Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft
File:                     ysNNxbjd0zsX7HVcldRdD3YlD6g.mft (raw, json)
Hash identifier:          wVOO6wgHrObYYMpUtLHtz4tMYVN1nekScSbrvIvdruw=
Subject key identifier:   47:A4:A2:8F:BD:A4:28:03:2C:8D:65:FD:16:9E:04:F6:86:EB:6C:22
Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8
Certificate issuer:       /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8
Certificate serial:       01F3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft
Manifest number:          01F0
Signing time:             Sat 09 Aug 2025 02:52:58 +0000
Manifest this update:     Sat 09 Aug 2025 02:52:58 +0000
Manifest next update:     Sat 16 Aug 2025 02:52:58 +0000
Files and hashes:         1: ysNNxbjd0zsX7HVcldRdD3YlD6g.crl (hash: s8h0NZ6jK+xgeoZ89GS8h5nQOnYDYuAlBxOBi50nKLI=)
                          2: E21DEF607B5E11ED98247D60C4F9AE02.roa (hash: ADnEMa2Brj1gfAu5du2mdudMmrXS7wa9cPzXrkNiEN4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl
                          rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 499 (0x1f3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C9B39, serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8
        Validity
            Not Before: Aug  9 02:52:58 2025 GMT
            Not After : Aug 16 02:52:58 2025 GMT
        Subject: CN=6896b80a-24c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:ce:87:54:4a:5e:fd:e8:3a:94:8b:e1:ba:de:
                    e1:a0:f5:0a:8c:68:af:1d:7d:96:f8:7d:02:c5:04:
                    1e:06:c8:2e:80:c5:ae:cd:d7:50:95:e6:fd:dc:52:
                    c9:0d:75:3a:3e:39:69:f9:75:71:ff:fe:9e:e0:b8:
                    fc:54:a0:ae:5e:a3:16:8b:3c:cc:b1:21:30:29:4d:
                    09:12:75:a0:3c:03:7c:c1:65:5d:26:b5:da:ea:34:
                    e3:d5:75:44:de:1b:f6:aa:62:4d:64:08:ef:af:2b:
                    b4:6e:89:e9:c3:89:33:f9:31:75:6c:73:e8:01:15:
                    53:43:eb:c8:25:0b:5b:22:a3:c7:92:70:6a:9d:b6:
                    71:41:85:a9:9b:93:24:cb:aa:14:2f:c7:76:71:38:
                    c5:b5:b0:46:a2:a0:f5:0e:a5:cc:46:10:e3:b6:14:
                    d1:b3:a0:c5:8b:c1:58:4e:6d:7f:12:07:15:b1:33:
                    04:f1:c3:a2:a3:4f:1c:73:2e:63:15:1e:18:20:c6:
                    64:5f:f2:2d:96:fa:e6:b5:9d:aa:e1:18:b6:76:93:
                    10:05:4e:2a:25:92:b2:cc:b7:7a:17:b2:34:83:e4:
                    02:bd:05:3c:74:15:d3:c9:15:90:0d:f8:f8:ee:f7:
                    9d:3d:e5:ae:b2:26:69:64:9d:9b:8c:23:99:61:ff:
                    ff:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:A4:A2:8F:BD:A4:28:03:2C:8D:65:FD:16:9E:04:F6:86:EB:6C:22
            X509v3 Authority Key Identifier:
                keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:86:02:62:d7:19:81:d3:db:0f:d8:01:d8:54:a3:4d:f2:56:
         09:c1:ad:af:cf:69:43:77:f9:8c:a8:cb:03:19:ca:51:5d:92:
         d7:c2:2b:d0:23:ca:39:b7:5d:3e:92:eb:ee:b1:55:76:e6:1e:
         79:1c:08:ea:dc:d4:27:e0:7c:2e:e8:37:14:da:f8:45:0e:11:
         1b:0b:a3:96:11:18:a6:e4:28:0d:f0:af:99:39:9a:46:48:af:
         53:41:64:a4:0a:0e:c2:c5:ea:d7:1e:2e:ea:13:13:18:3b:3c:
         f1:63:61:e1:de:36:b1:b5:b6:4e:cb:b2:1d:71:bc:8f:66:36:
         51:7b:36:a6:76:df:6d:e9:e5:a3:c5:d2:18:b5:67:45:b3:c7:
         47:37:d4:dc:40:48:37:7d:fa:eb:f7:3d:e0:8c:5b:cd:e1:6b:
         1f:1e:c1:35:7b:02:29:62:26:34:3a:01:0c:4b:0a:0f:bb:7f:
         69:b6:15:93:53:c8:c4:aa:a1:b8:44:3d:bf:41:2b:c3:2f:10:
         70:b1:63:ce:c3:74:88:f1:fe:c7:79:34:0c:a5:76:b8:d2:3f:
         8f:e3:f7:5e:01:79:7d:c6:2e:71:9e:86:38:5a:bf:f5:27:8c:
         10:33:c3:a1:f8:44:35:41:6a:bd:9e:55:c0:3f:c1:cc:36:bb:
         a4:5e:0f:fb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG
NzYyNTBGQTgwHhcNMjUwODA5MDI1MjU4WhcNMjUwODE2MDI1MjU4WjAYMRYwFAYD
VQQDEw02ODk2YjgwYS0yNGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApc6HVEpe/eg6lIvhut7hoPUKjGivHX2W+H0CxQQeBsgugMWuzddQleb93FLJ
DXU6Pjlp+XVx//6e4Lj8VKCuXqMWizzMsSEwKU0JEnWgPAN8wWVdJrXa6jTj1XVE
3hv2qmJNZAjvryu0bonpw4kz+TF1bHPoARVTQ+vIJQtbIqPHknBqnbZxQYWpm5Mk
y6oUL8d2cTjFtbBGoqD1DqXMRhDjthTRs6DFi8FYTm1/EgcVsTME8cOio08ccy5j
FR4YIMZkX/ItlvrmtZ2q4Ri2dpMQBU4qJZKyzLd6F7I0g+QCvQU8dBXTyRWQDfj4
7vedPeWusiZpZJ2bjCOZYf//bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEekoo+9
pCgDLI1l/RaeBPaG62wiMB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC
NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE
NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
OUIzOS9CNjE1RDBCQzdCNUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6
c1g3SFZjbGRSZEQzWWxENmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAOhgJi1xmB09sP2AHYVKNN8lYJwa2vz2lDd/mMqMsDGcpRXZLXwivQ
I8o5t10+kuvusVV25h55HAjq3NQn4Hwu6DcU2vhFDhEbC6OWERim5CgN8K+ZOZpG
SK9TQWSkCg7CxerXHi7qExMYOzzxY2Hh3jaxtbZOy7IdcbyPZjZRezamdt9t6eWj
xdIYtWdFs8dHN9TcQEg3ffrr9z3gjFvN4WsfHsE1ewIpYiY0OgEMSwoPu39pthWT
U8jEqqG4RD2/QSvDLxBwsWPOw3SI8f7HeTQMpXa40j+P4/deAXl9xi5xnoY4Wr/1
J4wQM8Oh+EQ1QWq9nlXAP8HMNrukXg/7
-----END CERTIFICATE-----
Generated at Sat Aug 9 23:10:56 2025 by rpki-client