Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft
File:                     rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json)
Hash identifier:          CrjpjLucFzwYgZvU086456UxJunGrtgGsZsixKnycMc=
Subject key identifier:   CE:76:BE:DF:CB:BB:D8:96:80:FF:38:04:87:86:F9:37:F4:5B:B3:EB
Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21
Certificate issuer:       /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021
Certificate serial:       03BA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft
Manifest number:          03B5
Signing time:             Sat 09 Aug 2025 01:13:54 +0000
Manifest this update:     Sat 09 Aug 2025 01:13:54 +0000
Manifest next update:     Sat 16 Aug 2025 01:13:54 +0000
Files and hashes:         1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: azfHUZfkCiw4LdnBVaWIWoE83e9KjYio0wBFAohPj/o=)
                          2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: n9RCBLHpgjOAFQhIl7OXxEtavy0mL+5/7gM0zNsjfBw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl
                          rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 954 (0x3ba)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021
        Validity
            Not Before: Aug  9 01:13:54 2025 GMT
            Not After : Aug 16 01:13:54 2025 GMT
        Subject: CN=6896a0d2-6d4a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:5a:57:b8:b1:61:1f:ec:57:ec:eb:f9:09:85:
                    9a:14:52:a3:3f:a8:be:b2:88:cd:aa:ba:a8:4d:7b:
                    a2:27:c3:5b:84:4b:cc:9a:6c:81:1d:fd:ea:ff:bf:
                    47:f0:88:f0:6c:94:37:2d:c3:ea:61:7a:1e:95:93:
                    e6:99:46:a6:4f:85:8b:c1:9c:41:f4:5e:79:af:5a:
                    61:fc:17:97:f1:1c:eb:82:9a:01:ef:bd:1e:be:83:
                    41:9b:2e:ca:f8:e3:64:7e:ee:82:8d:40:42:21:cc:
                    e3:5d:3b:67:ca:47:59:e1:e3:d9:19:f6:4f:61:89:
                    61:8b:6b:90:2d:d4:c4:97:fc:75:62:ff:79:e0:d5:
                    7c:1b:9d:f7:3b:06:94:01:78:81:dd:33:da:2a:6e:
                    4c:33:2d:3d:ac:fa:5a:8a:32:bd:98:ae:d4:12:43:
                    e6:40:b2:7b:63:ea:2c:c2:9c:a7:40:79:b6:61:d7:
                    ff:75:05:00:02:d4:60:7d:e0:03:87:81:40:bc:6b:
                    cc:7d:80:f9:bf:cd:e1:31:3f:84:68:38:77:d4:e2:
                    a5:2b:f4:98:13:db:96:79:dd:de:25:6d:91:97:74:
                    6f:fb:5e:37:98:66:f6:3e:26:c5:01:cf:f0:b1:df:
                    20:60:76:fd:96:cb:0d:f3:bb:de:ce:d8:86:47:ce:
                    ec:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:76:BE:DF:CB:BB:D8:96:80:FF:38:04:87:86:F9:37:F4:5B:B3:EB
            X509v3 Authority Key Identifier:
                keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:c9:32:00:34:69:62:b9:59:01:4a:57:4e:5a:59:90:b3:5e:
         da:93:e8:6f:dd:b2:41:f0:95:2b:12:d5:b6:99:54:42:a4:05:
         d9:4f:f0:cd:30:3b:da:e1:9e:1f:f8:18:1f:24:2a:b8:3e:d2:
         7d:65:10:08:87:8e:98:8f:69:6b:51:75:20:fc:81:16:ee:2e:
         4c:76:b6:ee:df:35:9e:de:cd:c6:44:eb:17:51:23:1b:55:ba:
         e1:b4:1e:3e:09:05:34:86:0d:b2:6e:1a:4a:4b:42:ec:2f:b4:
         2f:ff:90:c0:bc:4b:04:57:2b:72:f2:1b:43:85:2c:91:a9:8f:
         a1:c3:af:d3:51:f9:86:48:cf:ca:2c:8a:21:89:cd:6f:5b:4f:
         a5:61:5c:e7:a9:7b:3c:54:27:36:db:83:f9:28:1e:d0:19:07:
         80:05:a1:82:c9:ce:3f:cc:6e:65:4a:b1:15:5d:8c:3c:11:8e:
         53:e5:78:28:4f:40:0d:17:d0:5f:2a:c7:01:c0:ea:82:25:7d:
         ad:fa:56:5b:24:94:06:7c:af:fd:ef:47:b3:06:2e:c0:c1:b2:
         d7:ec:33:ae:00:8f:da:71:dd:08:dc:df:89:b1:87:36:77:a0:
         04:d8:95:2f:49:15:38:f0:19:2f:fe:93:64:41:eb:35:da:b6:
         55:d2:2e:a1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2
ODI5QTQwMjEwHhcNMjUwODA5MDExMzU0WhcNMjUwODE2MDExMzU0WjAYMRYwFAYD
VQQDEw02ODk2YTBkMi02ZDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwlpXuLFhH+xX7Ov5CYWaFFKjP6i+sojNqrqoTXuiJ8NbhEvMmmyBHf3q/79H
8IjwbJQ3LcPqYXoelZPmmUamT4WLwZxB9F55r1ph/BeX8RzrgpoB770evoNBmy7K
+ONkfu6CjUBCIczjXTtnykdZ4ePZGfZPYYlhi2uQLdTEl/x1Yv954NV8G533OwaU
AXiB3TPaKm5MMy09rPpaijK9mK7UEkPmQLJ7Y+oswpynQHm2Ydf/dQUAAtRgfeAD
h4FAvGvMfYD5v83hMT+EaDh31OKlK/SYE9uWed3eJW2Rl3Rv+143mGb2PibFAc/w
sd8gYHb9lssN87veztiGR87sxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM52vt/L
u9iWgP84BIeG+Tf0W7PrMB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG
MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR
Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL
b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCnyTIANGliuVkBSldOWlmQs17ak+hv3bJB8JUrEtW2mVRCpAXZT/DN
MDva4Z4f+BgfJCq4PtJ9ZRAIh46Yj2lrUXUg/IEW7i5Mdrbu3zWe3s3GROsXUSMb
VbrhtB4+CQU0hg2ybhpKS0LsL7Qv/5DAvEsEVyty8htDhSyRqY+hw6/TUfmGSM/K
LIohic1vW0+lYVznqXs8VCc224P5KB7QGQeABaGCyc4/zG5lSrEVXYw8EY5T5Xgo
T0ANF9BfKscBwOqCJX2t+lZbJJQGfK/970ezBi7AwbLX7DOuAI/acd0I3N+JsYc2
d6AE2JUvSRU48Bkv/pNkQes12rZV0i6h
-----END CERTIFICATE-----
Generated at Sun Aug 10 16:09:24 2025 by rpki-client