Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft
File:                     oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json)
Hash identifier:          TU9XTBJak1y+J7DvaMSPkMnMV5i+Lb+h1IP6rM/4kPA=
Subject key identifier:   EC:2E:F5:54:67:52:36:86:E7:75:BE:2B:F2:C8:87:36:84:76:C3:82
Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43
Certificate issuer:       /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943
Certificate serial:       0918
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft
Manifest number:          090B
Signing time:             Fri 08 Aug 2025 20:40:49 +0000
Manifest this update:     Fri 08 Aug 2025 20:40:48 +0000
Manifest next update:     Fri 15 Aug 2025 20:40:48 +0000
Files and hashes:         1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: Ns6piI1xCyba5rd9OtqeJWG48v5Hdu9hNCFhy7bKCD8=)
                          2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: jBS/1Hlfhun69e6e4ZHEVPi7ipp4H+jsjI8X7M9ZNQw=)
                          3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: /W7jNuOZe0YfOd8yIagbqgnCN+PhgeGc0tSQIMsMPPI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl
                          rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2328 (0x918)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943
        Validity
            Not Before: Aug  8 20:40:48 2025 GMT
            Not After : Aug 15 20:40:48 2025 GMT
        Subject: CN=689660d1-44ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:af:e8:c5:78:23:1a:99:b3:90:07:4a:73:1a:
                    69:af:cf:a0:c6:40:f2:9e:1d:63:d7:90:36:9f:1a:
                    e4:2d:67:8e:5e:91:92:77:54:a4:f8:de:89:2d:d3:
                    ba:70:90:5e:33:02:72:1a:04:76:aa:f4:95:6b:5d:
                    12:2c:8d:18:be:3c:e5:c9:b3:ec:37:25:81:59:f4:
                    e6:c5:22:e4:31:86:c3:82:7d:6d:25:ea:61:3a:04:
                    2b:35:72:75:eb:fb:15:31:c2:f0:7d:27:c6:64:90:
                    95:d1:3c:28:81:32:3a:32:b8:71:f1:9f:50:78:08:
                    ef:3f:62:f8:76:15:05:93:09:e6:68:93:3c:bd:07:
                    ec:e1:dc:92:e2:11:37:f6:01:dd:48:92:d6:bf:1a:
                    9a:ad:6e:ed:d3:15:0a:e4:f3:2c:eb:b4:ec:38:2c:
                    1d:18:c4:60:89:bc:52:a2:b0:5d:ca:58:1e:68:4f:
                    50:12:ab:e5:3d:bd:2e:c6:4b:b1:c3:be:2b:1e:10:
                    08:15:61:69:34:8b:c5:8c:66:1b:b2:9b:0b:23:9e:
                    0c:8d:fc:ac:54:24:b0:fe:82:93:7a:c8:cf:8d:cf:
                    15:c7:ec:e1:1b:51:e0:89:07:ad:cb:16:69:38:5b:
                    5d:ff:5c:cd:67:39:ae:18:65:ba:04:9e:82:12:f6:
                    70:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:2E:F5:54:67:52:36:86:E7:75:BE:2B:F2:C8:87:36:84:76:C3:82
            X509v3 Authority Key Identifier:
                keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:65:a0:c2:2f:85:50:4f:77:b8:59:87:94:87:2e:9d:92:ed:
         6c:4e:65:96:71:bd:12:f6:43:8c:83:d5:52:bd:6d:be:5a:5b:
         02:7a:48:c0:0b:c5:79:0c:34:6b:fb:d0:9b:8c:7b:26:8c:5b:
         c5:27:65:67:78:67:e4:7b:4b:17:9b:6e:88:90:a2:bb:9c:5d:
         06:49:1d:d1:34:ac:9f:5e:c6:55:40:c0:e4:d4:18:55:fd:cd:
         e4:5f:06:fa:62:17:c3:b2:7a:56:da:f6:64:2e:0b:c0:25:5a:
         e9:ac:fa:c3:83:4b:ff:a1:e7:42:16:67:fe:da:0e:69:e0:13:
         de:e2:c1:fe:c7:6b:e9:25:81:0e:5e:7b:d1:b6:1e:26:ba:94:
         9c:00:68:55:6c:09:5b:c8:a9:83:22:a3:d2:5b:13:45:c1:df:
         11:97:fb:54:23:22:6e:33:07:0b:fb:0b:34:46:79:6d:b0:87:
         b4:a2:5b:e5:65:43:f7:c4:14:1f:6a:a2:63:d7:48:4c:03:3d:
         32:2f:fd:77:98:dd:f4:b8:53:35:41:c9:f4:1a:41:95:69:cc:
         9e:6e:0b:4c:57:6e:6b:f7:ba:48:fc:b4:31:f0:ef:20:e2:70:
         d5:4e:a6:d7:f2:aa:a0:7b:cf:37:cd:92:17:9a:e2:55:40:2b:
         95:0c:e9:5e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2
NTAzN0I5NDMwHhcNMjUwODA4MjA0MDQ4WhcNMjUwODE1MjA0MDQ4WjAYMRYwFAYD
VQQDEw02ODk2NjBkMS00NGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqa/oxXgjGpmzkAdKcxppr8+gxkDynh1j15A2nxrkLWeOXpGSd1Sk+N6JLdO6
cJBeMwJyGgR2qvSVa10SLI0YvjzlybPsNyWBWfTmxSLkMYbDgn1tJephOgQrNXJ1
6/sVMcLwfSfGZJCV0TwogTI6Mrhx8Z9QeAjvP2L4dhUFkwnmaJM8vQfs4dyS4hE3
9gHdSJLWvxqarW7t0xUK5PMs67TsOCwdGMRgibxSorBdylgeaE9QEqvlPb0uxkux
w74rHhAIFWFpNIvFjGYbspsLI54MjfysVCSw/oKTesjPjc8Vx+zhG1HgiQetyxZp
OFtd/1zNZzmuGGW6BJ6CEvZw6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwu9VRn
UjaG53W+K/LIhzaEdsOCMB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE
QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1
VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3
VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBCZaDCL4VQT3e4WYeUhy6dku1sTmWWcb0S9kOMg9VSvW2+WlsCekjA
C8V5DDRr+9CbjHsmjFvFJ2VneGfke0sXm26IkKK7nF0GSR3RNKyfXsZVQMDk1BhV
/c3kXwb6YhfDsnpW2vZkLgvAJVrprPrDg0v/oedCFmf+2g5p4BPe4sH+x2vpJYEO
XnvRth4mupScAGhVbAlbyKmDIqPSWxNFwd8Rl/tUIyJuMwcL+ws0RnltsIe0olvl
ZUP3xBQfaqJj10hMAz0yL/13mN30uFM1Qcn0GkGVacyebgtMV25r97pI/LQx8O8g
4nDVTqbX8qqge883zZIXmuJVQCuVDOle
-----END CERTIFICATE-----
Generated at Sun Aug 10 04:24:34 2025 by rpki-client