+FTC8klwn
WPrdTTARp5EcTcqNOdqvSF7/wHUC4cbyRXky5m94JUGlKx2uOiw+BHQNHDS4wSiu
WddrJsqJ2EUB7ummT7+vFm0gkYAv4vxlsh9q4nFTXA0X7RznaFMrnqfonzqfl+Zb
sqaZnob6xLM7pvZNfZ5NPCdrTjfAGAJ1
-----END CERTIFICATE-----
Generated at Mon Aug 11 06:03:13 2025 by rpki-client