Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft
File:                     y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json)
Hash identifier:          DwqamrZvq1qEAUo4Msxrk4oSq4ZvYDZvKV+CZXYKKD0=
Subject key identifier:   BA:C3:34:F1:26:73:EC:C0:5F:E0:FB:96:F7:57:2E:BC:2C:C9:53:8A
Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22
Certificate issuer:       /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822
Certificate serial:       0188
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft
Manifest number:          0185
Signing time:             Sat 09 Aug 2025 03:57:36 +0000
Manifest this update:     Sat 09 Aug 2025 03:57:35 +0000
Manifest next update:     Sat 16 Aug 2025 03:57:35 +0000
Files and hashes:         1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: SoqZqYRQrX1lh+5QgKZ+M4ac5i+3jpgivfxsCBwBk3I=)
                          2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: Ae2kzkiPbHsneEUo3gobHEERA3S8mH2dAIJpdvxeRck=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl
                          rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 392 (0x188)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822
        Validity
            Not Before: Aug  9 03:57:35 2025 GMT
            Not After : Aug 16 03:57:35 2025 GMT
        Subject: CN=6896c730-c2f0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:2d:0a:d9:dd:35:6a:d3:07:2a:35:d1:57:dc:
                    36:e4:36:80:1b:3a:8b:ad:8d:9c:9f:75:8c:b4:1c:
                    83:c1:e5:a8:5a:8a:66:a2:df:17:fa:db:c3:76:89:
                    79:83:c6:07:6c:e8:56:fa:0a:80:ee:bc:5f:0e:11:
                    85:ff:88:18:66:5c:2b:4d:0e:7c:e2:33:3e:cd:72:
                    f5:5c:43:c0:af:98:79:e3:a4:bc:49:28:c8:41:b2:
                    fb:f7:9a:65:21:75:49:32:b6:8c:14:71:9e:4a:02:
                    32:5a:c2:95:be:50:06:f2:c9:43:95:0e:5e:dc:2c:
                    1f:e3:05:db:5c:68:d3:52:2c:40:a1:6b:2a:15:c1:
                    fa:9a:55:81:73:98:e1:4a:bb:f0:a3:c6:99:66:43:
                    27:53:69:cd:e2:b4:4a:8a:f0:a8:04:8d:21:a0:d0:
                    ba:17:71:e9:c5:72:a2:55:11:31:37:70:43:00:a6:
                    1e:4b:e9:e6:d7:0c:6b:41:05:2d:20:78:3e:eb:b1:
                    f5:4c:c2:8c:7c:b0:53:e4:75:5a:82:7c:13:97:19:
                    31:1f:64:50:29:42:e1:ce:81:04:4c:ac:a8:1e:0a:
                    d3:e6:5b:b8:6c:18:f2:4e:da:2a:71:22:bd:a0:c9:
                    20:2c:bc:79:a3:84:c7:1c:bb:37:eb:c4:04:02:23:
                    1d:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:C3:34:F1:26:73:EC:C0:5F:E0:FB:96:F7:57:2E:BC:2C:C9:53:8A
            X509v3 Authority Key Identifier:
                keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:1e:d8:96:dc:36:dc:4c:f2:4d:52:9d:56:4a:ca:86:d2:47:
         d5:1e:42:fb:c0:97:db:92:dd:4b:88:9e:66:03:4a:d9:9f:d2:
         aa:1f:5e:18:0f:84:c0:ff:07:1c:29:cf:d6:7d:b2:bf:97:4e:
         87:f3:da:3b:72:f2:dd:e0:96:4c:a3:14:50:39:51:ba:a9:e5:
         8e:e5:a1:30:5c:f2:09:9d:47:6b:2c:d8:ac:46:e3:be:b5:f6:
         c5:16:3d:04:0c:82:9b:1f:7e:5a:67:88:0b:eb:3d:c4:97:34:
         1b:ee:32:fc:32:4a:aa:44:d6:66:72:72:25:5c:cf:9d:31:51:
         90:0c:21:38:21:35:02:a4:2d:1d:d3:5c:0d:15:d2:26:45:7e:
         8e:4d:e4:94:a1:30:58:92:8b:5f:2f:6b:17:0a:44:22:63:fa:
         d4:b6:9d:b2:90:70:78:a2:28:3c:88:9c:5c:b0:d1:f9:5f:20:
         ac:2d:cb:71:55:0f:9a:f9:e9:d1:58:b0:e7:27:e8:7e:19:86:
         6e:2d:1a:72:9a:9c:da:ed:de:45:f1:25:6e:d7:00:5f:7b:9d:
         9a:0f:68:1e:43:69:3e:9b:d5:21:b9:f7:81:cd:58:a2:0a:41:
         09:7e:87:69:85:81:66:89:5d:ba:34:32:56:f5:9c:59:a6:73:
         93:0d:39:25
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE
ODg1Qzc4MjIwHhcNMjUwODA5MDM1NzM1WhcNMjUwODE2MDM1NzM1WjAYMRYwFAYD
VQQDEw02ODk2YzczMC1jMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyS0K2d01atMHKjXRV9w25DaAGzqLrY2cn3WMtByDweWoWopmot8X+tvDdol5
g8YHbOhW+gqA7rxfDhGF/4gYZlwrTQ584jM+zXL1XEPAr5h546S8SSjIQbL795pl
IXVJMraMFHGeSgIyWsKVvlAG8slDlQ5e3Cwf4wXbXGjTUixAoWsqFcH6mlWBc5jh
Srvwo8aZZkMnU2nN4rRKivCoBI0hoNC6F3HpxXKiVRExN3BDAKYeS+nm1wxrQQUt
IHg+67H1TMKMfLBT5HVagnwTlxkxH2RQKULhzoEETKyoHgrT5lu4bBjyTtoqcSK9
oMkgLLx5o4THHLs368QEAiMdpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrDNPEm
c+zAX+D7lvdXLrwsyVOKMB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx
NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl
Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz
LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAjHtiW3DbcTPJNUp1WSsqG0kfVHkL7wJfbkt1LiJ5mA0rZn9KqH14Y
D4TA/wccKc/WfbK/l06H89o7cvLd4JZMoxRQOVG6qeWO5aEwXPIJnUdrLNisRuO+
tfbFFj0EDIKbH35aZ4gL6z3ElzQb7jL8MkqqRNZmcnIlXM+dMVGQDCE4ITUCpC0d
01wNFdImRX6OTeSUoTBYkotfL2sXCkQiY/rUtp2ykHB4oig8iJxcsNH5XyCsLctx
VQ+a+enRWLDnJ+h+GYZuLRpympza7d5F8SVu1wBfe52aD2geQ2k+m9UhufeBzVii
CkEJfodphYFmiV26NDJW9ZxZpnOTDTkl
-----END CERTIFICATE-----
Generated at Sun Aug 10 16:09:20 2025 by rpki-client