Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft
File:                     yRauWpUgtfZ2fnnJFa-hv25JGJk.mft (raw, json)
Hash identifier:          fvb6j9TgCxZLA/UtkSt0X75fpTsiZtSzuOIRTDSs2U8=
Subject key identifier:   03:FC:A7:05:65:FA:42:E5:6E:27:7C:F7:D1:D5:C4:A4:A0:73:59:82
Authority key identifier: C9:16:AE:5A:95:20:B5:F6:76:7E:79:C9:15:AF:A1:BF:6E:49:18:99
Certificate issuer:       /CN=A9188CC3/serialNumber=C916AE5A9520B5F6767E79C915AFA1BF6E491899
Certificate serial:       6A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft
Manifest number:          69
Signing time:             Sat 09 Aug 2025 07:28:43 +0000
Manifest this update:     Sat 09 Aug 2025 07:28:42 +0000
Manifest next update:     Sat 16 Aug 2025 07:28:42 +0000
Files and hashes:         1: yRauWpUgtfZ2fnnJFa-hv25JGJk.crl (hash: fvUpREmMrC2cURxt6d7v8+4CcP03qsa9vZ1OK/kS60o=)
                          2: DAB3F33EDE0B11EF8FDDD043C4F9AE02.roa (hash: Rb4ZTb+DIpBolhpNi77VSAYUPtHpBMXs9JxNCJqiIFg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.crl
                          rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 106 (0x6a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9188CC3, serialNumber=C916AE5A9520B5F6767E79C915AFA1BF6E491899
        Validity
            Not Before: Aug  9 07:28:42 2025 GMT
            Not After : Aug 16 07:28:42 2025 GMT
        Subject: CN=6896f8ab-5a1c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:44:37:21:8b:64:e0:a8:73:cb:00:c9:44:23:
                    a0:71:d0:8f:8c:4b:a6:c7:8f:14:b3:46:ae:f8:b9:
                    dc:32:36:6d:e4:d3:a0:76:0f:07:02:77:84:e1:05:
                    32:44:a8:20:58:ce:c1:c4:89:2b:cd:05:a8:f8:0c:
                    f6:79:72:95:74:51:e7:66:78:ca:94:15:b5:c8:db:
                    2c:69:fd:7e:b7:75:c3:d7:15:a4:b9:22:7a:22:b8:
                    9b:37:db:0b:d4:68:8b:8a:03:99:ab:e5:b4:2f:f6:
                    47:66:d5:e9:83:07:4f:f3:f7:da:26:e1:55:48:c5:
                    fa:ff:e6:cf:e3:ac:40:5b:01:5d:33:4a:5f:e6:05:
                    5f:21:da:4e:3c:28:6a:fe:0f:1f:a9:1f:aa:e7:43:
                    44:de:11:f6:f6:21:ff:d9:83:22:ab:07:7f:09:f1:
                    d6:de:99:fa:73:bd:01:1a:06:b3:86:59:64:4a:cf:
                    65:f7:a6:80:4a:db:33:20:fc:68:73:e6:7a:5f:f8:
                    40:3a:04:06:ab:f5:1a:9b:8d:2c:6d:cf:88:ab:c1:
                    72:d1:a7:54:7f:ca:68:21:fb:0b:26:a7:87:86:b6:
                    1b:17:d8:26:d8:e5:d6:61:c5:a3:a8:44:91:c6:e2:
                    d5:52:82:3f:41:69:2c:f6:8f:9f:ac:6c:d9:9c:bc:
                    9a:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:FC:A7:05:65:FA:42:E5:6E:27:7C:F7:D1:D5:C4:A4:A0:73:59:82
            X509v3 Authority Key Identifier:
                keyid:C9:16:AE:5A:95:20:B5:F6:76:7E:79:C9:15:AF:A1:BF:6E:49:18:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:47:0b:f0:46:c6:2a:bf:b5:9e:a1:5f:0f:02:75:c1:f4:72:
         7f:fb:f2:ac:7b:38:76:e5:d4:b3:ca:9c:07:89:0f:37:b7:7b:
         34:0e:04:69:8b:a4:0f:75:08:23:1f:35:07:11:38:2e:d3:82:
         69:8f:77:b2:d0:8a:3f:59:48:66:fa:d0:fb:ff:14:b1:21:ce:
         cf:5f:32:23:d0:30:c9:11:99:ac:a4:80:5f:fe:3d:3d:79:d2:
         f9:e7:12:9e:e6:53:5b:77:dd:7d:ca:b3:9a:df:8d:d4:ea:62:
         0e:ce:b6:c0:ee:f0:81:6d:cf:b5:a0:1c:95:72:4b:4d:c7:5e:
         51:8e:f2:ed:27:21:84:25:25:86:5e:3a:50:45:0a:47:50:7c:
         73:92:cb:d0:e8:a3:12:57:73:da:cf:1c:11:d7:73:15:48:b7:
         78:f9:3a:9c:8d:7b:65:b7:3a:df:a5:27:51:da:d1:9f:a7:96:
         d5:9d:17:6f:02:e4:bf:de:c3:ce:bd:f1:03:46:79:7b:e4:09:
         57:1a:5e:3c:ff:29:fc:20:79:fb:f6:15:20:14:6f:c3:06:fb:
         86:b7:31:9f:93:a6:7a:dd:16:6e:e4:2f:4e:f8:75:70:3a:e5:
         3d:2b:05:42:85:1e:05:3a:48:19:94:9e:81:ce:f1:69:3a:1f:
         58:71:06:c7
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4
OENDMzExMC8GA1UEBRMoQzkxNkFFNUE5NTIwQjVGNjc2N0U3OUM5MTVBRkExQkY2
RTQ5MTg5OTAeFw0yNTA4MDkwNzI4NDJaFw0yNTA4MTYwNzI4NDJaMBgxFjAUBgNV
BAMTDTY4OTZmOGFiLTVhMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC3RDchi2TgqHPLAMlEI6Bx0I+MS6bHjxSzRq74udwyNm3k06B2DwcCd4ThBTJE
qCBYzsHEiSvNBaj4DPZ5cpV0UedmeMqUFbXI2yxp/X63dcPXFaS5InoiuJs32wvU
aIuKA5mr5bQv9kdm1emDB0/z99om4VVIxfr/5s/jrEBbAV0zSl/mBV8h2k48KGr+
Dx+pH6rnQ0TeEfb2If/ZgyKrB38J8dbemfpzvQEaBrOGWWRKz2X3poBK2zMg/Ghz
5npf+EA6BAar9RqbjSxtz4irwXLRp1R/ymgh+wsmp4eGthsX2CbY5dZhxaOoRJHG
4tVSgj9BaSz2j5+sbNmcvJqhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA/ynBWX6
QuVuJ3z30dXEpKBzWYIwHwYDVR0jBBgwFoAUyRauWpUgtfZ2fnnJFa+hv25JGJkw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4Q0MzL0VEREEzNkUyRDcy
MzExRUZBMjI2OTQxOUM0RjlBRTAyL3lSYXVXcFVndGZaMmZubkpGYS1odjI1SkdK
ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIveVJhdVdwVWd0ZloyZm5uSkZhLWh2MjVKR0prLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4
Q0MzL0VEREEzNkUyRDcyMzExRUZBMjI2OTQxOUM0RjlBRTAyL3lSYXVXcFVndGZa
MmZubkpGYS1odjI1SkdKay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAKFHC/BGxiq/tZ6hXw8CdcH0cn/78qx7OHbl1LPKnAeJDze3ezQOBGmL
pA91CCMfNQcROC7TgmmPd7LQij9ZSGb60Pv/FLEhzs9fMiPQMMkRmaykgF/+PT15
0vnnEp7mU1t33X3Ks5rfjdTqYg7OtsDu8IFtz7WgHJVyS03HXlGO8u0nIYQlJYZe
OlBFCkdQfHOSy9DooxJXc9rPHBHXcxVIt3j5OpyNe2W3Ot+lJ1Ha0Z+nltWdF28C
5L/ew8698QNGeXvkCVcaXjz/Kfwgefv2FSAUb8MG+4a3MZ+TpnrdFm7kL074dXA6
5T0rBUKFHgU6SBmUnoHO8Wk6H1hxBsc=
-----END CERTIFICATE-----
Generated at Sat Aug 9 23:12:46 2025 by rpki-client