Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft
File:                     bLOCDaWkqEstlAm98H8lRf5tCxE.mft (raw, json)
Hash identifier:          PpaaTw2XXqbZhh1oIssu+DhF0XT4r88evWUopnY9ex8=
Subject key identifier:   49:8F:CF:27:B0:5F:5A:D8:13:C7:3A:F3:3D:33:73:04:79:A2:A7:7F
Authority key identifier: 6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11
Certificate issuer:       /CN=A91CB063/serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11
Certificate serial:       69
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft
Manifest number:          68
Signing time:             Sat 09 Aug 2025 07:28:35 +0000
Manifest this update:     Sat 09 Aug 2025 07:28:34 +0000
Manifest next update:     Sat 16 Aug 2025 07:28:34 +0000
Files and hashes:         1: bLOCDaWkqEstlAm98H8lRf5tCxE.crl (hash: gyqOAbbLN0Flyu9tapHnEFtAdDMY0Nt1nN/UpD1Oing=)
                          2: 3D3827F2D6EE11EFB955866CC4F9AE02.roa (hash: 4d4Ou4cSb0acdXH9Bn2waQ4IMkbvtakYfcIPMGQdXao=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl
                          rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 105 (0x69)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CB063, serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11
        Validity
            Not Before: Aug  9 07:28:34 2025 GMT
            Not After : Aug 16 07:28:34 2025 GMT
        Subject: CN=6896f8a3-975e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:d4:fd:64:55:51:36:c0:b3:a3:17:1f:77:7e:
                    2e:f9:da:76:6c:d0:22:e8:06:d0:9e:2e:69:d7:52:
                    41:ab:be:4e:d3:16:ba:ec:b0:81:5f:aa:6e:e0:1e:
                    da:3c:a3:b8:e6:60:94:59:d1:42:17:a7:63:1e:8a:
                    24:aa:b2:33:a0:ac:d4:88:b0:ac:4f:5e:ee:fd:a3:
                    95:4a:3e:78:98:7f:e3:da:b4:99:e9:d9:e0:f0:b4:
                    35:fe:18:df:f4:87:01:27:38:05:8e:bd:9f:9b:45:
                    14:87:5d:77:85:f4:d1:97:3e:9c:06:31:0d:bb:7e:
                    8c:15:58:aa:ed:5c:4a:fe:b8:e1:22:e5:9b:13:49:
                    d5:3e:89:c1:04:1e:67:03:14:6f:a8:9b:63:cd:a1:
                    92:40:0f:9e:c7:08:5f:eb:63:ca:bb:9e:2d:a8:5d:
                    aa:be:48:9a:90:41:0f:b4:39:e5:23:0a:a2:ac:db:
                    f6:d5:11:16:b1:78:c4:bd:3b:0a:b1:e9:b0:92:da:
                    9f:6b:e0:ed:4a:3f:34:02:f7:7d:b0:7d:4d:30:4b:
                    69:71:1c:19:b1:69:31:2a:bc:dd:5c:06:a7:06:2e:
                    50:ed:c6:74:e8:3a:c0:41:bd:29:32:3e:c7:88:70:
                    85:95:6d:a1:e9:a5:a5:e0:83:cb:aa:26:9b:38:f5:
                    03:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:8F:CF:27:B0:5F:5A:D8:13:C7:3A:F3:3D:33:73:04:79:A2:A7:7F
            X509v3 Authority Key Identifier:
                keyid:6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:28:33:1e:f8:0f:c8:f3:7f:12:d4:e0:d4:c8:9a:7b:60:51:
         cb:a9:81:ee:84:ab:13:c7:15:c2:2c:6f:80:fb:19:01:ce:e2:
         40:b8:67:c5:b2:d7:13:cd:b0:8b:5a:51:b6:1a:9d:7a:21:c7:
         69:d8:5b:59:b7:13:76:ee:29:f3:55:7b:9b:88:12:04:70:2a:
         1c:d6:83:04:c2:bd:48:83:d3:b6:2d:c1:35:df:1b:6b:a7:9d:
         dd:0d:74:b1:ec:11:2b:e8:06:b5:93:78:20:1a:35:9e:77:03:
         e2:a2:a1:15:58:b4:4b:77:fe:53:ec:d8:23:fb:a1:b8:fa:a0:
         8a:a7:68:b0:fe:c0:00:1e:2b:b1:62:47:b3:33:8e:13:7e:93:
         5c:80:96:1b:e3:fb:16:00:a6:46:66:98:83:b1:3e:e2:a9:75:
         23:5c:36:d2:9a:12:d4:2a:24:50:89:58:23:4a:32:96:80:38:
         b2:fb:46:3c:f7:3c:f2:82:a2:30:0e:2b:41:83:4e:91:2d:ba:
         22:60:2b:b4:a6:1e:26:c9:79:a0:97:0a:72:55:80:29:99:6b:
         26:48:68:bc:e2:57:43:6c:1d:ec:6f:9f:f6:76:fa:82:a1:4d:
         ef:03:88:42:84:d2:54:07:4b:5d:a2:4a:5f:89:93:5e:45:ae:
         e4:4c:61:04
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD
QjA2MzExMC8GA1UEBRMoNkNCMzgyMERBNUE0QTg0QjJEOTQwOUJERjA3RjI1NDVG
RTZEMEIxMTAeFw0yNTA4MDkwNzI4MzRaFw0yNTA4MTYwNzI4MzRaMBgxFjAUBgNV
BAMTDTY4OTZmOGEzLTk3NWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDV1P1kVVE2wLOjFx93fi752nZs0CLoBtCeLmnXUkGrvk7TFrrssIFfqm7gHto8
o7jmYJRZ0UIXp2MeiiSqsjOgrNSIsKxPXu79o5VKPniYf+PatJnp2eDwtDX+GN/0
hwEnOAWOvZ+bRRSHXXeF9NGXPpwGMQ27fowVWKrtXEr+uOEi5ZsTSdU+icEEHmcD
FG+om2PNoZJAD57HCF/rY8q7ni2oXaq+SJqQQQ+0OeUjCqKs2/bVERaxeMS9Owqx
6bCS2p9r4O1KPzQC932wfU0wS2lxHBmxaTEqvN1cBqcGLlDtxnToOsBBvSkyPseI
cIWVbaHppaXgg8uqJps49QP9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSY/PJ7Bf
WtgTxzrzPTNzBHmip38wHwYDVR0jBBgwFoAUbLOCDaWkqEstlAm98H8lRf5tCxEw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMDYzLzZDMEY5NjEwRDZF
RDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVzdGxBbTk4SDhsUmY1dEN4
RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvYkxPQ0RhV2txRXN0bEFtOThIOGxSZjV0Q3hFLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC
MDYzLzZDMEY5NjEwRDZFRDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVz
dGxBbTk4SDhsUmY1dEN4RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAC0oMx74D8jzfxLU4NTImntgUcupge6EqxPHFcIsb4D7GQHO4kC4Z8Wy
1xPNsItaUbYanXohx2nYW1m3E3buKfNVe5uIEgRwKhzWgwTCvUiD07YtwTXfG2un
nd0NdLHsESvoBrWTeCAaNZ53A+KioRVYtEt3/lPs2CP7obj6oIqnaLD+wAAeK7Fi
R7MzjhN+k1yAlhvj+xYApkZmmIOxPuKpdSNcNtKaEtQqJFCJWCNKMpaAOLL7Rjz3
PPKCojAOK0GDTpEtuiJgK7SmHibJeaCXCnJVgCmZayZIaLziV0NsHexvn/Z2+oKh
Te8DiEKE0lQHS12iSl+Jk15FruRMYQQ=
-----END CERTIFICATE-----
Generated at Sun Aug 10 13:49:03 2025 by rpki-client