Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft
File:                     phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json)
Hash identifier:          gV98RdgIEQQ/3aj2BeNOAkNDK85qXAIzx6QqJhIUgo4=
Subject key identifier:   B0:D0:09:19:39:4A:41:67:31:C4:3B:A6:E7:34:A8:C2:27:2C:2F:B7
Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D
Certificate issuer:       /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D
Certificate serial:       019A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft
Manifest number:          0194
Signing time:             Sat 09 Aug 2025 03:51:30 +0000
Manifest this update:     Sat 09 Aug 2025 03:51:30 +0000
Manifest next update:     Sat 16 Aug 2025 03:51:30 +0000
Files and hashes:         1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: NY5lJaWuzH7IvX95jVGC5LlmHmxdvRD+R4xNGs8HUVw=)
                          2: 7C9E449814B311EEB9CD302AC4F9AE02.roa (hash: GXtjh6JgTYALh33hm4xVR36b7YskJ1eDz/S7oz0ug1I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl
                          rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 410 (0x19a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D
        Validity
            Not Before: Aug  9 03:51:30 2025 GMT
            Not After : Aug 16 03:51:30 2025 GMT
        Subject: CN=6896c5c2-76e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:2e:6b:ea:e3:db:a8:f5:6f:74:03:96:c3:c9:
                    3e:39:18:94:e1:3b:20:0b:b7:7a:2d:f2:f7:c6:f4:
                    c2:ad:05:52:35:db:1d:f1:41:11:79:d1:75:f8:f1:
                    5c:d5:35:32:d4:e5:c5:4b:3c:2e:16:2f:15:bc:de:
                    3f:28:57:40:96:bc:6b:44:c5:81:57:db:ec:9a:1d:
                    af:2a:b6:89:4c:21:60:2f:37:02:b1:f0:dc:2c:65:
                    02:7a:c3:df:91:a2:bc:a9:29:2d:a1:1f:9b:53:ae:
                    42:fb:1d:30:dc:15:37:7c:39:fc:28:32:2d:60:e8:
                    c3:20:ed:fa:71:fc:e8:3e:0c:3f:e8:ff:d7:4a:64:
                    01:5f:64:37:8f:3c:47:fc:f3:e6:6b:05:67:5f:95:
                    54:d6:b2:cb:bc:af:c2:a6:0f:8e:25:9d:88:bc:4c:
                    a9:76:c5:ea:3e:ad:07:45:5d:d2:25:6c:2e:de:37:
                    89:f4:cd:2f:3a:c6:81:41:65:87:fb:5f:31:80:05:
                    e2:97:ca:e9:5f:06:2a:40:34:f9:29:37:2d:d0:ad:
                    f5:fa:3a:82:1e:cc:e0:d6:b4:e1:43:29:25:39:62:
                    ab:a0:a0:e5:d9:71:6c:e4:da:af:fc:46:4c:db:e0:
                    32:a3:28:a0:e0:40:f8:68:c0:c4:a2:33:b5:7c:6a:
                    3d:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:D0:09:19:39:4A:41:67:31:C4:3B:A6:E7:34:A8:C2:27:2C:2F:B7
            X509v3 Authority Key Identifier:
                keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:d5:28:cd:6a:1c:84:c5:38:91:b1:64:9c:19:10:71:dc:be:
         83:52:28:1a:cc:49:d9:46:c8:5b:1c:12:3a:d1:28:1f:36:12:
         bf:ac:9f:c1:98:57:ac:cb:ae:e4:d2:e7:36:74:be:2e:4e:bc:
         ce:71:29:b7:1f:64:3f:c0:c3:76:42:6b:c4:ac:5a:21:ac:73:
         04:b8:b5:01:38:0e:d1:ce:4c:60:a1:63:5a:ec:01:b7:4b:78:
         75:06:c4:cc:1c:8f:8f:d4:a7:58:76:d7:3c:a1:6f:44:af:27:
         4d:23:a6:d8:c1:5a:5b:b7:16:51:f9:20:79:5d:2a:3d:54:a8:
         4f:db:3f:04:d0:ab:07:7b:93:c8:6d:8a:5c:16:b0:2e:eb:8e:
         9d:df:d2:3e:fc:ec:04:6a:8c:63:69:20:d6:d2:61:e0:b6:1a:
         c5:89:3f:be:5d:42:1c:49:3d:45:f3:d5:cd:87:87:a3:fb:8d:
         f0:93:a2:72:d2:a9:cf:0b:b4:2a:49:48:af:30:74:eb:75:85:
         a3:6e:66:23:ad:cb:be:74:f7:0c:49:0c:d2:17:94:97:0b:f2:
         d1:46:74:ed:bd:2c:48:00:86:bc:e6:40:92:dd:0c:de:79:26:
         94:07:ef:3a:7f:4f:89:22:6b:d2:f4:12:5f:0c:12:94:0c:25:
         a4:47:ae:c5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC
ODJBODk2MUQwHhcNMjUwODA5MDM1MTMwWhcNMjUwODE2MDM1MTMwWjAYMRYwFAYD
VQQDEw02ODk2YzVjMi03NmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAti5r6uPbqPVvdAOWw8k+ORiU4TsgC7d6LfL3xvTCrQVSNdsd8UERedF1+PFc
1TUy1OXFSzwuFi8VvN4/KFdAlrxrRMWBV9vsmh2vKraJTCFgLzcCsfDcLGUCesPf
kaK8qSktoR+bU65C+x0w3BU3fDn8KDItYOjDIO36cfzoPgw/6P/XSmQBX2Q3jzxH
/PPmawVnX5VU1rLLvK/Cpg+OJZ2IvEypdsXqPq0HRV3SJWwu3jeJ9M0vOsaBQWWH
+18xgAXil8rpXwYqQDT5KTct0K31+jqCHszg1rThQyklOWKroKDl2XFs5Nqv/EZM
2+Ayoyig4ED4aMDEojO1fGo9cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDQCRk5
SkFnMcQ7puc0qMInLC+3MB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0
OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s
aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl
b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAr1SjNahyExTiRsWScGRBx3L6DUigazEnZRshbHBI60SgfNhK/rJ/B
mFesy67k0uc2dL4uTrzOcSm3H2Q/wMN2QmvErFohrHMEuLUBOA7RzkxgoWNa7AG3
S3h1BsTMHI+P1KdYdtc8oW9ErydNI6bYwVpbtxZR+SB5XSo9VKhP2z8E0KsHe5PI
bYpcFrAu646d39I+/OwEaoxjaSDW0mHgthrFiT++XUIcST1F89XNh4ej+43wk6Jy
0qnPC7QqSUivMHTrdYWjbmYjrcu+dPcMSQzSF5SXC/LRRnTtvSxIAIa85kCS3Qze
eSaUB+86f0+JImvS9BJfDBKUDCWkR67F
-----END CERTIFICATE-----
Generated at Sun Aug 10 16:05:08 2025 by rpki-client