Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft
File:                     PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json)
Hash identifier:          WxXQAoih9aqDK4OXFBuzMJQcrX2bAm+/Ywppjjm2IxE=
Subject key identifier:   75:8D:C9:1C:7B:49:DD:F4:37:83:50:4C:B0:9C:B8:75:3B:99:0E:4F
Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE
Certificate issuer:       /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE
Certificate serial:       0793
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft
Manifest number:          078B
Signing time:             Wed 06 Aug 2025 21:48:29 +0000
Manifest this update:     Wed 06 Aug 2025 21:48:28 +0000
Manifest next update:     Wed 13 Aug 2025 21:48:28 +0000
Files and hashes:         1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: e/jgr5OqoF54iVOdMONLwDh+ofIoIq62kzcxFtWbL+4=)
                          2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl
                          rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 21:48:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1939 (0x793)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE
        Validity
            Not Before: Aug  6 21:48:28 2025 GMT
            Not After : Aug 13 21:48:28 2025 GMT
        Subject: CN=6893cdac-a9c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:ee:1f:14:77:37:59:cf:82:05:b1:bc:0d:fc:
                    c0:d2:4c:cc:ee:62:a2:02:41:05:c1:f2:b8:1c:3d:
                    1f:d8:3f:98:75:f3:be:25:11:e3:13:0c:6a:7d:c8:
                    4c:4f:be:f9:ac:98:af:28:82:27:56:25:fc:2f:06:
                    9c:2a:a2:f8:cd:45:e2:32:2a:4a:ab:aa:96:81:ab:
                    61:7b:52:2f:4c:c6:cf:11:5f:49:37:51:de:fa:34:
                    23:1a:64:fa:63:4a:49:fc:d0:5e:a0:7a:e1:5e:74:
                    f3:ef:ae:68:e1:b4:7b:a3:2b:41:b3:77:b2:a2:95:
                    50:26:c2:f7:91:7b:3a:86:7a:50:4c:5b:a1:84:fd:
                    aa:bf:0a:e6:12:7a:6b:e8:dd:96:a4:93:35:c2:fb:
                    be:03:f0:b7:af:32:ea:28:94:c9:f7:5f:d8:3c:8b:
                    e1:bd:02:a4:47:75:29:d1:40:a7:fc:0a:32:6d:fb:
                    32:66:c0:bc:20:11:e7:e7:16:cc:0e:87:67:35:cd:
                    7e:1c:37:97:0e:b4:a7:4c:2e:1b:33:77:7a:f8:a7:
                    62:e9:04:81:78:4c:ca:f3:cc:9c:94:c8:5a:0f:e5:
                    0d:14:05:96:9e:c5:0e:de:11:70:0c:9e:41:38:b7:
                    9d:eb:9e:92:41:d3:42:aa:6b:d2:d1:cb:9f:73:a2:
                    29:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:8D:C9:1C:7B:49:DD:F4:37:83:50:4C:B0:9C:B8:75:3B:99:0E:4F
            X509v3 Authority Key Identifier:
                keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:bb:1b:06:33:e7:f6:18:e0:86:d5:31:6f:2a:e4:37:da:63:
         be:3d:90:c1:4d:97:46:e9:4e:e8:4d:70:7f:b4:ce:b2:f9:7b:
         06:92:ab:cb:01:af:d0:01:b3:4f:e4:0a:26:12:7c:35:bb:b5:
         79:62:56:8f:b5:4e:d0:61:4b:f2:f2:3e:d1:9f:2a:4c:bc:5a:
         48:ae:f6:f4:7c:eb:23:3f:9b:8d:b4:e7:6f:3c:d3:7d:0e:55:
         d2:96:f6:70:f2:24:0c:e3:e5:8b:c8:d0:9b:90:b2:28:fa:87:
         94:3d:d1:d7:ad:2e:fa:fc:68:d5:dd:d6:17:5b:9d:25:31:9f:
         c3:d3:e2:71:66:98:9e:bf:9d:4c:1e:2b:60:a7:29:ed:74:0c:
         81:31:a0:79:35:b1:30:da:30:24:1d:35:07:1a:1e:37:7b:42:
         ad:6a:68:dd:8c:3c:0a:92:2d:c8:c2:36:a0:a3:e2:65:31:ca:
         92:97:51:a1:40:4a:be:f1:0a:3d:89:9e:95:2e:82:fc:42:de:
         8c:86:3a:43:51:64:7a:56:65:0f:b1:aa:4f:0e:2f:77:75:ca:
         1a:8a:fa:00:49:9a:8e:3d:0f:68:35:1d:00:fe:59:ae:1e:e6:
         0d:c5:72:a2:fe:22:f5:cc:fc:08:0a:e3:fc:d9:02:a0:cf:ab:
         68:3c:ee:14
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4
QjNDOTc5QUUwHhcNMjUwODA2MjE0ODI4WhcNMjUwODEzMjE0ODI4WjAYMRYwFAYD
VQQDEw02ODkzY2RhYy1hOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAre4fFHc3Wc+CBbG8DfzA0kzM7mKiAkEFwfK4HD0f2D+YdfO+JRHjEwxqfchM
T775rJivKIInViX8LwacKqL4zUXiMipKq6qWgathe1IvTMbPEV9JN1He+jQjGmT6
Y0pJ/NBeoHrhXnTz765o4bR7oytBs3eyopVQJsL3kXs6hnpQTFuhhP2qvwrmEnpr
6N2WpJM1wvu+A/C3rzLqKJTJ91/YPIvhvQKkR3Up0UCn/AoybfsyZsC8IBHn5xbM
DodnNc1+HDeXDrSnTC4bM3d6+Kdi6QSBeEzK88yclMhaD+UNFAWWnsUO3hFwDJ5B
OLed656SQdNCqmvS0cufc6IpyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWNyRx7
Sd30N4NQTLCcuHU7mQ5PMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD
MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl
YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ
cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBZuxsGM+f2GOCG1TFvKuQ32mO+PZDBTZdG6U7oTXB/tM6y+XsGkqvL
Aa/QAbNP5AomEnw1u7V5YlaPtU7QYUvy8j7RnypMvFpIrvb0fOsjP5uNtOdvPNN9
DlXSlvZw8iQM4+WLyNCbkLIo+oeUPdHXrS76/GjV3dYXW50lMZ/D0+JxZpiev51M
HitgpyntdAyBMaB5NbEw2jAkHTUHGh43e0KtamjdjDwKki3Iwjago+JlMcqSl1Gh
QEq+8Qo9iZ6VLoL8Qt6MhjpDUWR6VmUPsapPDi93dcoaivoASZqOPQ9oNR0A/lmu
HuYNxXKi/iL1zPwICuP82QKgz6toPO4U
-----END CERTIFICATE-----
Generated at Fri Aug 8 12:54:18 2025 by rpki-client