Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft
File:                     Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json)
Hash identifier:          2Un0lRrNeq6inB5vW3BDv6TY+92/yd/CUsqkJwVVrJI=
Subject key identifier:   1C:D5:32:69:77:09:02:19:CC:9B:AB:C3:95:F2:FF:37:D7:A9:A6:A0
Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A
Certificate issuer:       /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A
Certificate serial:       01D8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft
Manifest number:          01D3
Signing time:             Sat 09 Aug 2025 03:12:43 +0000
Manifest this update:     Sat 09 Aug 2025 03:12:43 +0000
Manifest next update:     Sat 16 Aug 2025 03:12:43 +0000
Files and hashes:         1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: z31ww0JfxNQa9GUbzVCwiWbrsPLkOeURqdMR26gaQqI=)
                          2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl
                          rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 472 (0x1d8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A
        Validity
            Not Before: Aug  9 03:12:43 2025 GMT
            Not After : Aug 16 03:12:43 2025 GMT
        Subject: CN=6896bcab-8bbe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:3e:ad:eb:cb:97:ae:90:3a:58:b9:27:3e:d1:
                    07:11:97:b4:3d:38:69:6f:2a:c9:6d:e2:1c:71:e4:
                    ef:eb:2a:7d:66:bd:fc:d2:d4:5f:d8:34:43:c3:17:
                    6f:84:2a:fd:d3:3e:6e:39:af:35:f4:88:b0:59:e7:
                    fc:95:26:50:fa:3b:8b:57:82:67:2d:73:5f:31:6f:
                    dc:0e:c0:bd:c1:24:20:9e:82:e7:fd:e6:f6:a9:55:
                    48:bb:f0:59:3e:38:54:fa:64:c3:28:49:3c:63:98:
                    14:22:60:e4:72:ac:44:e7:ed:70:50:a5:33:25:6a:
                    0c:0b:0c:80:e2:f8:fa:83:3d:93:68:d6:f3:2d:46:
                    dd:74:19:73:e2:05:c4:ae:77:e6:e5:53:2b:65:55:
                    25:d3:6c:c4:b5:de:3f:80:0b:69:14:25:dd:47:3a:
                    04:a9:65:05:a7:2c:21:5a:3e:dc:cf:10:95:2e:37:
                    d7:a0:23:be:da:b9:05:c6:fb:1d:fa:1a:74:bb:56:
                    46:3a:90:1f:f2:65:2e:69:60:c8:67:47:7a:ed:84:
                    15:d7:80:39:31:38:8a:f6:9e:a7:a5:aa:1f:d0:60:
                    ab:0e:41:72:b1:f8:17:81:5f:0e:b0:9d:c6:f3:94:
                    31:85:d5:fc:e5:b3:b8:bf:f1:3a:ad:fb:97:d2:ad:
                    02:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:D5:32:69:77:09:02:19:CC:9B:AB:C3:95:F2:FF:37:D7:A9:A6:A0
            X509v3 Authority Key Identifier:
                keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bf:0e:96:21:f4:08:2c:5d:42:8f:62:98:7d:9e:3b:11:d0:91:
         dd:39:2c:21:e2:29:1f:3c:e1:5b:d0:05:29:5d:1a:02:0e:ee:
         82:35:ae:2c:bc:c2:27:1a:9c:0f:f1:55:69:a9:f2:fe:5b:74:
         ac:f9:d1:ec:4a:a8:57:66:50:ea:94:9f:bd:6c:3a:89:86:75:
         3e:81:c1:a5:38:1d:3d:bc:50:6b:1a:2e:82:3e:35:0f:20:77:
         8e:aa:20:fe:af:78:ca:6f:12:66:d0:9e:dd:07:d8:ec:55:a3:
         37:a1:d2:36:10:98:41:87:12:45:2f:17:cd:28:d6:8c:5f:5d:
         d7:1c:73:b0:c1:88:9b:ec:1b:af:25:08:13:6b:7a:28:b7:92:
         6b:94:1f:3d:55:6a:a0:4e:71:e3:17:26:1e:9d:69:d1:01:49:
         a9:97:34:3c:98:e8:ed:76:f3:50:d7:15:04:f4:1a:da:60:0f:
         80:71:0a:56:6e:59:08:4a:04:88:9b:77:64:26:00:e4:e6:42:
         b3:9d:a6:58:6e:3b:39:9d:4b:42:46:c6:ac:b3:d8:ef:91:6b:
         0c:96:a6:71:a5:83:18:f8:35:3d:bf:0e:7e:61:f1:0f:fa:a6:
         78:a2:af:c8:dd:d8:de:f5:dc:91:ad:5e:ba:d0:c7:12:7d:ad:
         8e:40:2e:6b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1
Mjk5QzAzOEEwHhcNMjUwODA5MDMxMjQzWhcNMjUwODE2MDMxMjQzWjAYMRYwFAYD
VQQDEw02ODk2YmNhYi04YmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzT6t68uXrpA6WLknPtEHEZe0PThpbyrJbeIcceTv6yp9Zr380tRf2DRDwxdv
hCr90z5uOa819IiwWef8lSZQ+juLV4JnLXNfMW/cDsC9wSQgnoLn/eb2qVVIu/BZ
PjhU+mTDKEk8Y5gUImDkcqxE5+1wUKUzJWoMCwyA4vj6gz2TaNbzLUbddBlz4gXE
rnfm5VMrZVUl02zEtd4/gAtpFCXdRzoEqWUFpywhWj7czxCVLjfXoCO+2rkFxvsd
+hp0u1ZGOpAf8mUuaWDIZ0d67YQV14A5MTiK9p6npaof0GCrDkFysfgXgV8OsJ3G
85QxhdX85bO4v/E6rfuX0q0CQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzVMml3
CQIZzJurw5Xy/zfXqaagMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy
OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB
NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB
MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQC/DpYh9AgsXUKPYph9njsR0JHdOSwh4ikfPOFb0AUpXRoCDu6CNa4s
vMInGpwP8VVpqfL+W3Ss+dHsSqhXZlDqlJ+9bDqJhnU+gcGlOB09vFBrGi6CPjUP
IHeOqiD+r3jKbxJm0J7dB9jsVaM3odI2EJhBhxJFLxfNKNaMX13XHHOwwYib7Buv
JQgTa3oot5JrlB89VWqgTnHjFyYenWnRAUmplzQ8mOjtdvNQ1xUE9BraYA+AcQpW
blkISgSIm3dkJgDk5kKznaZYbjs5nUtCRsass9jvkWsMlqZxpYMY+DU9vw5+YfEP
+qZ4oq/I3dje9dyRrV660McSfa2OQC5r
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:41:42 2025 by rpki-client