Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft
File:                     iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json)
Hash identifier:          Dmascu+pl01W4r1qKxLwH9oFlEGDTeVkgokz+4kOTe0=
Subject key identifier:   46:56:B7:74:3D:1B:2F:E0:19:31:10:B7:8B:C7:CC:88:C1:13:20:CA
Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15
Certificate issuer:       /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15
Certificate serial:       E1
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft
Manifest number:          DF
Signing time:             Mon 11 Aug 2025 05:39:51 +0000
Manifest this update:     Mon 11 Aug 2025 05:39:51 +0000
Manifest next update:     Mon 18 Aug 2025 05:39:51 +0000
Files and hashes:         1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: XRzANNc5TAZYqph+WXodKCbeqJnLVy2z45XWCo4vCX4=)
                          2: D055D382225711EF975F6747C4F9AE02.roa (hash: 2DIbbbQohcgsUM76Q6xBDUsyKlfYgqXTFBRbG6OVDKI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl
                          rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 18 Aug 2025 05:39:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 225 (0xe1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15
        Validity
            Not Before: Aug 11 05:39:51 2025 GMT
            Not After : Aug 18 05:39:51 2025 GMT
        Subject: CN=68998227-971c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:d0:12:f3:10:69:84:1e:11:85:54:0f:b5:70:
                    67:09:1a:7d:3e:1d:fc:d4:0b:02:78:b6:b8:59:f3:
                    06:3c:d6:ee:6c:f9:3d:d6:fb:1d:90:af:b2:22:87:
                    e0:11:54:8c:5f:a7:e5:ed:4f:ac:c5:6e:03:0b:75:
                    e0:bc:a2:c4:f5:54:ca:d4:74:8b:7c:9d:e9:e6:da:
                    ed:06:70:b3:76:6b:14:ee:ef:b7:92:41:bc:de:53:
                    4b:e9:44:b8:0c:29:f9:95:b0:65:c9:77:db:ae:f6:
                    2e:8e:13:56:3b:f2:7a:3e:9e:0e:33:b6:19:5d:df:
                    86:97:51:b7:37:1f:fb:a9:4d:78:ed:ab:04:b2:31:
                    80:6e:d5:3c:1c:ac:7d:fc:0c:04:12:30:98:ba:30:
                    54:ed:7e:cb:9f:d2:39:4b:69:d5:de:73:42:4f:cd:
                    d8:2d:44:6f:a0:4f:b0:d7:f9:99:54:87:3e:80:63:
                    ee:fe:5b:de:7e:1b:ce:5a:fa:4d:03:78:24:30:ad:
                    23:87:61:b7:5c:94:f3:b7:b8:0b:e8:dc:b8:5f:51:
                    23:45:a2:37:12:a6:c2:02:e2:fb:bf:89:e6:f6:35:
                    4c:d4:cf:59:2b:d9:5d:40:4b:58:66:c4:b4:8e:aa:
                    54:d2:41:a2:2f:2f:40:4a:bf:48:5d:38:e3:dc:66:
                    e5:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:56:B7:74:3D:1B:2F:E0:19:31:10:B7:8B:C7:CC:88:C1:13:20:CA
            X509v3 Authority Key Identifier:
                keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         98:26:25:62:76:c4:62:b4:51:3d:40:73:13:54:e1:25:c9:fa:
         49:09:4d:a6:c0:29:81:db:07:cc:7d:16:b7:0f:ab:f6:a4:03:
         5c:84:83:e0:4b:30:e2:22:1c:27:74:70:ad:80:88:a6:d9:58:
         25:86:f2:c5:6d:ff:33:f5:70:3e:4d:cd:df:03:2b:61:f0:8f:
         8f:87:d3:df:58:f5:e3:dc:3e:d4:50:00:e0:96:e8:34:d7:df:
         c1:a8:17:81:66:3c:a1:3a:91:9e:6d:1c:4f:e4:ca:f6:fc:97:
         76:18:0e:eb:0b:32:a0:5f:af:ed:6b:31:e4:a6:c5:92:79:9f:
         17:ad:70:e0:8e:bb:aa:45:a4:6b:69:97:ed:fa:3f:6e:fb:a0:
         ab:00:97:0a:9b:6c:a0:6c:96:58:d9:41:fd:72:37:0b:5a:ce:
         11:78:09:39:ea:bb:db:0c:1b:5d:70:cf:d6:11:63:27:a0:56:
         90:58:23:02:15:db:ac:23:7d:c1:1c:c8:33:42:b8:5e:df:04:
         a3:43:6c:35:9f:4a:20:66:3c:17:ab:98:5a:13:d9:89:d5:7c:
         a6:af:cb:36:a8:95:96:a9:38:96:d5:5e:a7:43:21:4a:0c:1a:
         32:3b:eb:2d:ce:74:21:28:c9:95:dc:9c:6f:af:f0:6c:4a:67:
         7f:6e:8b:ae
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1
QkI1NzlDMTUwHhcNMjUwODExMDUzOTUxWhcNMjUwODE4MDUzOTUxWjAYMRYwFAYD
VQQDEw02ODk5ODIyNy05NzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0NAS8xBphB4RhVQPtXBnCRp9Ph381AsCeLa4WfMGPNbubPk91vsdkK+yIofg
EVSMX6fl7U+sxW4DC3XgvKLE9VTK1HSLfJ3p5trtBnCzdmsU7u+3kkG83lNL6US4
DCn5lbBlyXfbrvYujhNWO/J6Pp4OM7YZXd+Gl1G3Nx/7qU147asEsjGAbtU8HKx9
/AwEEjCYujBU7X7Ln9I5S2nV3nNCT83YLURvoE+w1/mZVIc+gGPu/lvefhvOWvpN
A3gkMK0jh2G3XJTzt7gL6Ny4X1EjRaI3EqbCAuL7v4nm9jVM1M9ZK9ldQEtYZsS0
jqpU0kGiLy9ASr9IXTjj3Gbl5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZWt3Q9
Gy/gGTEQt4vHzIjBEyDKMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy
NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu
QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5
LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCYJiVidsRitFE9QHMTVOElyfpJCU2mwCmB2wfMfRa3D6v2pANchIPg
SzDiIhwndHCtgIim2VglhvLFbf8z9XA+Tc3fAyth8I+Ph9PfWPXj3D7UUADglug0
19/BqBeBZjyhOpGebRxP5Mr2/Jd2GA7rCzKgX6/tazHkpsWSeZ8XrXDgjruqRaRr
aZft+j9u+6CrAJcKm2ygbJZY2UH9cjcLWs4ReAk56rvbDBtdcM/WEWMnoFaQWCMC
FdusI33BHMgzQrhe3wSjQ2w1n0ogZjwXq5haE9mJ1Xymr8s2qJWWqTiW1V6nQyFK
DBoyO+stznQhKMmV3Jxvr/BsSmd/bouu
-----END CERTIFICATE-----
Generated at Wed Aug 13 02:50:16 2025 by rpki-client