Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft
File:                     2K83cS1WsbaT720D40bADPPwST4.mft (raw, json)
Hash identifier:          lwj7RACQsHH6F6psozpEW/cLckAUroH7wiHVT1EQeEQ=
Subject key identifier:   41:FA:29:00:64:1E:A9:C9:C7:E2:73:67:D3:C0:D5:9C:73:54:C7:13
Authority key identifier: D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E
Certificate issuer:       /CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E
Certificate serial:       0F76
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft
Manifest number:          0F68
Signing time:             Mon 04 Aug 2025 17:46:30 +0000
Manifest this update:     Mon 04 Aug 2025 17:46:30 +0000
Manifest next update:     Mon 11 Aug 2025 17:46:30 +0000
Files and hashes:         1: 2K83cS1WsbaT720D40bADPPwST4.crl (hash: ktk7CAM7KMWSMOtel2aLsQYaeExs+xfwzyfRUmfItYo=)
                          2: CC99502E382F11EEAB87A63EC4F9AE02.roa (hash: H75rCk5vM8kD4h9GxneHBI+FagArNRGg0zjNp/brQWY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl
                          rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 17:46:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3958 (0xf76)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A86D0, serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E
        Validity
            Not Before: Aug  4 17:46:30 2025 GMT
            Not After : Aug 11 17:46:30 2025 GMT
        Subject: CN=6890f1f6-7bbd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:5b:31:4c:0c:d1:3a:cd:b6:84:cf:3e:92:22:
                    3d:0f:63:f5:3b:3b:5a:84:67:b8:01:33:4d:0f:02:
                    e5:f3:f9:9e:20:3c:a7:34:46:95:c3:e4:ae:52:5b:
                    ca:19:0b:71:99:ff:25:f7:d8:9e:ee:79:e4:0a:81:
                    ba:e9:9d:85:42:84:21:4f:7d:b5:9c:b4:d6:0c:23:
                    f7:a2:14:c8:dc:94:34:97:bf:5d:15:80:80:62:d6:
                    3a:56:41:93:ca:7c:ed:89:c4:58:c7:29:0f:60:97:
                    99:e7:86:e7:47:78:64:84:27:f2:93:68:15:28:0f:
                    04:50:fc:bc:3d:9a:8a:de:b2:1b:cd:34:45:41:8f:
                    db:ed:90:1b:52:70:d1:3d:3b:b8:f0:1e:1a:4a:5f:
                    6d:6d:d7:2a:71:62:0d:5d:8f:a4:4f:53:6d:62:1a:
                    75:5f:fe:03:67:f3:47:49:b3:d0:ba:c7:21:23:1e:
                    64:b4:0a:cf:8b:ed:5b:26:78:bd:7a:a2:b7:7e:a4:
                    7f:60:15:83:12:56:20:19:52:48:6e:81:ac:1a:c2:
                    a0:a8:03:ca:4c:24:c2:dd:58:47:fa:4d:60:98:f0:
                    72:11:c0:29:e0:30:35:6b:b4:6a:46:80:3b:5f:50:
                    c9:66:43:38:f5:8a:e7:68:86:83:16:12:6c:05:98:
                    bf:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:FA:29:00:64:1E:A9:C9:C7:E2:73:67:D3:C0:D5:9C:73:54:C7:13
            X509v3 Authority Key Identifier:
                keyid:D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:9f:ec:99:8d:5f:41:da:6f:1f:bb:95:2d:b4:95:14:0e:be:
         88:ea:53:d3:ce:87:65:a4:f6:38:50:1f:34:f8:3f:93:b4:13:
         a7:8b:ae:cf:d9:8b:a6:d2:1f:bb:d0:5b:c9:d2:da:02:9a:d2:
         f2:e5:86:86:b3:bd:64:1a:79:95:fc:c0:32:10:78:43:e8:5d:
         3f:d2:31:a8:26:45:fc:59:e4:e4:46:8f:57:cd:da:3b:d5:d0:
         98:0c:5a:03:b1:a8:fd:02:a7:56:92:06:ef:ac:ed:f9:06:cf:
         43:95:f5:fb:d3:f9:b9:93:fa:4a:c9:9f:66:ed:33:f4:18:fa:
         dd:16:bf:6c:3f:55:7a:3b:84:5f:c1:b9:61:40:16:6a:ee:79:
         ad:2a:d3:b5:9f:29:4b:f6:de:8f:83:3e:da:09:97:cb:10:7f:
         5c:ec:45:5e:6e:97:d5:66:21:04:ca:57:a0:78:12:ab:54:84:
         a3:7c:cf:fc:08:ec:d1:25:b5:20:bb:ef:82:69:ca:21:21:85:
         93:63:34:53:27:46:ec:2a:eb:ab:bd:e1:6c:7c:45:53:e7:e8:
         ef:ba:8b:66:59:9e:19:70:49:f6:30:90:2c:8b:e9:46:fd:64:
         18:b1:76:63:c6:67:dc:a6:53:48:da:42:63:8f:fc:2d:b5:fa:
         d1:ab:d2:6a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICD3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTg2RDAxMTAvBgNVBAUTKEQ4QUYzNzcxMkQ1NkIxQjY5M0VGNkQwM0UzNDZDMDBD
RjNGMDQ5M0UwHhcNMjUwODA0MTc0NjMwWhcNMjUwODExMTc0NjMwWjAYMRYwFAYD
VQQDEw02ODkwZjFmNi03YmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAo1sxTAzROs22hM8+kiI9D2P1OztahGe4ATNNDwLl8/meIDynNEaVw+SuUlvK
GQtxmf8l99ie7nnkCoG66Z2FQoQhT321nLTWDCP3ohTI3JQ0l79dFYCAYtY6VkGT
ynzticRYxykPYJeZ54bnR3hkhCfyk2gVKA8EUPy8PZqK3rIbzTRFQY/b7ZAbUnDR
PTu48B4aSl9tbdcqcWINXY+kT1NtYhp1X/4DZ/NHSbPQuschIx5ktArPi+1bJni9
eqK3fqR/YBWDElYgGVJIboGsGsKgqAPKTCTC3VhH+k1gmPByEcAp4DA1a7RqRoA7
X1DJZkM49YrnaIaDFhJsBZi/KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEH6KQBk
HqnJx+JzZ9PA1ZxzVMcTMB8GA1UdIwQYMBaAFNivN3EtVrG2k+9tA+NGwAzz8Ek+
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC9GQTc4QjA0NDZG
Q0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3NiYVQ3MjBENDBiQURQUHdT
VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJLODNjUzFXc2JhVDcyMEQ0MGJBRFBQd1NUNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
ODZEMC9GQTc4QjA0NDZGQ0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3Ni
YVQ3MjBENDBiQURQUHdTVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBCn+yZjV9B2m8fu5UttJUUDr6I6lPTzodlpPY4UB80+D+TtBOni67P
2Yum0h+70FvJ0toCmtLy5YaGs71kGnmV/MAyEHhD6F0/0jGoJkX8WeTkRo9Xzdo7
1dCYDFoDsaj9AqdWkgbvrO35Bs9DlfX70/m5k/pKyZ9m7TP0GPrdFr9sP1V6O4Rf
wblhQBZq7nmtKtO1nylL9t6Pgz7aCZfLEH9c7EVebpfVZiEEylegeBKrVISjfM/8
COzRJbUgu++CacohIYWTYzRTJ0bsKuurveFsfEVT5+jvuotmWZ4ZcEn2MJAsi+lG
/WQYsXZjxmfcplNI2kJjj/wttfrRq9Jq
-----END CERTIFICATE-----
Generated at Wed Aug 6 11:23:57 2025 by rpki-client