Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft
File:                     2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json)
Hash identifier:          0d4n5kg3N9HB45VNsXD85gSSDt/OOTtalmeU7dfPlWc=
Subject key identifier:   B4:01:79:2F:D0:35:30:A8:BB:6A:76:49:24:6F:57:98:72:FD:F6:15
Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E
Certificate issuer:       /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E
Certificate serial:       0E2B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft
Manifest number:          0E12
Signing time:             Sat 02 Aug 2025 18:01:38 +0000
Manifest this update:     Sat 02 Aug 2025 18:01:37 +0000
Manifest next update:     Sat 09 Aug 2025 18:01:37 +0000
Files and hashes:         1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: umn5Wv4H2qEUm117Pjjb45ZDaFkjLBFpyrj4eXW4zlA=)
                          2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: 4QYUWAD8mV7goqY2eyB8OTjIn05Ok4IHRMJOhxEL9Q0=)
                          3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: WrORF911HLcFuZdH0HRCb0Ilepojo6I2DwL+ZjMpcO0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl
                          rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 09 Aug 2025 18:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3627 (0xe2b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E
        Validity
            Not Before: Aug  2 18:01:37 2025 GMT
            Not After : Aug  9 18:01:37 2025 GMT
        Subject: CN=688e5282-ae01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:54:40:d1:f0:c5:a6:08:34:32:5d:02:90:51:
                    03:48:b5:2a:90:96:26:7e:4f:a1:9f:65:48:af:0e:
                    a0:80:a0:65:3c:90:bf:c0:f8:cf:e2:d0:8a:c9:98:
                    bf:03:23:b2:6b:b8:73:8d:b2:b7:d0:98:3d:15:9f:
                    56:b8:3f:df:60:fa:89:4a:fd:f7:08:13:e9:78:86:
                    5e:a3:51:f5:88:a8:28:c2:41:eb:6a:22:71:48:6d:
                    7b:d5:65:64:ba:ec:b5:2d:ac:47:dd:ab:e0:ea:39:
                    99:81:f4:37:be:06:9b:67:78:5f:f0:15:e5:77:44:
                    c5:40:76:9e:cb:1d:a9:2a:18:35:83:04:d4:3c:0e:
                    93:e0:a0:33:ae:4d:dd:62:9e:6d:54:62:86:59:77:
                    03:41:a6:e0:88:41:2a:fe:34:af:05:cc:98:54:77:
                    d3:6b:04:af:33:d1:c0:e9:78:af:0d:5d:5f:c6:71:
                    db:8c:71:c1:ee:3c:cd:a6:78:58:5f:b6:45:dc:98:
                    6f:41:17:a2:36:89:03:19:dd:7d:14:a6:07:82:71:
                    b6:bd:63:da:d6:43:26:d4:8b:c8:90:e4:94:c0:8e:
                    a5:a9:ea:57:9e:b9:b6:36:da:56:07:a6:74:2c:0d:
                    cc:c6:7e:7f:37:13:b7:25:69:48:89:5d:f0:cb:08:
                    02:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:01:79:2F:D0:35:30:A8:BB:6A:76:49:24:6F:57:98:72:FD:F6:15
            X509v3 Authority Key Identifier:
                keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:2e:db:f8:e2:24:d3:2f:41:7f:cc:cb:97:70:75:9e:f9:36:
         72:4a:88:bc:d1:cf:f0:15:d9:6e:09:9a:98:26:79:03:a2:4a:
         c9:9f:bb:9e:4c:f4:34:2d:12:41:f5:0a:f6:b3:98:a4:9a:b2:
         4b:5d:8a:6a:c3:d7:b6:74:1f:96:c3:57:d1:fd:45:cf:96:7a:
         e1:67:03:bc:9c:3e:90:bb:1c:16:0f:53:af:2e:ba:5e:eb:f7:
         59:8b:05:2e:e5:4d:ce:b1:06:50:ea:a8:ee:17:13:5f:b5:1d:
         56:30:32:1b:cc:cd:6a:60:93:3a:37:d9:fe:f3:15:c6:94:3e:
         24:51:9b:c4:a7:a1:ad:6f:ea:c7:ba:54:f5:84:d8:e6:6d:0d:
         4e:04:c5:d4:26:05:b7:1e:4c:69:e8:e3:5f:4d:39:29:ab:b0:
         60:85:c8:47:1b:3e:97:ce:e0:3f:85:8b:a9:18:13:e5:01:b6:
         31:b3:e3:66:2e:38:89:81:98:d1:0a:3b:5c:2a:92:dd:85:fc:
         d3:65:31:dd:9e:8f:f8:a9:f4:83:27:3c:bb:76:5b:c6:97:7a:
         c9:17:24:ca:4b:89:90:24:85:d8:41:37:fe:7f:a5:9f:93:d9:
         d4:35:ad:b0:6e:bb:a9:c1:51:3b:37:7c:71:c5:95:bd:52:d7:
         58:57:c7:91
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE
MTMyOEFFMEUwHhcNMjUwODAyMTgwMTM3WhcNMjUwODA5MTgwMTM3WjAYMRYwFAYD
VQQDEw02ODhlNTI4Mi1hZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwlRA0fDFpgg0Ml0CkFEDSLUqkJYmfk+hn2VIrw6ggKBlPJC/wPjP4tCKyZi/
AyOya7hzjbK30Jg9FZ9WuD/fYPqJSv33CBPpeIZeo1H1iKgowkHraiJxSG171WVk
uuy1LaxH3avg6jmZgfQ3vgabZ3hf8BXld0TFQHaeyx2pKhg1gwTUPA6T4KAzrk3d
Yp5tVGKGWXcDQabgiEEq/jSvBcyYVHfTawSvM9HA6XivDV1fxnHbjHHB7jzNpnhY
X7ZF3JhvQReiNokDGd19FKYHgnG2vWPa1kMm1IvIkOSUwI6lqepXnrm2NtpWB6Z0
LA3Mxn5/NxO3JWlIiV3wywgCZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQBeS/Q
NTCou2p2SSRvV5hy/fYVMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz
OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y
ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI
UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCwLtv44iTTL0F/zMuXcHWe+TZySoi80c/wFdluCZqYJnkDokrJn7ue
TPQ0LRJB9Qr2s5ikmrJLXYpqw9e2dB+Ww1fR/UXPlnrhZwO8nD6QuxwWD1OvLrpe
6/dZiwUu5U3OsQZQ6qjuFxNftR1WMDIbzM1qYJM6N9n+8xXGlD4kUZvEp6Gtb+rH
ulT1hNjmbQ1OBMXUJgW3Hkxp6ONfTTkpq7BghchHGz6XzuA/hYupGBPlAbYxs+Nm
LjiJgZjRCjtcKpLdhfzTZTHdno/4qfSDJzy7dlvGl3rJFyTKS4mQJIXYQTf+f6Wf
k9nUNa2wbrupwVE7N3xxxZW9UtdYV8eR
-----END CERTIFICATE-----
Generated at Mon Aug 4 16:10:56 2025 by rpki-client