Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft
File:                     iEiqzfKVEwPnCY9BnYygBCKJDGk.mft (raw, json)
Hash identifier:          9bh00U3yA2Bp5YKkUpjjRFjJY7ApOGBSnn2kr4vTr5Y=
Subject key identifier:   1D:9D:FD:F2:E8:3C:9E:2B:BF:98:FB:E1:53:3A:DD:3A:DA:D3:47:93
Authority key identifier: 88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69
Certificate issuer:       /CN=A91A8047/serialNumber=8848AACDF2951303E7098F419D8CA00422890C69
Certificate serial:       A3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft
Manifest number:          9A
Signing time:             Mon 11 Aug 2025 06:41:23 +0000
Manifest this update:     Mon 11 Aug 2025 06:41:23 +0000
Manifest next update:     Mon 18 Aug 2025 06:41:23 +0000
Files and hashes:         1: iEiqzfKVEwPnCY9BnYygBCKJDGk.crl (hash: ObyQ5zk5OVtOkWrshZnn1Lc1dqBZE+JqdbvnurZvH3U=)
                          2: 029310329B1911EFA0BD6470C4F9AE02.roa (hash: ipUtH6de1n3QDXNmS4idd62IMEQfE9S8Kl6BBzpD9nQ=)
                          3: 07BAAB7C9B1611EFB5C28465C4F9AE02.roa (hash: ofbztl5uVlglZWvlUxP/w/vzUs13H0jw290VgxrDPX8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl
                          rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 163 (0xa3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A8047, serialNumber=8848AACDF2951303E7098F419D8CA00422890C69
        Validity
            Not Before: Aug 11 06:41:23 2025 GMT
            Not After : Aug 18 06:41:23 2025 GMT
        Subject: CN=68999093-40f8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:6a:76:8d:47:8f:75:a1:b2:b0:1e:76:02:d5:
                    9c:03:f7:04:c5:a8:8e:66:5e:9a:62:cd:89:3d:f4:
                    e1:08:52:05:64:d5:82:9d:08:86:8e:1b:47:0a:42:
                    3a:e9:9b:9c:48:32:9e:00:d1:ae:7f:6a:21:9c:bf:
                    24:63:53:22:80:e1:c2:d1:84:d4:05:c9:ef:8f:dd:
                    62:f8:5d:c5:40:33:58:80:11:03:1c:a3:fe:32:8c:
                    06:f9:1d:a5:e8:55:09:1d:a2:f9:e0:51:ee:26:e9:
                    98:71:07:3d:50:dc:19:87:af:17:39:ce:0f:f0:23:
                    12:fb:ec:cf:63:c5:0c:d9:06:23:a6:9c:fe:29:43:
                    39:cb:69:8b:fb:d4:0f:4f:9e:c7:c4:90:9f:6f:0e:
                    60:37:3f:23:4b:88:58:ac:c7:dc:62:a7:e3:98:a2:
                    e9:11:44:c3:c7:ed:d8:c9:f7:d2:a2:59:09:82:de:
                    b1:15:d1:f2:26:75:a6:48:50:b9:c4:fe:74:68:7b:
                    d2:1e:20:59:0c:b1:e2:62:e4:77:84:ce:56:e6:c5:
                    a4:32:2d:34:4c:b6:9b:15:81:ee:27:fd:78:42:58:
                    0e:e7:5b:78:bd:87:93:16:4f:5b:b1:c8:b5:18:2c:
                    fc:e0:c4:98:86:39:a3:91:a5:1a:dd:94:70:b3:37:
                    7c:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:9D:FD:F2:E8:3C:9E:2B:BF:98:FB:E1:53:3A:DD:3A:DA:D3:47:93
            X509v3 Authority Key Identifier:
                keyid:88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:23:15:a4:e2:ab:1d:c3:1b:3e:eb:21:2f:2a:d4:9d:ed:6b:
         2f:f6:e2:d3:44:54:36:34:f1:b5:b2:56:ea:11:f6:98:55:92:
         bd:fd:3f:c3:1f:42:a3:5f:73:db:da:4e:8b:39:0e:46:09:e6:
         ce:73:0f:69:e4:29:56:b1:67:bd:9b:d1:7a:05:e5:0a:e1:94:
         ef:cf:7a:b8:c2:e1:81:45:31:ee:d1:e8:d2:4d:3d:34:26:14:
         1c:ef:a3:35:ee:f8:3c:c7:13:f0:23:e5:8d:5d:32:a4:30:e0:
         aa:84:64:e1:19:2a:83:7f:3d:61:f8:54:3c:0a:33:b8:1b:ef:
         95:cf:cd:1a:1d:b2:05:05:8d:48:08:05:d9:08:73:74:ea:2a:
         42:3b:70:cd:b9:a8:00:55:f7:1c:c5:f5:37:66:79:76:d3:b3:
         98:6b:42:a5:b5:c4:b8:d4:af:0d:95:58:cc:2e:e4:09:1c:ac:
         77:10:a9:ca:ce:de:f2:17:47:85:68:1c:8f:77:66:a7:a4:d3:
         24:a3:9a:c2:a7:e8:88:7f:cd:fb:b7:a6:34:02:60:a5:66:b1:
         cb:8b:8e:d7:f3:af:70:49:4a:3c:ac:25:56:6c:04:f8:7b:96:
         f1:35:d6:7c:47:62:40:fe:b7:0c:aa:e6:13:16:ed:ef:79:e6:
         68:8c:de:4b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTgwNDcxMTAvBgNVBAUTKDg4NDhBQUNERjI5NTEzMDNFNzA5OEY0MTlEOENBMDA0
MjI4OTBDNjkwHhcNMjUwODExMDY0MTIzWhcNMjUwODE4MDY0MTIzWjAYMRYwFAYD
VQQDEw02ODk5OTA5My00MGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1Gp2jUePdaGysB52AtWcA/cExaiOZl6aYs2JPfThCFIFZNWCnQiGjhtHCkI6
6ZucSDKeANGuf2ohnL8kY1MigOHC0YTUBcnvj91i+F3FQDNYgBEDHKP+MowG+R2l
6FUJHaL54FHuJumYcQc9UNwZh68XOc4P8CMS++zPY8UM2QYjppz+KUM5y2mL+9QP
T57HxJCfbw5gNz8jS4hYrMfcYqfjmKLpEUTDx+3YyffSolkJgt6xFdHyJnWmSFC5
xP50aHvSHiBZDLHiYuR3hM5W5sWkMi00TLabFYHuJ/14QlgO51t4vYeTFk9bsci1
GCz84MSYhjmjkaUa3ZRwszd8zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2d/fLo
PJ4rv5j74VM63Tra00eTMB8GA1UdIwQYMBaAFIhIqs3ylRMD5wmPQZ2MoAQiiQxp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODA0Ny8zNDRBMDFBMjlC
MTUxMUVGODZFQjM3NDZDNEY5QUUwMi9pRWlxemZLVkV3UG5DWTlCbll5Z0JDS0pE
R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lFaXF6ZktWRXdQbkNZOUJuWXlnQkNLSkRHay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
ODA0Ny8zNDRBMDFBMjlCMTUxMUVGODZFQjM3NDZDNEY5QUUwMi9pRWlxemZLVkV3
UG5DWTlCbll5Z0JDS0pER2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAEIxWk4qsdwxs+6yEvKtSd7Wsv9uLTRFQ2NPG1slbqEfaYVZK9/T/D
H0KjX3Pb2k6LOQ5GCebOcw9p5ClWsWe9m9F6BeUK4ZTvz3q4wuGBRTHu0ejSTT00
JhQc76M17vg8xxPwI+WNXTKkMOCqhGThGSqDfz1h+FQ8CjO4G++Vz80aHbIFBY1I
CAXZCHN06ipCO3DNuagAVfccxfU3Znl207OYa0KltcS41K8NlVjMLuQJHKx3EKnK
zt7yF0eFaByPd2anpNMko5rCp+iIf837t6Y0AmClZrHLi47X869wSUo8rCVWbAT4
e5bxNdZ8R2JA/rcMquYTFu3veeZojN5L
-----END CERTIFICATE-----
Generated at Mon Aug 11 09:02:50 2025 by rpki-client