Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft
File:                     Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json)
Hash identifier:          4HBgVQkHlLpZwbC2qHFUlGepqLku88zd3eBSNLYQo68=
Subject key identifier:   43:52:C0:92:E6:B1:4E:7C:AF:73:F3:72:D4:DC:67:AC:56:29:1D:4F
Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38
Certificate issuer:       /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138
Certificate serial:       04D4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft
Manifest number:          04CF
Signing time:             Thu 07 Aug 2025 00:19:20 +0000
Manifest this update:     Thu 07 Aug 2025 00:19:20 +0000
Manifest next update:     Thu 14 Aug 2025 00:19:20 +0000
Files and hashes:         1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: kzSyV/zMshTibohk1ta6slJXI0q0zRez/89Yqvvj1E8=)
                          2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl
                          rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 00:19:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1236 (0x4d4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138
        Validity
            Not Before: Aug  7 00:19:20 2025 GMT
            Not After : Aug 14 00:19:20 2025 GMT
        Subject: CN=6893f108-55ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:0e:d5:65:e8:25:08:c6:26:8a:08:a2:2f:6a:
                    74:bc:a3:18:fb:5c:49:c0:58:d3:11:5f:53:cf:13:
                    e7:17:85:ce:0c:ec:b9:b6:70:6e:03:c9:24:b4:8f:
                    8e:a0:5f:68:19:68:f5:dc:1f:11:51:88:6b:21:c4:
                    5c:15:96:08:3f:6f:65:39:0f:91:12:f5:24:3b:a8:
                    94:c9:e7:c2:e8:dd:1f:22:cd:c6:9e:2f:9a:de:26:
                    99:7d:da:ba:4a:fd:f3:70:72:86:48:f2:39:e1:9f:
                    8b:44:6e:25:7b:cb:5d:a0:f3:50:2e:8a:fa:89:e2:
                    4d:59:f1:dc:82:6a:a4:d8:bc:b1:36:fd:7c:c1:b7:
                    51:ce:40:20:12:b3:d7:3d:36:cb:87:f7:0b:8a:1c:
                    f3:99:65:ac:75:c9:0f:37:bf:c0:f4:e9:72:b2:e3:
                    cc:d6:4d:57:4e:1c:de:aa:89:92:dd:b9:8e:86:6f:
                    62:03:55:56:10:3e:59:c5:2c:3a:57:2c:77:5e:67:
                    65:f8:f9:68:cc:88:64:04:a1:97:60:38:dd:62:2e:
                    08:ff:ae:2f:74:e7:0d:1e:e2:a5:fd:85:00:97:79:
                    07:04:a3:7d:51:63:00:c2:f6:1d:0c:c3:f5:39:b0:
                    62:f3:44:dc:02:ec:24:c6:fa:23:e1:a7:a1:59:a7:
                    28:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:52:C0:92:E6:B1:4E:7C:AF:73:F3:72:D4:DC:67:AC:56:29:1D:4F
            X509v3 Authority Key Identifier:
                keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:a3:76:1a:01:84:78:b7:d8:2b:47:16:3c:31:dd:bc:56:9f:
         63:c8:bd:a8:8a:e1:f6:24:00:4f:64:ec:fd:18:a3:4d:91:9b:
         0b:44:40:a7:ea:fd:3b:13:57:15:22:9e:62:2a:d7:39:e2:72:
         8d:5d:a2:f2:61:a0:66:ea:f3:a4:c7:13:44:9c:c0:f7:17:2a:
         95:a7:a7:cf:7f:6e:05:53:22:e7:f1:f7:d1:35:29:56:17:b8:
         7e:89:97:02:12:65:eb:64:80:59:a7:52:dd:c8:1b:45:db:28:
         1b:92:2d:bb:e9:e4:14:89:a8:8e:68:b5:9e:37:93:e9:a4:8f:
         ee:ad:8f:20:f3:6a:e1:d4:e4:fb:bc:b6:4a:12:b7:cf:d2:71:
         50:fb:0c:8a:9c:2d:f0:ff:b1:f8:3d:1c:5c:37:51:70:3c:78:
         3c:a8:bd:47:60:c2:16:bb:91:50:86:9b:9e:d0:fa:72:fa:81:
         f6:02:c3:38:ad:47:2f:cd:72:95:a3:00:66:da:48:b2:39:73:
         c6:b2:ed:dc:d8:d7:4d:b4:a3:d1:ac:f0:e4:2b:37:ca:e0:a6:
         60:02:b3:da:52:52:a9:09:04:cd:30:a6:af:b6:98:5d:81:73:
         27:cb:86:11:50:72:cb:ab:5f:47:64:2e:c8:10:e0:9b:cd:91:
         b6:1c:ef:6e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx
NEEyQzIxMzgwHhcNMjUwODA3MDAxOTIwWhcNMjUwODE0MDAxOTIwWjAYMRYwFAYD
VQQDEw02ODkzZjEwOC01NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqQ7VZeglCMYmigiiL2p0vKMY+1xJwFjTEV9TzxPnF4XODOy5tnBuA8kktI+O
oF9oGWj13B8RUYhrIcRcFZYIP29lOQ+REvUkO6iUyefC6N0fIs3Gni+a3iaZfdq6
Sv3zcHKGSPI54Z+LRG4le8tdoPNQLor6ieJNWfHcgmqk2LyxNv18wbdRzkAgErPX
PTbLh/cLihzzmWWsdckPN7/A9OlysuPM1k1XThzeqomS3bmOhm9iA1VWED5ZxSw6
Vyx3Xmdl+PlozIhkBKGXYDjdYi4I/64vdOcNHuKl/YUAl3kHBKN9UWMAwvYdDMP1
ObBi80TcAuwkxvoj4aehWacoRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENSwJLm
sU58r3PzctTcZ6xWKR1PMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw
QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ
VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO
QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBNo3YaAYR4t9grRxY8Md28Vp9jyL2oiuH2JABPZOz9GKNNkZsLRECn
6v07E1cVIp5iKtc54nKNXaLyYaBm6vOkxxNEnMD3FyqVp6fPf24FUyLn8ffRNSlW
F7h+iZcCEmXrZIBZp1LdyBtF2ygbki276eQUiaiOaLWeN5PppI/urY8g82rh1OT7
vLZKErfP0nFQ+wyKnC3w/7H4PRxcN1FwPHg8qL1HYMIWu5FQhpue0Ppy+oH2AsM4
rUcvzXKVowBm2kiyOXPGsu3c2NdNtKPRrPDkKzfK4KZgArPaUlKpCQTNMKavtphd
gXMny4YRUHLLq19HZC7IEOCbzZG2HO9u
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:17 2025 by rpki-client