Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft
File:                     aj72cYLbsPbM88pBN4wBGYBq6b0.mft (raw, json)
Hash identifier:          daz2/A/H+CSKTFuOIOQYhyicGIibC8b1ZbH2w8WpBt0=
Subject key identifier:   5A:A1:DE:0F:5C:F9:6B:1E:BA:86:91:75:98:CD:D2:D1:95:27:EB:D1
Authority key identifier: 6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD
Certificate issuer:       /CN=A91A0A2E/serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD
Certificate serial:       5F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft
Manifest number:          5C
Signing time:             Thu 07 Aug 2025 07:43:51 +0000
Manifest this update:     Thu 07 Aug 2025 07:43:50 +0000
Manifest next update:     Thu 14 Aug 2025 07:43:50 +0000
Files and hashes:         1: aj72cYLbsPbM88pBN4wBGYBq6b0.crl (hash: +25MYWwdl78MfxFt7D3oZSUt7gfGWuNMe2Myk70Ur8Y=)
                          2: FDE6938CE90C11EFB9D98326C4F9AE02.roa (hash: EQY90pkMKZS20T7XhciTL191HbTMnbpWtQHaja8QyGI=)
                          3: F449A3FCE9C811EF9972A934C4F9AE02.roa (hash: 7MwfNHRXASMEn22ZfT4zj9oG/ZQKY9GDP1pjifjdSXI=)
                          4: FD63D5BEE90C11EFB9D98326C4F9AE02.roa (hash: XHfUu+5yh0x5y1fbUjOYEtUpMyJC2J2Z1oZf8nnZcak=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl
                          rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 95 (0x5f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A0A2E, serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD
        Validity
            Not Before: Aug  7 07:43:50 2025 GMT
            Not After : Aug 14 07:43:50 2025 GMT
        Subject: CN=68945937-2ff7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:8e:cf:5c:d2:b1:0c:43:0d:a2:30:27:8d:66:
                    f2:a4:92:a8:b6:88:e1:69:db:45:98:5e:4e:f1:a7:
                    d3:e0:b7:d3:d1:a2:32:76:1f:dd:5e:7f:ba:d7:cc:
                    72:9a:ae:28:d0:33:29:4a:32:03:bb:e7:9f:e0:43:
                    97:05:a6:28:87:e1:ed:0d:71:92:e8:85:d2:11:8f:
                    32:75:de:6f:57:7f:e2:d1:c6:b1:ed:57:2a:5f:b6:
                    d7:25:ac:3c:cb:ee:a7:af:6e:20:7e:a0:4f:ee:64:
                    ff:cd:9b:50:41:bb:39:41:ca:e4:d0:80:64:75:d0:
                    44:29:ec:a4:63:7d:6e:e8:ee:42:ca:ea:a2:ec:56:
                    2b:7e:59:51:71:a0:7b:76:fa:b9:c0:63:84:0e:9c:
                    91:7a:5a:9d:28:98:7e:93:fa:94:9a:29:b5:a3:40:
                    8c:23:af:a3:2b:58:2d:6c:18:7e:4d:d5:a6:87:02:
                    90:84:65:c0:6f:74:8a:5f:d1:72:ce:ce:94:c5:5b:
                    48:ec:38:2d:3c:f3:b2:a8:26:f1:fd:a8:94:d6:3b:
                    d8:ef:f9:d7:95:84:fb:e2:d2:3e:82:87:98:03:ee:
                    61:b3:7b:80:09:19:7c:72:9a:e5:4a:eb:a8:42:98:
                    05:61:40:46:0b:4d:d8:3d:9a:53:8c:60:2b:85:17:
                    85:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:A1:DE:0F:5C:F9:6B:1E:BA:86:91:75:98:CD:D2:D1:95:27:EB:D1
            X509v3 Authority Key Identifier:
                keyid:6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:79:22:0e:b0:e1:6a:7b:7b:f5:2f:0a:46:41:46:2a:e1:de:
         26:4d:d8:e3:22:5d:c2:66:e5:9e:53:08:d9:6b:5c:a6:3a:23:
         2c:74:71:3d:5c:1a:c4:13:0b:1c:55:29:a9:f8:f4:3c:d7:ce:
         e2:a3:be:d6:9f:81:32:04:5a:7d:64:2e:97:4a:d0:cb:6d:df:
         ce:5b:2f:50:f6:ae:f4:40:31:4a:95:ec:25:46:c7:26:38:33:
         9a:de:6e:02:64:60:38:f0:e4:1d:bd:19:93:1b:6b:5a:a4:e3:
         57:cb:76:c7:fa:70:ea:51:66:f3:9d:ba:8b:b6:30:ad:e3:71:
         1b:16:15:5a:28:fe:55:67:0f:f9:7a:20:40:db:1d:f3:b1:bc:
         2a:62:6e:4a:1d:14:9a:a1:e9:2f:00:a7:18:fd:41:b6:d0:7c:
         8f:73:33:f6:a8:cd:48:c3:a9:c4:73:23:f6:4a:72:57:c7:73:
         30:9f:26:c8:2e:94:98:b2:73:55:34:f9:0b:c0:be:ba:85:da:
         3e:07:62:54:0c:91:49:7e:e7:dd:c0:a4:fb:f6:9a:4f:4f:0e:
         81:d6:a7:a3:8a:b8:f0:87:0b:97:f6:1d:c1:76:a3:c2:d8:c9:
         f9:3b:83:9d:ce:a4:fc:42:de:7a:21:4f:90:29:2a:6c:0d:39:
         c6:10:f2:6d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
MEEyRTExMC8GA1UEBRMoNkEzRUY2NzE4MkRCQjBGNkNDRjNDQTQxMzc4QzAxMTk4
MDZBRTlCRDAeFw0yNTA4MDcwNzQzNTBaFw0yNTA4MTQwNzQzNTBaMBgxFjAUBgNV
BAMTDTY4OTQ1OTM3LTJmZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCpjs9c0rEMQw2iMCeNZvKkkqi2iOFp20WYXk7xp9Pgt9PRojJ2H91ef7rXzHKa
rijQMylKMgO755/gQ5cFpiiH4e0NcZLohdIRjzJ13m9Xf+LRxrHtVypfttclrDzL
7qevbiB+oE/uZP/Nm1BBuzlByuTQgGR10EQp7KRjfW7o7kLK6qLsVit+WVFxoHt2
+rnAY4QOnJF6Wp0omH6T+pSaKbWjQIwjr6MrWC1sGH5N1aaHApCEZcBvdIpf0XLO
zpTFW0jsOC0887KoJvH9qJTWO9jv+deVhPvi0j6Ch5gD7mGze4AJGXxymuVK66hC
mAVhQEYLTdg9mlOMYCuFF4VRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWqHeD1z5
ax66hpF1mM3S0ZUn69EwHwYDVR0jBBgwFoAUaj72cYLbsPbM88pBN4wBGYBq6b0w
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwQTJFL0M4MzZDN0IyRTkw
QjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1BiTTg4cEJONHdCR1lCcTZi
MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvYWo3MmNZTGJzUGJNODhwQk40d0JHWUJxNmIwLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw
QTJFL0M4MzZDN0IyRTkwQjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1Bi
TTg4cEJONHdCR1lCcTZiMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAJR5Ig6w4Wp7e/UvCkZBRirh3iZN2OMiXcJm5Z5TCNlrXKY6Iyx0cT1c
GsQTCxxVKan49DzXzuKjvtafgTIEWn1kLpdK0Mtt385bL1D2rvRAMUqV7CVGxyY4
M5rebgJkYDjw5B29GZMba1qk41fLdsf6cOpRZvOduou2MK3jcRsWFVoo/lVnD/l6
IEDbHfOxvCpibkodFJqh6S8Apxj9QbbQfI9zM/aozUjDqcRzI/ZKclfHczCfJsgu
lJiyc1U0+QvAvrqF2j4HYlQMkUl+593ApPv2mk9PDoHWp6OKuPCHC5f2HcF2o8LY
yfk7g53OpPxC3nohT5ApKmwNOcYQ8m0=
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:15 2025 by rpki-client