Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft
File:                     aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json)
Hash identifier:          gxEVMPW/zBRYr1otC+oSL63fPZ/1J9d+qOciV/LEDGg=
Subject key identifier:   D9:C9:12:18:EF:8D:7B:DA:7C:19:39:22:D4:31:3D:CD:77:C0:35:62
Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA
Certificate issuer:       /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA
Certificate serial:       6B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft
Manifest number:          66
Signing time:             Sat 09 Aug 2025 07:34:33 +0000
Manifest this update:     Sat 09 Aug 2025 07:34:32 +0000
Manifest next update:     Sat 16 Aug 2025 07:34:32 +0000
Files and hashes:         1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: a/r0+eV5nmueNonw7zEcyV5D6HQ4RTfplKSTK3dmAlY=)
                          2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl
                          rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 107 (0x6b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA
        Validity
            Not Before: Aug  9 07:34:32 2025 GMT
            Not After : Aug 16 07:34:32 2025 GMT
        Subject: CN=6896fa09-5faf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:e4:fa:28:5a:d4:68:c7:22:a8:45:14:a2:9b:
                    1e:28:f8:f1:fc:2c:e9:09:82:34:19:7d:a8:82:6f:
                    7c:f3:d8:e4:0f:57:89:7f:4d:4c:e2:cd:17:d0:a1:
                    7c:82:31:9c:72:83:1e:bb:a8:96:fa:91:1b:6b:99:
                    b4:d1:b2:5d:ff:68:ef:16:5e:ac:09:dc:ca:80:94:
                    ee:ac:d7:c1:0e:d3:30:86:14:45:f7:f6:aa:03:c8:
                    c7:11:bb:f3:c8:09:15:77:69:32:2e:92:f7:fd:99:
                    87:14:39:15:e7:91:fc:b7:7c:c2:e1:5a:e1:b2:de:
                    c2:b6:82:ed:92:85:0a:9d:cf:51:73:94:b1:64:25:
                    97:79:cf:4c:7b:82:d8:55:99:b8:4c:47:08:ed:c0:
                    5c:98:73:63:ec:ea:b0:79:2b:e2:29:bb:ee:f3:ea:
                    52:fa:b5:ed:6c:5a:60:4a:42:37:bd:76:e3:f6:f9:
                    94:39:78:6f:09:2f:6c:b0:b1:80:66:a5:90:e6:cc:
                    d6:b1:ca:20:9b:4e:26:f1:99:51:75:61:ff:8a:71:
                    5c:b9:d6:d5:54:6d:53:5c:e0:df:76:61:a1:da:ad:
                    52:94:87:97:ca:7a:20:fb:9d:75:15:66:ae:53:19:
                    1f:07:89:99:af:06:86:48:2e:56:97:20:5b:b1:76:
                    c8:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:C9:12:18:EF:8D:7B:DA:7C:19:39:22:D4:31:3D:CD:77:C0:35:62
            X509v3 Authority Key Identifier:
                keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:24:c7:f9:d8:ae:7c:e8:4c:5b:1c:c8:3f:86:dc:73:93:a6:
         84:0c:9d:c8:9d:fd:7f:6b:d8:9a:e0:28:a4:35:17:64:a3:98:
         36:c6:13:ca:70:a4:44:62:73:6e:cf:7c:7f:6d:6e:48:c3:62:
         fe:a2:d5:d2:14:e7:b9:70:e5:6d:87:01:b4:cc:dc:88:3d:17:
         1d:b5:ea:96:4c:ff:07:3d:f7:4a:09:20:56:75:4a:a9:d4:4e:
         8c:e2:81:5a:df:e2:e1:c3:39:3d:8a:4c:9b:b9:f8:0b:7a:d3:
         a5:22:08:39:90:6f:c0:01:b7:66:7e:6a:32:cf:f8:14:c0:23:
         8f:30:46:0f:73:2d:6a:34:a9:6a:a9:10:84:16:fd:11:5d:a6:
         cf:3d:e3:81:24:ed:3a:7a:ca:3d:94:84:87:32:56:fe:a4:90:
         9f:e9:e2:3a:89:9b:89:b3:ac:14:ba:43:c8:85:17:a0:ba:29:
         5a:eb:9b:f9:c1:a5:45:7c:67:a8:8f:e2:a9:e6:98:7b:18:74:
         f8:7e:1e:c8:df:b0:8d:9c:86:00:eb:1b:39:08:aa:55:14:48:
         b1:e6:2b:cd:0e:97:a2:0f:b5:44:55:df:36:e3:8d:37:c2:83:
         44:66:bd:86:46:95:5d:39:5a:af:f7:23:90:85:69:5f:7d:b4:
         bd:f0:06:f3
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC
NTg3MUVEQTAeFw0yNTA4MDkwNzM0MzJaFw0yNTA4MTYwNzM0MzJaMBgxFjAUBgNV
BAMTDTY4OTZmYTA5LTVmYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC85PooWtRoxyKoRRSimx4o+PH8LOkJgjQZfaiCb3zz2OQPV4l/TUzizRfQoXyC
MZxygx67qJb6kRtrmbTRsl3/aO8WXqwJ3MqAlO6s18EO0zCGFEX39qoDyMcRu/PI
CRV3aTIukvf9mYcUORXnkfy3fMLhWuGy3sK2gu2ShQqdz1FzlLFkJZd5z0x7gthV
mbhMRwjtwFyYc2Ps6rB5K+Ipu+7z6lL6te1sWmBKQje9duP2+ZQ5eG8JL2ywsYBm
pZDmzNaxyiCbTibxmVF1Yf+KcVy51tVUbVNc4N92YaHarVKUh5fKeiD7nXUVZq5T
GR8HiZmvBoZILlaXIFuxdsjDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2ckSGO+N
e9p8GTki1DE9zXfANWIwHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF
RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0
by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1
MjA4LzlFMjg1NTdFRTRFRTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4
WnhrN3ZRSlR1QzdXSEh0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBALckx/nYrnzoTFscyD+G3HOTpoQMncid/X9r2JrgKKQ1F2SjmDbGE8pw
pERic27PfH9tbkjDYv6i1dIU57lw5W2HAbTM3Ig9Fx216pZM/wc990oJIFZ1SqnU
TozigVrf4uHDOT2KTJu5+At606UiCDmQb8ABt2Z+ajLP+BTAI48wRg9zLWo0qWqp
EIQW/RFdps8944Ek7Tp6yj2UhIcyVv6kkJ/p4jqJm4mzrBS6Q8iFF6C6KVrrm/nB
pUV8Z6iP4qnmmHsYdPh+HsjfsI2chgDrGzkIqlUUSLHmK80Ol6IPtURV3zbjjTfC
g0RmvYZGlV05Wq/3I5CFaV99tL3wBvM=
-----END CERTIFICATE-----
Generated at Sun Aug 10 16:05:47 2025 by rpki-client