Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft
File:                     dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json)
Hash identifier:          v7khLu+r/lAHdsgHhjo1rMiBHxPO5a4DyJLvThK6HWk=
Subject key identifier:   FF:61:C9:03:AD:B0:6F:4D:7B:39:77:39:CA:2D:C8:03:00:34:ED:1C
Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E
Certificate issuer:       /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E
Certificate serial:       C9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft
Manifest number:          C7
Signing time:             Sat 09 Aug 2025 06:11:19 +0000
Manifest this update:     Sat 09 Aug 2025 06:11:19 +0000
Manifest next update:     Sat 16 Aug 2025 06:11:19 +0000
Files and hashes:         1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: pASu/cAS0wi20OwN0BJIiszfy83kyZMWlBgmIY3H8Rw=)
                          2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl
                          rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 201 (0xc9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E
        Validity
            Not Before: Aug  9 06:11:19 2025 GMT
            Not After : Aug 16 06:11:19 2025 GMT
        Subject: CN=6896e687-f053
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:41:55:bb:14:2c:bf:f5:e9:b6:1b:b0:7d:bb:
                    cd:a2:1c:1e:67:8d:77:10:67:33:4c:a8:95:2e:ea:
                    9c:52:ad:f6:7b:83:90:fd:73:af:6a:f3:1d:77:ec:
                    42:97:81:e6:d1:56:04:ca:e0:c5:62:48:c2:b2:6e:
                    aa:bd:83:ec:64:b4:2d:b1:45:38:f3:3e:e6:e7:8a:
                    db:95:c6:2e:4a:24:7c:10:ce:10:d0:81:a9:5b:8b:
                    c0:32:86:67:88:60:ad:ec:65:fa:95:47:02:2d:10:
                    e0:29:95:ec:f9:34:71:cf:ec:c2:93:e6:aa:2f:cb:
                    4c:0f:a9:37:34:93:89:5e:69:b7:ae:89:94:36:d3:
                    6e:bd:1e:c1:97:5b:e3:33:05:29:76:6e:02:bb:36:
                    b7:c2:22:80:fe:d3:a1:cf:5b:1e:1b:e5:97:00:5b:
                    15:aa:f9:d5:12:28:2f:fd:64:a1:87:95:48:18:ce:
                    d8:b6:13:a2:b2:74:d4:39:a3:b9:7f:a8:48:1c:8f:
                    56:02:51:0a:f2:5a:a8:7b:79:b7:83:54:d9:64:5b:
                    07:e2:c9:21:8f:e2:91:e4:ec:dd:c5:5d:73:c4:66:
                    d6:28:12:f9:1d:db:40:d0:d6:62:cb:42:be:83:df:
                    00:4a:af:92:f2:e3:c9:6c:04:10:84:f7:c6:fc:e2:
                    45:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:61:C9:03:AD:B0:6F:4D:7B:39:77:39:CA:2D:C8:03:00:34:ED:1C
            X509v3 Authority Key Identifier:
                keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:64:dc:0d:fe:f1:14:6e:6d:f7:41:e1:43:d4:27:7e:6c:f8:
         17:47:04:ee:ee:c1:d0:8a:4b:ec:d9:54:18:c4:50:e6:03:bf:
         bb:85:a3:64:37:76:79:c6:d1:28:5b:d9:7e:d5:10:ac:65:ea:
         52:a1:3e:18:7c:6e:21:9e:33:98:13:93:5d:f9:e0:64:3c:54:
         77:be:80:6d:fd:f2:00:4a:4b:bd:c7:38:da:0f:84:89:ac:c5:
         5b:23:38:8c:2c:15:00:05:e5:2e:87:6e:3b:b0:aa:e6:7d:15:
         84:79:b8:b9:65:00:eb:ca:04:b6:5a:c3:e7:b0:88:bc:4b:a3:
         72:82:9e:6d:d9:6b:f2:7c:1b:f0:03:59:87:1e:a8:f4:1a:38:
         af:58:90:e3:a0:a7:bc:5a:fa:e3:91:4e:4e:77:dc:83:30:a4:
         76:19:f5:67:bb:0d:52:df:20:1d:00:f3:10:87:a9:3d:10:af:
         08:09:b2:c3:ef:1d:c0:78:66:ec:28:d2:5f:d6:a7:f2:94:52:
         d8:af:d5:26:2b:f0:dc:29:10:1a:86:12:3b:5e:c9:ea:4b:2f:
         88:fe:24:a5:58:e5:01:70:d2:d7:fc:25:af:51:14:b6:c9:ea:
         0c:ba:32:a2:2f:57:a8:1f:68:70:1b:4e:d8:d2:3c:72:f5:53:
         ad:d3:67:e7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC
NUIxMEVCOUUwHhcNMjUwODA5MDYxMTE5WhcNMjUwODE2MDYxMTE5WjAYMRYwFAYD
VQQDEw02ODk2ZTY4Ny1mMDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr0FVuxQsv/XpthuwfbvNohweZ413EGczTKiVLuqcUq32e4OQ/XOvavMdd+xC
l4Hm0VYEyuDFYkjCsm6qvYPsZLQtsUU48z7m54rblcYuSiR8EM4Q0IGpW4vAMoZn
iGCt7GX6lUcCLRDgKZXs+TRxz+zCk+aqL8tMD6k3NJOJXmm3romUNtNuvR7Bl1vj
MwUpdm4Cuza3wiKA/tOhz1seG+WXAFsVqvnVEigv/WShh5VIGM7YthOisnTUOaO5
f6hIHI9WAlEK8lqoe3m3g1TZZFsH4skhj+KR5OzdxV1zxGbWKBL5HdtA0NZiy0K+
g98ASq+S8uPJbAQQhPfG/OJFfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9hyQOt
sG9Nezl3OcotyAMANO0cMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1
QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2
NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU
bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA2ZNwN/vEUbm33QeFD1Cd+bPgXRwTu7sHQikvs2VQYxFDmA7+7haNk
N3Z5xtEoW9l+1RCsZepSoT4YfG4hnjOYE5Nd+eBkPFR3voBt/fIASku9xzjaD4SJ
rMVbIziMLBUABeUuh247sKrmfRWEebi5ZQDrygS2WsPnsIi8S6Nygp5t2WvyfBvw
A1mHHqj0GjivWJDjoKe8WvrjkU5Od9yDMKR2GfVnuw1S3yAdAPMQh6k9EK8ICbLD
7x3AeGbsKNJf1qfylFLYr9UmK/DcKRAahhI7XsnqSy+I/iSlWOUBcNLX/CWvURS2
yeoMujKiL1eoH2hwG07Y0jxy9VOt02fn
-----END CERTIFICATE-----
Generated at Mon Aug 11 06:03:05 2025 by rpki-client