Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft
File:                     CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json)
Hash identifier:          cZ1vcqFjBIVLPgNibc47wjB+xr/6XhK45ZJgW3LYuz4=
Subject key identifier:   51:F9:3A:D8:16:C3:41:E6:A5:E9:9E:3F:D6:D3:9A:58:AF:22:12:A8
Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1
Certificate issuer:       /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1
Certificate serial:       B5
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft
Manifest number:          B3
Signing time:             Thu 07 Aug 2025 06:37:27 +0000
Manifest this update:     Thu 07 Aug 2025 06:37:27 +0000
Manifest next update:     Thu 14 Aug 2025 06:37:27 +0000
Files and hashes:         1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: /KCcnbxHI+VaaXui03EcA0blFLz5a2n473YldNnq45Q=)
                          2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl
                          rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 181 (0xb5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1
        Validity
            Not Before: Aug  7 06:37:27 2025 GMT
            Not After : Aug 14 06:37:27 2025 GMT
        Subject: CN=689449a7-f994
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:0e:60:70:1f:9d:b1:77:13:1a:55:f0:ab:95:
                    a5:1f:8d:c1:3a:27:85:32:d0:cb:93:bc:a7:25:dc:
                    d9:ca:7a:01:59:f4:8b:ff:a8:9f:85:55:39:3c:51:
                    f9:67:a4:04:6e:af:23:92:4d:70:8d:9b:ba:c9:42:
                    44:f1:36:29:49:0f:00:47:eb:4c:5b:c6:df:c9:ef:
                    90:99:79:83:3a:5a:48:a7:21:f3:d3:05:be:2d:18:
                    db:2c:ab:c7:62:6d:ab:e5:28:1b:6f:bf:52:b1:7b:
                    6f:97:9e:4d:6e:ec:88:9b:69:45:06:11:7a:45:e4:
                    47:f4:74:f2:69:7f:92:d9:be:ac:3b:48:25:8d:30:
                    80:ab:89:e4:e9:84:e2:ca:79:d7:29:6a:fa:d0:85:
                    89:bf:be:e5:68:c9:e4:b1:12:12:62:f0:8e:3c:95:
                    7a:e1:44:d0:86:df:20:e4:1a:60:db:73:df:84:b1:
                    e9:00:de:5c:8f:2e:b1:24:80:45:ff:df:73:72:6e:
                    92:25:6e:d3:2d:63:2d:02:ca:b1:e9:76:a5:19:69:
                    43:51:d3:1d:77:23:d6:67:74:ff:df:9f:02:c8:04:
                    71:45:4a:7b:ee:a5:03:32:1d:bc:d0:af:2c:bf:ff:
                    00:d2:c2:29:a7:b9:10:d2:65:4d:59:12:ca:6d:5d:
                    ef:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:F9:3A:D8:16:C3:41:E6:A5:E9:9E:3F:D6:D3:9A:58:AF:22:12:A8
            X509v3 Authority Key Identifier:
                keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:b5:81:60:9d:ba:e2:24:a5:6b:cd:ec:b7:ff:a0:e2:7d:80:
         bb:d2:2d:79:9c:0c:6c:13:17:f9:13:2b:7a:8a:9f:cd:8c:8a:
         2e:79:a5:f6:74:7f:f6:20:0c:c1:17:c4:ba:37:68:1d:5c:b2:
         9a:c3:be:ef:84:08:e6:da:da:ce:b1:7f:68:c3:a2:22:a1:e7:
         62:cb:0a:b3:23:00:96:f6:29:ab:e5:07:3b:17:93:4d:ce:70:
         99:a2:57:c1:37:ad:8b:2d:8c:47:16:99:f1:95:78:16:c9:ad:
         7b:7b:43:01:28:1d:f9:dd:75:42:c8:9d:68:72:57:f6:92:77:
         2c:a3:6e:ec:ae:e4:f6:d0:a1:25:71:e5:9c:cc:04:14:b0:1b:
         f7:d2:be:76:7d:b1:5b:c3:b3:88:a1:74:2f:f8:df:5e:e8:f2:
         6b:a8:31:2a:25:dd:d4:f2:2a:cf:55:77:de:77:6d:fc:0d:cf:
         96:c1:fb:08:a4:0d:7a:d1:6d:a2:79:98:82:7c:35:60:0c:27:
         25:02:81:dc:66:11:5f:be:bd:06:be:16:06:41:99:06:ad:a4:
         fa:3f:89:ce:5e:2f:4a:10:9b:a3:4c:8b:dd:1a:c9:9f:b5:b2:
         2e:2e:e1:60:b4:68:06:22:1c:02:6a:91:69:5b:01:6a:4c:30:
         ac:58:70:fb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0
MTQyNjE5RTEwHhcNMjUwODA3MDYzNzI3WhcNMjUwODE0MDYzNzI3WjAYMRYwFAYD
VQQDEw02ODk0NDlhNy1mOTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6Q5gcB+dsXcTGlXwq5WlH43BOieFMtDLk7ynJdzZynoBWfSL/6ifhVU5PFH5
Z6QEbq8jkk1wjZu6yUJE8TYpSQ8AR+tMW8bfye+QmXmDOlpIpyHz0wW+LRjbLKvH
Ym2r5Sgbb79SsXtvl55NbuyIm2lFBhF6ReRH9HTyaX+S2b6sO0gljTCAq4nk6YTi
ynnXKWr60IWJv77laMnksRISYvCOPJV64UTQht8g5Bpg23PfhLHpAN5cjy6xJIBF
/99zcm6SJW7TLWMtAsqx6XalGWlDUdMddyPWZ3T/358CyARxRUp77qUDMh280K8s
v/8A0sIpp7kQ0mVNWRLKbV3vUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFH5OtgW
w0HmpemeP9bTmlivIhKoMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0
NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H
ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH
MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBKtYFgnbriJKVrzey3/6DifYC70i15nAxsExf5Eyt6ip/NjIoueaX2
dH/2IAzBF8S6N2gdXLKaw77vhAjm2trOsX9ow6IioediywqzIwCW9imr5Qc7F5NN
znCZolfBN62LLYxHFpnxlXgWya17e0MBKB353XVCyJ1oclf2kncso27sruT20KEl
ceWczAQUsBv30r52fbFbw7OIoXQv+N9e6PJrqDEqJd3U8irPVXfed238Dc+WwfsI
pA160W2ieZiCfDVgDCclAoHcZhFfvr0GvhYGQZkGraT6P4nOXi9KEJujTIvdGsmf
tbIuLuFgtGgGIhwCapFpWwFqTDCsWHD7
-----END CERTIFICATE-----
Generated at Fri Aug 8 00:33:04 2025 by rpki-client