Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.mft
File:                     y539cqjfUOBlAEN4BraiAY7Mvf0.mft (raw, json)
Hash identifier:          FsSk4nx6v9dtPdc5fqwvGbpIecxvnx4OpUfAaDJBzAA=
Subject key identifier:   D0:5A:E6:A7:44:C3:82:25:92:84:EC:03:F8:70:AB:AC:75:99:10:FA
Authority key identifier: CB:9D:FD:72:A8:DF:50:E0:65:00:43:78:06:B6:A2:01:8E:CC:BD:FD
Certificate issuer:       /CN=A9150733/serialNumber=CB9DFD72A8DF50E06500437806B6A2018ECCBDFD
Certificate serial:       0B4F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y539cqjfUOBlAEN4BraiAY7Mvf0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.mft
Manifest number:          0CD0
Signing time:             Fri 08 Aug 2025 19:24:29 +0000
Manifest this update:     Fri 08 Aug 2025 19:24:29 +0000
Manifest next update:     Fri 15 Aug 2025 19:24:29 +0000
Files and hashes:         1: y539cqjfUOBlAEN4BraiAY7Mvf0.crl (hash: N00VbdBSK4aVFzCrw5m7YPbR5s0qM8Dyo0umBa8TPb8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.crl
                          rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y539cqjfUOBlAEN4BraiAY7Mvf0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2895 (0xb4f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9150733, serialNumber=CB9DFD72A8DF50E06500437806B6A2018ECCBDFD
        Validity
            Not Before: Aug  8 19:24:29 2025 GMT
            Not After : Aug 15 19:24:29 2025 GMT
        Subject: CN=68964eed-c0e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:85:be:bb:94:66:1d:7b:52:65:3c:60:55:35:
                    a9:4c:01:27:88:28:c7:98:16:38:a0:2b:ed:bc:8c:
                    3b:c2:98:7e:4a:e5:5a:ca:a9:86:e3:79:89:4a:b9:
                    5f:92:11:b8:93:d3:34:62:a3:f8:67:a8:6b:77:cf:
                    ec:2b:46:07:e6:13:15:8d:6d:1b:ff:d8:88:3b:a2:
                    24:1e:71:b1:c1:c7:dd:dd:b1:c5:2e:09:7d:7b:76:
                    36:fc:99:fd:7f:05:1a:85:dc:80:02:b6:46:62:09:
                    59:15:ac:8d:d2:ec:57:91:28:3a:15:ad:a0:ec:f7:
                    63:a3:f6:7a:63:3d:29:ce:05:f0:d1:a9:cd:2c:2b:
                    26:38:ab:ed:33:63:ae:a1:92:40:70:40:1a:69:55:
                    26:2d:ea:46:18:a8:3b:cc:80:2b:42:e1:46:21:70:
                    2e:b3:aa:42:2d:a4:40:44:78:09:38:a8:bc:b4:97:
                    8c:ef:3a:4f:bd:14:3f:2e:1d:77:b8:73:10:24:ae:
                    d9:a4:6d:a0:65:29:d4:a0:70:95:c0:50:1a:09:8e:
                    74:2d:73:10:5a:25:bb:72:87:8b:a5:73:fa:2d:c4:
                    60:12:b4:04:d0:5b:a0:2f:c8:15:37:47:27:08:bf:
                    2e:b9:6a:5b:d1:21:6d:98:83:b3:8b:5d:32:8f:7f:
                    77:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:5A:E6:A7:44:C3:82:25:92:84:EC:03:F8:70:AB:AC:75:99:10:FA
            X509v3 Authority Key Identifier:
                keyid:CB:9D:FD:72:A8:DF:50:E0:65:00:43:78:06:B6:A2:01:8E:CC:BD:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y539cqjfUOBlAEN4BraiAY7Mvf0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:f7:35:d6:3a:a4:78:b6:9c:a7:e8:0e:4c:c2:84:ee:5f:63:
         5e:20:1c:af:d6:37:41:d2:d0:3a:65:17:2c:a4:5c:b8:eb:a1:
         50:b7:4f:25:0d:df:11:7d:ae:61:2e:e7:e2:7c:20:7a:8f:a4:
         e5:bd:ea:79:24:a0:74:7c:cd:4a:ab:ee:e3:ef:66:32:49:d8:
         b4:69:48:53:a4:79:67:49:56:58:58:98:17:c9:f5:7b:48:76:
         0e:ac:86:c7:59:af:a8:c3:cc:c2:ee:bc:8e:c4:8f:b1:48:ba:
         89:e0:cf:2d:51:f1:c8:87:2f:16:aa:6d:a5:fe:d4:1f:b0:42:
         d8:50:f2:ae:c8:3b:2a:7a:89:01:d2:d4:e4:2d:a0:59:6e:58:
         ad:cd:b5:d5:89:52:50:66:27:af:e6:ba:0e:8a:ea:fa:2f:3f:
         f1:ed:b7:81:8c:32:32:16:3c:c4:73:89:8d:b2:b0:f8:fe:e5:
         db:49:47:f1:8f:de:c4:99:7d:db:12:b2:d4:c8:62:f6:27:7a:
         6b:f1:6e:e7:30:09:5f:c5:d6:66:09:3e:33:10:3f:2f:de:89:
         32:e5:cd:8a:08:b4:3c:38:20:68:1e:44:14:fb:4e:dc:1e:5f:
         1a:7c:13:91:18:cd:a4:6e:02:07:78:d7:29:bc:a5:a1:54:0d:
         b5:b4:5a:61
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTA3MzMxMTAvBgNVBAUTKENCOURGRDcyQThERjUwRTA2NTAwNDM3ODA2QjZBMjAx
OEVDQ0JERkQwHhcNMjUwODA4MTkyNDI5WhcNMjUwODE1MTkyNDI5WjAYMRYwFAYD
VQQDEw02ODk2NGVlZC1jMGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA24W+u5RmHXtSZTxgVTWpTAEniCjHmBY4oCvtvIw7wph+SuVayqmG43mJSrlf
khG4k9M0YqP4Z6hrd8/sK0YH5hMVjW0b/9iIO6IkHnGxwcfd3bHFLgl9e3Y2/Jn9
fwUahdyAArZGYglZFayN0uxXkSg6Fa2g7Pdjo/Z6Yz0pzgXw0anNLCsmOKvtM2Ou
oZJAcEAaaVUmLepGGKg7zIArQuFGIXAus6pCLaRARHgJOKi8tJeM7zpPvRQ/Lh13
uHMQJK7ZpG2gZSnUoHCVwFAaCY50LXMQWiW7coeLpXP6LcRgErQE0FugL8gVN0cn
CL8uuWpb0SFtmIOzi10yj393IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBa5qdE
w4IlkoTsA/hwq6x1mRD6MB8GA1UdIwQYMBaAFMud/XKo31DgZQBDeAa2ogGOzL39
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDczMy8yMTc4NjhDRTNE
QjUxMUVBQTY0OTEzMTJDNEY5QUUwMi95NTM5Y3FqZlVPQmxBRU40QnJhaUFZN012
ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3k1MzljcWpmVU9CbEFFTjRCcmFpQVk3TXZmMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
MDczMy8yMTc4NjhDRTNEQjUxMUVBQTY0OTEzMTJDNEY5QUUwMi95NTM5Y3FqZlVP
QmxBRU40QnJhaUFZN012ZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAQ9zXWOqR4tpyn6A5MwoTuX2NeIByv1jdB0tA6ZRcspFy466FQt08l
Dd8Rfa5hLufifCB6j6Tlvep5JKB0fM1Kq+7j72YySdi0aUhTpHlnSVZYWJgXyfV7
SHYOrIbHWa+ow8zC7ryOxI+xSLqJ4M8tUfHIhy8Wqm2l/tQfsELYUPKuyDsqeokB
0tTkLaBZblitzbXViVJQZiev5roOiur6Lz/x7beBjDIyFjzEc4mNsrD4/uXbSUfx
j97EmX3bErLUyGL2J3pr8W7nMAlfxdZmCT4zED8v3oky5c2KCLQ8OCBoHkQU+07c
Hl8afBORGM2kbgIHeNcpvKWhVA21tFph
-----END CERTIFICATE-----
Generated at Sun Aug 10 16:05:42 2025 by rpki-client