Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft
File:                     XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json)
Hash identifier:          0dtwCrEEYfdAmj7kLpu6aokZCdQ0kr68a40/FVuh7MQ=
Subject key identifier:   C6:EC:F4:C6:FE:D7:48:F8:77:90:AF:39:5E:D2:2D:5D:2C:2E:39:93
Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94
Certificate issuer:       /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94
Certificate serial:       0A00
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft
Manifest number:          09F3
Signing time:             Fri 08 Aug 2025 20:12:56 +0000
Manifest this update:     Fri 08 Aug 2025 20:12:56 +0000
Manifest next update:     Fri 15 Aug 2025 20:12:56 +0000
Files and hashes:         1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: jC2540QePAYJTdxpqPNnqm0JLOvNFMyx0Zy0DwtF7/0=)
                          2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: QT/K5tGfOd7GalxXyOBi4xKWLa0cvDIyEyK/W9LM+Pk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl
                          rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2560 (0xa00)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94
        Validity
            Not Before: Aug  8 20:12:56 2025 GMT
            Not After : Aug 15 20:12:56 2025 GMT
        Subject: CN=68965a48-8239
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:d1:c1:d5:cf:f8:eb:c8:5d:10:f3:4f:c2:79:
                    18:90:fd:7d:fa:8b:e2:ef:e2:ee:c3:b7:79:8b:d2:
                    0e:d0:94:a6:60:4d:63:00:c9:09:33:30:b6:19:cf:
                    8b:85:17:4d:66:20:6b:5a:7e:3c:94:8c:70:b5:d6:
                    b4:15:3e:b6:42:f0:9c:b3:d9:27:d7:35:53:77:50:
                    e7:f4:86:43:ec:ef:17:a4:d1:7d:97:a5:78:f7:5f:
                    f3:49:8d:eb:1a:61:1e:03:5a:62:0d:26:b2:4a:cf:
                    fc:c5:bf:0f:d2:9d:37:53:97:e2:6d:cc:59:30:9e:
                    ee:82:a6:58:49:d2:90:a1:52:ce:96:66:db:cf:fd:
                    75:1b:64:0f:03:ee:91:06:78:71:f4:17:71:4e:57:
                    3b:5c:91:55:cb:4f:45:c2:80:25:37:39:ae:28:7b:
                    f1:52:f8:8e:a2:a1:25:b8:61:05:9a:6b:da:72:c6:
                    ad:02:61:65:05:37:db:10:9a:50:35:15:21:2b:93:
                    51:ef:4a:f2:b6:a5:27:5e:ce:6a:f9:04:ed:e7:10:
                    40:6e:f0:7c:99:1e:47:e0:47:d6:94:c5:d7:b0:aa:
                    12:88:51:07:13:41:cf:e8:12:00:b1:35:a1:ee:71:
                    1c:3f:2b:cc:fc:b9:13:b6:3d:1f:58:a7:cb:ea:26:
                    ee:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:EC:F4:C6:FE:D7:48:F8:77:90:AF:39:5E:D2:2D:5D:2C:2E:39:93
            X509v3 Authority Key Identifier:
                keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:5a:e7:83:7f:b7:03:14:af:a0:e6:bb:a9:55:6a:bc:3b:66:
         3d:fb:70:90:f7:6e:e9:26:7f:c1:d3:cb:17:71:fa:7d:4d:1a:
         fb:30:3e:32:3d:76:ef:c6:4f:81:ed:8f:18:2c:c5:83:21:75:
         cb:79:9a:11:a0:7e:94:cd:29:2f:37:0e:42:1a:f9:df:dc:3d:
         ae:bf:7f:e9:ef:96:e2:63:20:7d:9f:07:76:e4:b4:70:dd:7d:
         a1:7c:74:25:95:21:f1:85:87:df:de:eb:29:f7:f4:9c:24:19:
         e4:93:98:74:0f:ff:3f:c6:86:1d:fb:cc:78:d3:25:11:eb:f9:
         d9:fe:f1:68:08:4e:98:f5:58:51:5c:f7:fd:5b:96:75:e6:20:
         80:cb:70:3f:e8:3f:62:85:7a:bd:4a:2f:27:cb:74:06:7f:33:
         ec:dd:ca:a0:db:8c:1c:bc:86:e5:1f:fb:c0:16:73:4c:16:26:
         be:09:3e:c5:c4:fa:16:3c:de:f7:93:ff:51:ec:9a:d6:0d:64:
         d3:f5:55:0f:6d:24:eb:58:92:9e:8e:e5:c6:78:4f:79:e7:dd:
         8d:76:4e:a9:f2:fa:d4:4c:88:e2:01:7f:97:f8:e2:77:51:26:
         3a:ff:0d:38:6a:1e:b3:78:aa:d6:42:25:c9:5b:4d:ab:fb:54:
         56:5f:64:ec
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB
ODAyOUVFOTQwHhcNMjUwODA4MjAxMjU2WhcNMjUwODE1MjAxMjU2WjAYMRYwFAYD
VQQDEw02ODk2NWE0OC04MjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1dHB1c/468hdEPNPwnkYkP19+ovi7+Luw7d5i9IO0JSmYE1jAMkJMzC2Gc+L
hRdNZiBrWn48lIxwtda0FT62QvCcs9kn1zVTd1Dn9IZD7O8XpNF9l6V491/zSY3r
GmEeA1piDSaySs/8xb8P0p03U5fibcxZMJ7ugqZYSdKQoVLOlmbbz/11G2QPA+6R
Bnhx9BdxTlc7XJFVy09FwoAlNzmuKHvxUviOoqEluGEFmmvacsatAmFlBTfbEJpQ
NRUhK5NR70rytqUnXs5q+QTt5xBAbvB8mR5H4EfWlMXXsKoSiFEHE0HP6BIAsTWh
7nEcPyvM/LkTtj0fWKfL6ibufQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbs9Mb+
10j4d5CvOV7SLV0sLjmTMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy
QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3
cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u
Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCoWueDf7cDFK+g5rupVWq8O2Y9+3CQ927pJn/B08sXcfp9TRr7MD4y
PXbvxk+B7Y8YLMWDIXXLeZoRoH6UzSkvNw5CGvnf3D2uv3/p75biYyB9nwd25LRw
3X2hfHQllSHxhYff3usp9/ScJBnkk5h0D/8/xoYd+8x40yUR6/nZ/vFoCE6Y9VhR
XPf9W5Z15iCAy3A/6D9ihXq9Si8ny3QGfzPs3cqg24wcvIblH/vAFnNMFia+CT7F
xPoWPN73k/9R7JrWDWTT9VUPbSTrWJKejuXGeE95592Ndk6p8vrUTIjiAX+X+OJ3
USY6/w04ah6zeKrWQiXJW02r+1RWX2Ts
-----END CERTIFICATE-----
Generated at Sun Aug 10 16:04:54 2025 by rpki-client