Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft
File:                     5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json)
Hash identifier:          rJHb3Pboiuqtrbl9ykjOPzIiUUc859nzoKfUyY/VNhg=
Subject key identifier:   87:11:C4:E0:A1:2D:3D:E1:6E:4F:4C:E2:54:EF:CB:16:F1:19:F7:2A
Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0
Certificate issuer:       /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0
Certificate serial:       0B95
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft
Manifest number:          0B8B
Signing time:             Sat 02 Aug 2025 19:13:13 +0000
Manifest this update:     Sat 02 Aug 2025 19:13:13 +0000
Manifest next update:     Sat 09 Aug 2025 19:13:13 +0000
Files and hashes:         1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: hiS1CE6GjyqLjIMHa1wBF/FRfRHrggm39YTcPMAqoEc=)
                          2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl
                          rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 09 Aug 2025 19:13:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2965 (0xb95)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0
        Validity
            Not Before: Aug  2 19:13:13 2025 GMT
            Not After : Aug  9 19:13:13 2025 GMT
        Subject: CN=688e6349-d9c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:74:8f:12:b6:54:1b:b3:1a:ec:b4:42:1d:d6:
                    b2:9e:9f:6a:03:52:ad:58:e1:3a:70:95:e3:e1:04:
                    33:ce:eb:f4:72:6c:8d:02:53:79:76:e1:ab:72:3f:
                    b5:18:63:7b:30:1b:3f:e8:8c:47:a2:3b:ce:05:d5:
                    08:b1:58:9c:d1:a5:a3:1e:cf:a1:17:00:fc:77:58:
                    9a:9f:aa:9c:7e:66:58:18:81:83:f6:5f:97:e2:6d:
                    bb:b6:6f:b0:94:13:f3:94:59:34:c8:ff:9b:89:de:
                    25:45:72:2d:ae:8e:46:f1:52:ba:02:c2:d6:55:2b:
                    60:b0:c6:bf:f0:7e:1a:19:5b:df:21:dd:7b:07:8b:
                    dd:e3:ca:a0:18:da:2e:4e:1b:21:a9:07:b7:ec:e4:
                    1f:c9:8a:e8:c1:8a:3b:bc:b4:a1:db:9b:5f:7b:a5:
                    77:58:0b:09:d5:7b:c8:51:99:77:7c:70:7f:9b:91:
                    e2:d9:57:3c:a0:10:3d:f5:74:a8:05:04:fc:e6:53:
                    ab:93:fe:4f:80:47:9a:4d:e4:74:a8:15:1e:12:c6:
                    1d:d8:8a:90:e0:49:94:d6:7c:bc:16:5a:11:02:d4:
                    9b:9f:5a:c3:9f:11:dd:5d:df:38:9e:99:3d:f0:55:
                    85:1e:a0:d2:95:97:13:95:66:64:1b:91:17:68:8b:
                    bb:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:11:C4:E0:A1:2D:3D:E1:6E:4F:4C:E2:54:EF:CB:16:F1:19:F7:2A
            X509v3 Authority Key Identifier:
                keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:43:64:02:bb:a8:21:79:e9:e3:68:36:86:62:a3:cb:d0:98:
         5a:39:8e:28:3e:b9:bc:14:4d:6f:79:9a:f2:bc:34:49:e8:27:
         3b:e8:53:ae:57:b3:42:20:4e:d6:2f:e6:91:86:a7:ef:e7:e9:
         d8:f5:95:d1:da:09:24:d8:f4:3f:28:33:69:de:b4:e1:a2:89:
         20:d3:98:74:d4:e1:40:9c:1d:c2:2c:c0:ee:8f:e9:f6:dd:36:
         b3:98:fa:f3:02:76:d0:3d:67:bd:8d:30:b3:5a:75:a2:9c:cd:
         2f:04:c7:70:07:8a:da:65:af:8d:19:62:89:0a:58:db:2b:f9:
         73:1a:05:a2:c4:15:2b:24:0a:c3:2a:07:37:59:67:8f:dc:87:
         46:75:5c:1d:fa:b1:a3:35:d4:ba:d5:33:85:9b:11:00:ad:6c:
         8d:22:7e:71:32:95:2a:04:16:1e:3f:4b:25:50:07:e3:48:0b:
         29:da:9a:95:aa:09:f3:bc:52:af:c4:17:71:b6:1c:fc:ae:96:
         b0:77:60:77:d7:12:b0:ce:67:af:30:f3:86:16:32:b6:93:8d:
         2b:d8:30:b0:c4:31:c1:ff:62:73:09:55:5b:31:bb:b4:f7:6f:
         92:51:24:96:cd:7e:9d:4d:f7:6a:54:6b:a0:18:6d:f8:13:4c:
         4d:eb:54:ff
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICC5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2
OThBMTIwRDAwHhcNMjUwODAyMTkxMzEzWhcNMjUwODA5MTkxMzEzWjAYMRYwFAYD
VQQDEw02ODhlNjM0OS1kOWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAynSPErZUG7Ma7LRCHdaynp9qA1KtWOE6cJXj4QQzzuv0cmyNAlN5duGrcj+1
GGN7MBs/6IxHojvOBdUIsVic0aWjHs+hFwD8d1ian6qcfmZYGIGD9l+X4m27tm+w
lBPzlFk0yP+bid4lRXItro5G8VK6AsLWVStgsMa/8H4aGVvfId17B4vd48qgGNou
ThshqQe37OQfyYrowYo7vLSh25tfe6V3WAsJ1XvIUZl3fHB/m5Hi2Vc8oBA99XSo
BQT85lOrk/5PgEeaTeR0qBUeEsYd2IqQ4EmU1ny8FloRAtSbn1rDnxHdXd84npk9
8FWFHqDSlZcTlWZkG5EXaIu70wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcRxOCh
LT3hbk9M4lTvyxbxGfcqMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw
MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ
TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L
UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBwQ2QCu6gheenjaDaGYqPL0JhaOY4oPrm8FE1veZryvDRJ6Cc76FOu
V7NCIE7WL+aRhqfv5+nY9ZXR2gkk2PQ/KDNp3rThookg05h01OFAnB3CLMDuj+n2
3TazmPrzAnbQPWe9jTCzWnWinM0vBMdwB4raZa+NGWKJCljbK/lzGgWixBUrJArD
Kgc3WWeP3IdGdVwd+rGjNdS61TOFmxEArWyNIn5xMpUqBBYeP0slUAfjSAsp2pqV
qgnzvFKvxBdxthz8rpawd2B31xKwzmevMPOGFjK2k40r2DCwxDHB/2JzCVVbMbu0
92+SUSSWzX6dTfdqVGugGG34E0xN61T/
-----END CERTIFICATE-----
Generated at Mon Aug 4 16:11:19 2025 by rpki-client