Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
File:                     x5XlnAMMfJKfy-R0Gfxexp4frP0.mft (raw, json)
Hash identifier:          gnYK3exct0558r+h3FijlcXscCIGhVKRHi1wwq89UWc=
Subject key identifier:   26:B2:20:74:95:B3:B8:2B:1A:C5:DB:35:69:01:90:26:79:84:A8:A5
Authority key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD
Certificate issuer:       /CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD
Certificate serial:       0772
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
Manifest number:          076C
Signing time:             Wed 06 Aug 2025 21:55:09 +0000
Manifest this update:     Wed 06 Aug 2025 21:55:08 +0000
Manifest next update:     Wed 13 Aug 2025 21:55:08 +0000
Files and hashes:         1: x5XlnAMMfJKfy-R0Gfxexp4frP0.crl (hash: MApiLDbBAc08ZFt4CaZhwPpOwc82j4Ts00kh869nCKU=)
                          2: B722FC542A0411EB992DD32EC4F9AE02.roa (hash: wsrS8Hj9tlKWrRYJKi3rNPfDpEOnN9QMK0e9qX0Cib4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl
                          rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 21:55:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1906 (0x772)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A3FEB, serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD
        Validity
            Not Before: Aug  6 21:55:08 2025 GMT
            Not After : Aug 13 21:55:08 2025 GMT
        Subject: CN=6893cf3c-a267
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:a9:fc:a4:1e:e5:b9:e5:40:92:1b:25:3b:73:
                    4e:36:79:fa:93:7c:59:44:9b:37:10:dd:7d:5d:82:
                    67:05:cf:91:db:e3:6c:17:1a:c1:a8:50:e1:36:71:
                    32:15:c0:43:34:4f:f6:b4:3c:8a:ad:17:4e:c8:09:
                    7b:9b:7c:55:b8:fc:26:56:75:bf:03:b4:fd:85:71:
                    83:c3:e7:47:8b:da:ce:95:42:09:6c:1a:89:63:67:
                    70:51:c1:18:2e:9a:58:37:e6:e0:2f:c0:d5:b8:b2:
                    1f:cb:22:c7:28:54:b4:c6:d8:74:7a:0f:f0:53:9e:
                    31:54:02:97:f4:c4:a2:08:6f:ee:ea:01:91:19:31:
                    eb:2f:70:be:22:8b:4c:b7:71:21:32:ff:50:90:f7:
                    e7:05:6a:98:44:ba:39:47:3d:20:9d:09:83:a3:e9:
                    59:7d:d3:9c:db:5d:97:6a:53:b4:07:aa:2a:14:13:
                    c4:b3:36:5c:7c:3a:c2:d3:c1:f6:ef:c9:6a:67:e2:
                    f3:76:6f:fb:37:fe:99:97:e1:f8:84:6c:8b:b9:1b:
                    84:79:68:b7:c9:15:30:8d:b9:ed:33:d2:97:42:91:
                    9f:10:c6:8a:74:48:5f:2f:85:7b:68:24:09:37:68:
                    2c:e1:6e:7f:e9:c2:ce:36:bc:c7:97:55:7e:d5:0c:
                    97:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:B2:20:74:95:B3:B8:2B:1A:C5:DB:35:69:01:90:26:79:84:A8:A5
            X509v3 Authority Key Identifier:
                keyid:C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:88:08:c1:9f:43:77:91:b3:2e:d5:ad:61:d2:cf:fc:e4:fb:
         0a:79:f1:b2:45:21:d1:91:46:59:d6:20:27:0d:34:14:52:3a:
         a7:61:c6:7b:39:7e:b2:85:12:e2:a4:38:bf:2f:a4:36:34:42:
         9f:5c:ec:33:7e:91:59:29:4b:38:eb:33:12:69:dd:5c:a5:36:
         af:c0:72:76:40:69:57:f2:34:19:68:84:e9:b9:34:64:28:0d:
         2a:56:f9:71:62:f2:29:24:85:72:9c:f2:1d:98:d0:33:3e:47:
         0a:a4:34:21:92:0e:29:c3:a1:ee:1c:b7:e6:d6:c3:87:2d:c6:
         67:9a:28:ed:f8:9b:62:3c:01:93:e6:18:1e:f8:b2:9d:9d:2d:
         3c:2d:77:d9:17:de:cd:67:ce:58:9d:39:91:a4:2f:93:8c:9f:
         06:d9:98:70:30:bf:43:f0:c1:bb:0a:54:45:02:46:f8:5e:90:
         0b:d4:86:b8:d1:c6:e0:5a:3c:64:5b:81:ab:67:ad:7e:67:15:
         b0:bb:8b:22:22:17:12:e4:78:5f:a4:82:3f:d7:3c:de:3f:5a:
         20:77:2e:8f:96:b4:cc:7c:62:00:20:02:e6:8f:1e:8d:f7:4a:
         f7:64:a2:d4:94:a1:38:c7:ad:9c:a2:5b:4f:f8:0f:8e:bb:a0:
         2c:d0:cd:b4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTNGRUIxMTAvBgNVBAUTKEM3OTVFNTlDMDMwQzdDOTI5RkNCRTQ3NDE5RkM1RUM2
OUUxRkFDRkQwHhcNMjUwODA2MjE1NTA4WhcNMjUwODEzMjE1NTA4WjAYMRYwFAYD
VQQDEw02ODkzY2YzYy1hMjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAm6n8pB7lueVAkhslO3NONnn6k3xZRJs3EN19XYJnBc+R2+NsFxrBqFDhNnEy
FcBDNE/2tDyKrRdOyAl7m3xVuPwmVnW/A7T9hXGDw+dHi9rOlUIJbBqJY2dwUcEY
LppYN+bgL8DVuLIfyyLHKFS0xth0eg/wU54xVAKX9MSiCG/u6gGRGTHrL3C+IotM
t3EhMv9QkPfnBWqYRLo5Rz0gnQmDo+lZfdOc212XalO0B6oqFBPEszZcfDrC08H2
78lqZ+Lzdm/7N/6Zl+H4hGyLuRuEeWi3yRUwjbntM9KXQpGfEMaKdEhfL4V7aCQJ
N2gs4W5/6cLONrzHl1V+1QyX0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCayIHSV
s7grGsXbNWkBkCZ5hKilMB8GA1UdIwQYMBaAFMeV5ZwDDHySn8vkdBn8XsaeH6z9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZFQi9CMDE4QUQ5NjI5
MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZKS2Z5LVIwR2Z4ZXhwNGZy
UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3g1WGxuQU1NZkpLZnktUjBHZnhleHA0ZnJQMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
M0ZFQi9CMDE4QUQ5NjI5MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZK
S2Z5LVIwR2Z4ZXhwNGZyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB3iAjBn0N3kbMu1a1h0s/85PsKefGyRSHRkUZZ1iAnDTQUUjqnYcZ7
OX6yhRLipDi/L6Q2NEKfXOwzfpFZKUs46zMSad1cpTavwHJ2QGlX8jQZaITpuTRk
KA0qVvlxYvIpJIVynPIdmNAzPkcKpDQhkg4pw6HuHLfm1sOHLcZnmijt+JtiPAGT
5hge+LKdnS08LXfZF97NZ85YnTmRpC+TjJ8G2ZhwML9D8MG7ClRFAkb4XpAL1Ia4
0cbgWjxkW4GrZ61+ZxWwu4siIhcS5HhfpII/1zzeP1ogdy6PlrTMfGIAIALmjx6N
90r3ZKLUlKE4x62coltP+A+Ou6As0M20
-----END CERTIFICATE-----
Generated at Fri Aug 8 00:32:12 2025 by rpki-client