Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft
File:                     2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json)
Hash identifier:          RBM0MO/n54c2278jCl+9uWUmXpL3Jig6qad1iOemwe4=
Subject key identifier:   B6:B8:5A:98:53:49:C6:B0:35:7F:3D:CE:4F:0C:50:86:5B:50:69:4C
Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69
Certificate issuer:       /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669
Certificate serial:       089D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft
Manifest number:          0897
Signing time:             Wed 06 Aug 2025 20:52:42 +0000
Manifest this update:     Wed 06 Aug 2025 20:52:41 +0000
Manifest next update:     Wed 13 Aug 2025 20:52:41 +0000
Files and hashes:         1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: 90BILE+K6fEr2oYtnPKbCF2X5ELUJQ5YsRjEJtav2eY=)
                          2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl
                          rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 20:52:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2205 (0x89d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669
        Validity
            Not Before: Aug  6 20:52:41 2025 GMT
            Not After : Aug 13 20:52:41 2025 GMT
        Subject: CN=6893c099-b89c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:3f:98:76:b1:91:20:5b:73:b6:11:c3:c7:45:
                    36:db:62:c4:03:14:14:94:3a:26:1e:4e:41:9f:4f:
                    ce:3d:86:f1:1a:71:77:f6:45:1d:bd:0e:d0:2e:21:
                    b2:e4:c8:d4:51:64:41:5d:02:be:e0:fa:d0:fa:24:
                    17:19:a6:94:ea:39:e0:bc:e1:8c:52:43:30:6a:fb:
                    c6:1a:0d:ce:a1:de:4c:4c:9c:f9:90:44:5d:02:40:
                    97:5d:ae:59:07:fc:a8:13:b1:22:5a:f8:8f:fb:20:
                    b9:5a:a2:fd:6a:43:0e:f2:ae:79:77:79:cc:9a:2b:
                    c1:fa:71:f2:c7:cd:84:a2:08:8b:11:3c:70:d2:48:
                    a7:0c:20:0a:fb:bc:b0:84:31:3f:64:61:51:dc:30:
                    25:71:80:40:9a:37:32:aa:62:a4:75:6a:ea:f9:1d:
                    09:fc:6a:0d:b2:e1:23:e7:08:17:9a:e7:d8:96:a2:
                    b8:2e:90:b0:48:03:87:b2:ad:26:b8:06:fd:29:9f:
                    f0:72:ad:db:7d:81:6f:20:41:58:d2:0c:e9:93:b1:
                    2c:c8:a2:27:ad:8c:73:b4:76:8a:9c:a1:e3:d7:5f:
                    8b:4c:c8:35:ba:40:14:f8:aa:a4:49:2b:c3:c3:17:
                    1c:18:dd:d1:9b:f7:16:bf:38:e7:73:84:26:3b:18:
                    17:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:B8:5A:98:53:49:C6:B0:35:7F:3D:CE:4F:0C:50:86:5B:50:69:4C
            X509v3 Authority Key Identifier:
                keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:cf:ba:e0:68:c0:e4:41:e5:39:3c:38:7f:ba:b4:b7:49:65:
         a3:2a:9c:71:99:50:5b:de:62:31:4f:c9:f6:00:f7:0a:c5:e1:
         33:8b:81:c7:a5:2d:4a:22:e8:eb:62:3a:78:a2:2b:0e:40:5c:
         ba:af:a8:8c:4f:4b:48:46:5a:14:e7:83:97:10:eb:0d:5d:cc:
         7e:65:22:12:84:30:46:cb:6c:cc:b2:db:d2:c3:12:8d:e9:6e:
         81:69:c8:6a:d6:5f:a9:b8:b0:b9:60:24:f5:8c:85:1f:87:3a:
         1d:ef:d9:b6:d3:4e:36:50:56:95:18:65:f5:02:5f:fa:2b:05:
         de:82:f7:1e:54:68:9b:9a:e5:fa:a0:bb:30:72:07:b1:7b:60:
         80:37:4e:d0:da:42:09:bf:c2:5a:f4:b8:35:db:59:44:84:09:
         54:09:61:c1:ce:92:91:a0:33:c1:2f:c5:ce:70:98:cf:cc:8d:
         19:60:34:c2:78:49:79:43:db:6e:f8:d3:9e:0d:86:db:38:cb:
         3a:12:b2:1d:fa:5c:30:3a:70:c6:30:45:c5:b9:05:93:13:e4:
         87:fd:34:b7:77:72:94:b7:ee:5c:a2:82:90:28:88:99:00:6f:
         b0:ea:2f:92:e0:6f:ee:1c:ae:48:47:f3:fa:ed:da:9e:99:71:
         bc:fb:ea:45
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3
RjhBQjM2NjkwHhcNMjUwODA2MjA1MjQxWhcNMjUwODEzMjA1MjQxWjAYMRYwFAYD
VQQDEw02ODkzYzA5OS1iODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxD+YdrGRIFtzthHDx0U222LEAxQUlDomHk5Bn0/OPYbxGnF39kUdvQ7QLiGy
5MjUUWRBXQK+4PrQ+iQXGaaU6jngvOGMUkMwavvGGg3Ood5MTJz5kERdAkCXXa5Z
B/yoE7EiWviP+yC5WqL9akMO8q55d3nMmivB+nHyx82EogiLETxw0kinDCAK+7yw
hDE/ZGFR3DAlcYBAmjcyqmKkdWrq+R0J/GoNsuEj5wgXmufYlqK4LpCwSAOHsq0m
uAb9KZ/wcq3bfYFvIEFY0gzpk7EsyKInrYxztHaKnKHj11+LTMg1ukAU+KqkSSvD
wxccGN3Rm/cWvzjnc4QmOxgXywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa4WphT
ScawNX89zk8MUIZbUGlMMB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy
QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO
bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS
X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAcz7rgaMDkQeU5PDh/urS3SWWjKpxxmVBb3mIxT8n2APcKxeEzi4HH
pS1KIujrYjp4oisOQFy6r6iMT0tIRloU54OXEOsNXcx+ZSIShDBGy2zMstvSwxKN
6W6Bachq1l+puLC5YCT1jIUfhzod79m20042UFaVGGX1Al/6KwXegvceVGibmuX6
oLswcgexe2CAN07Q2kIJv8Ja9Lg121lEhAlUCWHBzpKRoDPBL8XOcJjPzI0ZYDTC
eEl5Q9tu+NOeDYbbOMs6ErId+lwwOnDGMEXFuQWTE+SH/TS3d3KUt+5cooKQKIiZ
AG+w6i+S4G/uHK5IR/P67dqemXG8++pF
-----END CERTIFICATE-----
Generated at Fri Aug 8 00:33:42 2025 by rpki-client