Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft
File:                     OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft (raw, json)
Hash identifier:          u10aCSPBwbBD4349wsmqn1gauYe4h2FWIKHXkBHZPKE=
Subject key identifier:   A8:41:A2:55:1B:82:F9:B5:22:6F:E4:80:CF:A9:8D:87:E2:96:A0:05
Authority key identifier: 3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC
Certificate issuer:       /CN=A91CAB4E/serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC
Certificate serial:       13AF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft
Manifest number:          13A6
Signing time:             Sun 10 Aug 2025 16:56:51 +0000
Manifest this update:     Sun 10 Aug 2025 16:56:50 +0000
Manifest next update:     Sun 17 Aug 2025 16:56:50 +0000
Files and hashes:         1: OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl (hash: 7TTx4xiZQFWbfwz6fRz2QivT/mVWKfP4YYomgP4UK88=)
                          2: 7F662C72997011E8B0FDEF57C4F9AE02.roa (hash: c+PuAbIml2jBjPavn1IEZDbXlxGsrH9yX4XnYZy8fpU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl
                          rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5039 (0x13af)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CAB4E, serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC
        Validity
            Not Before: Aug 10 16:56:50 2025 GMT
            Not After : Aug 17 16:56:50 2025 GMT
        Subject: CN=6898cf52-9d69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:cf:10:d1:79:03:29:3b:61:3b:9b:42:10:e2:
                    a5:19:96:93:90:0b:ed:fa:c9:72:cc:4c:15:36:c1:
                    10:d0:0a:0f:be:9f:ed:65:78:4c:e5:bb:29:84:0d:
                    a8:4a:fd:17:5e:d0:a9:67:4a:77:3c:73:c3:28:3d:
                    6e:b0:c4:48:f9:70:91:13:84:d9:0a:50:8a:8a:f9:
                    f5:dd:66:09:9d:eb:11:57:f5:96:9a:25:91:8d:4b:
                    97:da:1d:26:cf:87:54:e5:74:5a:ad:7a:30:30:00:
                    5b:8f:fa:c1:5f:93:12:e4:21:96:3e:e6:ac:34:61:
                    43:fb:dd:b7:f9:d4:1d:39:8d:bf:ac:ca:ce:d3:de:
                    40:82:5b:dc:33:a8:be:b2:42:1d:9d:e6:ef:e4:9d:
                    85:3d:e3:0a:1f:32:a7:41:80:6b:39:da:29:9c:d8:
                    92:a1:db:ab:04:ae:62:9b:29:41:d5:e1:5e:d9:7a:
                    e6:c2:76:cd:91:67:67:f5:22:54:50:08:3a:2d:95:
                    5d:7d:74:af:9d:81:a5:ad:06:b7:06:b0:1c:c4:40:
                    83:e1:03:51:2d:4e:ff:50:cd:72:4a:1b:d6:48:c1:
                    b8:8d:f0:05:3b:d6:15:72:f8:d9:b8:33:e2:c1:f5:
                    9b:4f:60:17:44:aa:9e:33:c4:bf:2c:f4:02:ac:da:
                    bb:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:41:A2:55:1B:82:F9:B5:22:6F:E4:80:CF:A9:8D:87:E2:96:A0:05
            X509v3 Authority Key Identifier:
                keyid:3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:8e:20:bd:6b:71:8d:2a:6b:6b:98:61:88:78:6c:79:8b:69:
         a4:bc:a7:60:a3:47:b0:ba:2f:76:36:14:cd:a3:4d:14:c8:f1:
         79:ec:97:7e:67:6c:88:bc:19:fe:68:bf:89:f2:86:27:c3:29:
         56:37:d8:de:51:aa:e8:1a:a0:81:70:28:34:27:da:35:f0:56:
         84:7f:a5:21:de:e0:8a:d3:c7:be:b8:ab:7c:5b:59:75:b3:fb:
         82:5b:f4:41:d3:bd:72:73:a2:c3:42:d5:cd:cc:ba:a8:9e:e9:
         2d:c5:b1:ff:3b:06:31:28:17:25:e0:be:a2:28:e9:54:88:f1:
         22:75:df:17:ca:b2:e7:9a:fe:e9:92:52:8d:bd:da:7d:1a:9f:
         05:b9:bd:0e:98:da:2e:0b:8b:4c:4d:dd:ea:c8:b6:52:6a:ff:
         18:89:9d:19:f3:20:d1:90:67:4c:6d:1d:7d:e9:69:60:0f:c1:
         4b:f2:51:fd:3a:22:e8:ff:fe:b8:5d:17:a9:9f:44:4a:eb:5b:
         a5:5e:13:ff:9e:42:7b:6e:e8:bb:0b:c9:29:8d:a2:6c:67:4b:
         77:4b:c3:d0:a8:10:ad:4e:7f:98:9c:fa:63:bc:9a:e3:0e:e4:
         4a:29:ca:ac:a5:e8:f5:66:87:0a:00:c0:5d:64:b1:2e:80:97:
         5f:f5:fd:c4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICE68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0FCNEUxMTAvBgNVBAUTKDNBMTQ5NDI1QkUzMjg1RDYxMTRCMDFGNkMyRkM4OEEx
N0FGRjRCRUMwHhcNMjUwODEwMTY1NjUwWhcNMjUwODE3MTY1NjUwWjAYMRYwFAYD
VQQDEw02ODk4Y2Y1Mi05ZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAu88Q0XkDKTthO5tCEOKlGZaTkAvt+slyzEwVNsEQ0AoPvp/tZXhM5bsphA2o
Sv0XXtCpZ0p3PHPDKD1usMRI+XCRE4TZClCKivn13WYJnesRV/WWmiWRjUuX2h0m
z4dU5XRarXowMABbj/rBX5MS5CGWPuasNGFD+923+dQdOY2/rMrO095AglvcM6i+
skIdnebv5J2FPeMKHzKnQYBrOdopnNiSodurBK5imylB1eFe2XrmwnbNkWdn9SJU
UAg6LZVdfXSvnYGlrQa3BrAcxECD4QNRLU7/UM1yShvWSMG4jfAFO9YVcvjZuDPi
wfWbT2AXRKqeM8S/LPQCrNq7ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhBolUb
gvm1Im/kgM+pjYfilqAFMB8GA1UdIwQYMBaAFDoUlCW+MoXWEUsB9sL8iKF6/0vs
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUI0RS8yQ0E0NzA2Njk5
NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhkWVJTd0gyd3Z5SW9Ycl9T
LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09oU1VKYjR5aGRZUlN3SDJ3dnlJb1hyX1Mtdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
QUI0RS8yQ0E0NzA2Njk5NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhk
WVJTd0gyd3Z5SW9Ycl9TLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAkjiC9a3GNKmtrmGGIeGx5i2mkvKdgo0ewui92NhTNo00UyPF57Jd+
Z2yIvBn+aL+J8oYnwylWN9jeUaroGqCBcCg0J9o18FaEf6Uh3uCK08e+uKt8W1l1
s/uCW/RB071yc6LDQtXNzLqonuktxbH/OwYxKBcl4L6iKOlUiPEidd8XyrLnmv7p
klKNvdp9Gp8Fub0OmNouC4tMTd3qyLZSav8YiZ0Z8yDRkGdMbR196WlgD8FL8lH9
OiLo//64XRepn0RK61ulXhP/nkJ7bui7C8kpjaJsZ0t3S8PQqBCtTn+YnPpjvJrj
DuRKKcqspej1ZocKAMBdZLEugJdf9f3E
-----END CERTIFICATE-----
Generated at Mon Aug 11 07:51:41 2025 by rpki-client