Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft
File:                     NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json)
Hash identifier:          7Cscm9OLkKwW8ynahnGK9KMcIdB+Ta0pI4Qlqj/W6Q8=
Subject key identifier:   B5:27:F5:E2:38:8A:D1:B8:8D:0C:6B:1B:CC:72:41:95:2A:54:8D:8F
Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61
Certificate issuer:       /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961
Certificate serial:       BA
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft
Manifest number:          AF
Signing time:             Tue 05 Aug 2025 06:50:54 +0000
Manifest this update:     Tue 05 Aug 2025 06:50:53 +0000
Manifest next update:     Tue 12 Aug 2025 06:50:53 +0000
Files and hashes:         1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: YcNBbwAbJqpJOVFCPv0vL/TEvuc0etlxcEwFtmd+nnQ=)
                          2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: 4Ilw9gY/NOcFcq0qbuj1smp6o0+TRpgSf2CHUKcnvWE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl
                          rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 06:50:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 186 (0xba)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961
        Validity
            Not Before: Aug  5 06:50:53 2025 GMT
            Not After : Aug 12 06:50:53 2025 GMT
        Subject: CN=6891a9ce-94bc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:66:d7:4c:74:e1:5c:6c:a2:f5:7a:e0:26:e2:
                    23:9a:6b:63:de:0d:21:74:f3:f7:11:49:cd:f8:ce:
                    3b:24:fb:36:b6:8e:6c:bb:e8:71:fd:3f:4d:e3:8d:
                    d3:62:47:a1:01:b9:50:3a:3a:28:85:24:eb:7b:fe:
                    a9:f2:61:1c:8c:0a:a0:47:d3:48:df:47:00:05:fa:
                    c1:74:a2:c0:6d:77:1b:3d:17:e7:e9:55:9c:0f:6c:
                    d7:6d:db:79:af:33:57:80:e4:51:a7:34:55:22:27:
                    ed:f7:5d:0f:72:04:10:e5:b9:db:3c:35:fe:cc:ff:
                    75:bd:8a:6d:0b:e2:4b:6a:1d:ef:47:78:96:26:04:
                    4f:8a:7d:2d:a6:7f:1f:e3:ce:d0:cb:83:0e:bc:2d:
                    ff:d3:28:d6:e3:ab:51:c4:fe:6d:24:84:17:ee:6f:
                    b2:9c:9f:65:e7:fc:3c:fc:9e:ba:46:8d:2b:ad:4a:
                    ba:b2:0d:97:bc:f2:92:ef:9f:bb:f7:de:ce:e0:85:
                    6e:93:af:06:44:40:cd:6f:20:a5:a0:37:56:5a:d5:
                    33:e0:6b:6b:48:26:46:45:39:af:fe:48:0c:b6:a7:
                    d5:47:14:05:bf:15:d5:92:7f:20:43:35:a9:79:b1:
                    dc:ff:b4:66:3c:4b:a6:26:e3:07:13:55:2d:79:8a:
                    2e:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:27:F5:E2:38:8A:D1:B8:8D:0C:6B:1B:CC:72:41:95:2A:54:8D:8F
            X509v3 Authority Key Identifier:
                keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:db:26:9d:c5:d4:73:2c:b8:66:25:b5:92:e7:78:47:73:26:
         6c:0d:01:f5:cc:c8:fb:cd:db:31:f7:29:b0:5c:e9:f5:b8:ee:
         2e:3b:3b:18:11:19:ed:4c:c8:f4:aa:8a:15:15:51:c9:5e:59:
         a2:75:cd:84:ae:5e:a1:75:45:e7:c1:d5:7f:e4:c8:eb:f6:73:
         a4:8c:0c:d1:cd:8c:76:38:0a:db:ec:cd:53:99:90:b1:3c:6f:
         3b:e5:ce:dd:64:f9:81:07:ba:2a:a3:11:13:bb:79:bf:74:c8:
         76:af:d4:54:4b:84:ab:19:c6:94:a9:16:8d:1d:f4:6f:14:63:
         df:2d:da:13:27:89:fb:7b:d2:52:e0:38:ef:dc:d6:a7:0b:c6:
         f6:5f:49:4c:f8:f7:36:16:ea:12:eb:e7:aa:21:ea:0f:08:32:
         6b:01:87:f2:cb:07:2a:30:f2:8f:40:06:18:d7:90:fb:37:cb:
         cf:a0:21:94:e0:35:a3:5c:86:97:bb:c6:cd:6f:e2:b6:19:ed:
         62:bb:03:1f:e3:7f:e4:18:38:6b:d6:ad:db:13:7e:c1:15:a4:
         c4:4d:23:48:cd:df:35:07:70:a5:d6:08:fd:28:48:4d:c7:b0:
         5f:51:2d:be:76:7a:d7:58:b1:85:6c:6e:3c:97:1f:b2:41:05:
         9d:87:89:d4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1
NUE5RTk5NjEwHhcNMjUwODA1MDY1MDUzWhcNMjUwODEyMDY1MDUzWjAYMRYwFAYD
VQQDEw02ODkxYTljZS05NGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1mbXTHThXGyi9XrgJuIjmmtj3g0hdPP3EUnN+M47JPs2to5su+hx/T9N443T
YkehAblQOjoohSTre/6p8mEcjAqgR9NI30cABfrBdKLAbXcbPRfn6VWcD2zXbdt5
rzNXgORRpzRVIift910PcgQQ5bnbPDX+zP91vYptC+JLah3vR3iWJgRPin0tpn8f
487Qy4MOvC3/0yjW46tRxP5tJIQX7m+ynJ9l5/w8/J66Ro0rrUq6sg2XvPKS75+7
997O4IVuk68GREDNbyCloDdWWtUz4GtrSCZGRTmv/kgMtqfVRxQFvxXVkn8gQzWp
ebHc/7RmPEumJuMHE1UteYou7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUn9eI4
itG4jQxrG8xyQZUqVI2PMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1
NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt
V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6
dFZIanR3SlhHNjlWcWVtV0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBc2yadxdRzLLhmJbWS53hHcyZsDQH1zMj7zdsx9ymwXOn1uO4uOzsY
ERntTMj0qooVFVHJXlmidc2Erl6hdUXnwdV/5Mjr9nOkjAzRzYx2OArb7M1TmZCx
PG875c7dZPmBB7oqoxETu3m/dMh2r9RUS4SrGcaUqRaNHfRvFGPfLdoTJ4n7e9JS
4Djv3NanC8b2X0lM+Pc2FuoS6+eqIeoPCDJrAYfyywcqMPKPQAYY15D7N8vPoCGU
4DWjXIaXu8bNb+K2Ge1iuwMf43/kGDhr1q3bE37BFaTETSNIzd81B3Cl1gj9KEhN
x7BfUS2+dnrXWLGFbG48lx+yQQWdh4nU
-----END CERTIFICATE-----
Generated at Thu Aug 7 03:20:49 2025 by rpki-client