Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft
File:                     IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json)
Hash identifier:          8JwQXnqJxYyID2wacNSa8bdeG5km5abZ0evXQ3S1FLs=
Subject key identifier:   20:92:33:30:C8:03:BD:4B:8F:80:2D:76:45:0A:62:D8:B2:07:29:CA
Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C
Certificate issuer:       /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C
Certificate serial:       152F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft
Manifest number:          2BF4
Signing time:             Fri 08 Aug 2025 16:58:24 +0000
Manifest this update:     Fri 08 Aug 2025 16:58:23 +0000
Manifest next update:     Fri 15 Aug 2025 16:58:23 +0000
Files and hashes:         1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: d07ozIBKHoysJ/u/x1a7lZ/NL7BmZxkE+U0wmGsyXqY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl
                          rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5423 (0x152f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91658EF, serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C
        Validity
            Not Before: Aug  8 16:58:23 2025 GMT
            Not After : Aug 15 16:58:23 2025 GMT
        Subject: CN=68962caf-2913
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:af:88:5b:da:51:37:55:73:45:27:03:8b:80:
                    37:da:30:51:b1:82:62:6e:f5:33:bb:61:99:50:a1:
                    19:47:aa:69:ee:5f:1d:a1:34:70:1a:bb:47:02:9f:
                    e0:e7:f0:99:e0:7e:e9:1b:3b:04:92:97:0a:12:8b:
                    03:50:ab:03:e9:3b:f8:ad:57:8c:90:a1:b9:11:0b:
                    c2:8b:56:79:51:96:fd:4a:53:e4:cc:65:ed:31:01:
                    7e:07:b3:91:56:ca:61:4d:1e:10:8a:d2:8b:a1:a7:
                    1d:45:8b:34:e8:35:94:ec:61:a2:98:41:08:cd:fe:
                    ad:2f:29:c3:47:62:58:b1:36:ca:5f:8e:3a:ac:e7:
                    c8:95:9d:07:d4:29:9e:48:0b:23:cf:96:c3:36:85:
                    e3:76:d1:2d:a7:44:c2:8a:2f:ea:67:3a:db:4e:cb:
                    53:4d:b3:aa:d0:98:ad:76:66:ca:e4:eb:eb:1b:b5:
                    7c:3f:4f:3b:54:62:84:73:83:38:3e:d5:5b:f3:d6:
                    a4:5d:07:28:35:b8:69:7d:48:24:c0:24:6e:1e:99:
                    25:38:04:1c:a1:3a:8d:2a:a3:45:79:f8:00:0d:89:
                    de:9e:24:99:bb:f5:30:56:6b:5d:93:95:a6:b8:5d:
                    0a:8e:67:f8:2e:7e:58:bd:16:f8:46:c3:f9:0f:00:
                    83:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:92:33:30:C8:03:BD:4B:8F:80:2D:76:45:0A:62:D8:B2:07:29:CA
            X509v3 Authority Key Identifier:
                keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d6:da:b2:01:81:79:95:14:97:b0:3b:de:20:77:4c:f8:17:39:
         e1:49:d3:5f:68:7c:75:3e:73:70:bb:99:d8:8a:65:9a:d0:c0:
         d3:8b:9c:f6:14:40:4b:dc:c5:66:c7:7f:2f:0f:6b:52:b6:e3:
         3b:e2:9d:33:d5:c8:53:3f:90:f2:20:5e:43:26:d3:31:11:9c:
         24:33:2d:e6:be:54:b3:0a:ed:6b:6d:e4:7e:92:b2:78:11:ec:
         36:89:3e:77:83:04:a4:e5:57:7e:32:cb:70:af:55:bc:6d:e2:
         2a:db:55:ee:80:6a:5e:6d:81:e7:09:21:60:49:35:3d:1f:da:
         46:5e:0d:b3:d8:8d:aa:58:7b:88:2c:4c:dd:1a:56:08:00:84:
         c9:cf:b0:d3:24:f7:0d:ac:08:51:1e:a1:63:41:2b:41:86:c5:
         1a:9b:62:fe:ef:06:30:49:56:8a:32:f8:5d:2e:3b:10:89:4a:
         4e:eb:f2:ad:b3:82:ae:68:81:da:9a:81:68:9f:b9:10:a1:aa:
         ab:30:64:95:4c:2a:8d:4e:73:c7:d0:a3:78:7e:6a:98:8e:ee:
         10:23:39:93:0a:86:dd:7e:2e:30:d8:a1:34:a0:51:1f:db:d5:
         c3:54:57:ff:c4:b9:16:7c:e5:db:4f:67:01:f7:11:5a:3c:92:
         c9:bf:98:61
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICFS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz
RTNCOTQxMkMwHhcNMjUwODA4MTY1ODIzWhcNMjUwODE1MTY1ODIzWjAYMRYwFAYD
VQQDEw02ODk2MmNhZi0yOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAta+IW9pRN1VzRScDi4A32jBRsYJibvUzu2GZUKEZR6pp7l8doTRwGrtHAp/g
5/CZ4H7pGzsEkpcKEosDUKsD6Tv4rVeMkKG5EQvCi1Z5UZb9SlPkzGXtMQF+B7OR
VsphTR4QitKLoacdRYs06DWU7GGimEEIzf6tLynDR2JYsTbKX446rOfIlZ0H1Cme
SAsjz5bDNoXjdtEtp0TCii/qZzrbTstTTbOq0JitdmbK5OvrG7V8P087VGKEc4M4
PtVb89akXQcoNbhpfUgkwCRuHpklOAQcoTqNKqNFefgADYneniSZu/UwVmtdk5Wm
uF0Kjmf4Ln5YvRb4RsP5DwCDTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCSMzDI
A71Lj4AtdkUKYtiyBynKMB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB
RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR
U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM
NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDW2rIBgXmVFJewO94gd0z4FznhSdNfaHx1PnNwu5nYimWa0MDTi5z2
FEBL3MVmx38vD2tStuM74p0z1chTP5DyIF5DJtMxEZwkMy3mvlSzCu1rbeR+krJ4
Eew2iT53gwSk5Vd+Mstwr1W8beIq21XugGpebYHnCSFgSTU9H9pGXg2z2I2qWHuI
LEzdGlYIAITJz7DTJPcNrAhRHqFjQStBhsUam2L+7wYwSVaKMvhdLjsQiUpO6/Kt
s4KuaIHamoFon7kQoaqrMGSVTCqNTnPH0KN4fmqYju4QIzmTCobdfi4w2KE0oFEf
29XDVFf/xLkWfOXbT2cB9xFaPJLJv5hh
-----END CERTIFICATE-----
Generated at Sun Aug 10 04:23:40 2025 by rpki-client