Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft
File:                     0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json)
Hash identifier:          7hGI3XYPi+3UfDvN6YEhxJxbyxBECL55qp5MiVTt3D0=
Subject key identifier:   47:5A:CC:29:FD:47:62:CE:99:32:DB:05:CB:7E:A9:72:AA:84:D6:BF
Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97
Certificate issuer:       /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897
Certificate serial:       CE
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft
Manifest number:          CB
Signing time:             Sat 09 Aug 2025 06:09:44 +0000
Manifest this update:     Sat 09 Aug 2025 06:09:43 +0000
Manifest next update:     Sat 16 Aug 2025 06:09:43 +0000
Files and hashes:         1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: 2Mf7LZr/+O7z6uuHY/SqeVntsFu+Zz9ZjaxKgY5B9R4=)
                          2: A717F73658B911F085B39880C4F9AE02.roa (hash: GRaZt0pedz3CCCklqX2hkq6cs1hiTnf3botIHYa4ZiY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl
                          rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 206 (0xce)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897
        Validity
            Not Before: Aug  9 06:09:43 2025 GMT
            Not After : Aug 16 06:09:43 2025 GMT
        Subject: CN=6896e627-d223
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:a8:86:5d:e3:7a:c1:d5:ec:76:c6:ad:66:1f:
                    63:72:ae:88:e0:a5:c5:90:42:83:d1:a8:1c:e4:8a:
                    6a:ec:03:6a:73:69:04:5f:b7:97:f3:02:98:08:7c:
                    d9:38:80:6a:62:13:0c:e3:d6:ac:78:21:1e:66:bf:
                    09:bc:ba:90:8c:ba:30:26:6d:52:dc:71:75:3a:d7:
                    37:45:53:21:a4:7b:9c:cd:19:72:01:3b:d3:67:b6:
                    9f:c8:a4:dd:84:93:d3:3c:d5:20:85:4b:dd:11:d4:
                    a3:60:4c:8b:e4:86:26:8d:1b:74:58:05:3f:81:47:
                    6d:9a:6f:e7:80:5b:c6:56:8a:48:d7:6e:48:eb:0f:
                    08:dc:83:74:56:ca:d3:5b:6c:63:1c:2a:a4:1f:62:
                    4f:80:ce:06:a3:cd:6f:01:24:ed:0b:59:f1:f1:26:
                    5d:13:6e:46:8c:41:94:f3:5d:61:65:a4:ca:60:56:
                    c4:25:a1:a3:d3:34:b7:c4:c6:8d:9f:da:cc:53:f0:
                    14:54:e2:56:30:53:6b:2c:30:ef:27:bb:cf:1f:8a:
                    6e:95:85:ce:3a:bd:dc:45:52:f1:75:76:75:2a:73:
                    63:9a:d2:4b:9c:d7:b7:ce:b9:c1:0a:f8:d2:3b:55:
                    ba:22:86:aa:44:30:d7:3f:70:c8:bd:1e:76:fa:56:
                    09:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:5A:CC:29:FD:47:62:CE:99:32:DB:05:CB:7E:A9:72:AA:84:D6:BF
            X509v3 Authority Key Identifier:
                keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:ad:64:2a:89:22:65:80:b4:cd:1f:9c:79:cb:57:b7:c0:ba:
         de:58:10:bc:29:fd:22:f7:e9:54:f3:03:f3:fd:45:70:42:df:
         b3:61:d6:f5:6d:fd:84:51:0a:fa:31:f4:13:4f:55:69:c4:c5:
         4b:da:30:24:de:4d:70:8d:ed:1a:ad:00:d3:33:d4:45:1c:af:
         e0:42:dc:20:8d:9d:82:e4:e1:7b:68:de:f4:be:e2:7d:df:9d:
         15:ed:7c:52:45:a8:a3:16:ae:22:d0:96:78:f5:a5:7b:f7:f0:
         a1:4a:6c:be:e0:a9:16:41:54:89:d9:a1:65:3a:5c:02:74:50:
         0a:48:ac:50:75:2a:68:13:ac:b9:d7:92:a9:65:0d:3f:c2:4c:
         35:1f:86:51:32:06:b3:8b:13:2d:b7:91:f9:59:45:14:13:53:
         6a:ac:90:cd:71:b2:f5:cb:19:65:90:cd:56:e4:61:6b:0c:5e:
         cf:00:4d:31:4a:e0:f8:61:72:25:e6:6a:c2:12:19:d5:ea:46:
         b8:e8:0a:44:ee:56:49:9c:51:dc:17:d6:95:a1:b8:c8:01:1f:
         32:42:3e:a1:14:62:59:18:38:5c:5d:82:ff:0c:b0:43:d5:87:
         c2:f3:b2:50:a1:57:e6:2a:74:67:b7:40:ab:07:f4:4a:d5:3f:
         65:28:de:c4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4
NjlEMTc4OTcwHhcNMjUwODA5MDYwOTQzWhcNMjUwODE2MDYwOTQzWjAYMRYwFAYD
VQQDEw02ODk2ZTYyNy1kMjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAz6iGXeN6wdXsdsatZh9jcq6I4KXFkEKD0agc5Ipq7ANqc2kEX7eX8wKYCHzZ
OIBqYhMM49aseCEeZr8JvLqQjLowJm1S3HF1Otc3RVMhpHuczRlyATvTZ7afyKTd
hJPTPNUghUvdEdSjYEyL5IYmjRt0WAU/gUdtmm/ngFvGVopI125I6w8I3IN0VsrT
W2xjHCqkH2JPgM4Go81vASTtC1nx8SZdE25GjEGU811hZaTKYFbEJaGj0zS3xMaN
n9rMU/AUVOJWMFNrLDDvJ7vPH4pulYXOOr3cRVLxdXZ1KnNjmtJLnNe3zrnBCvjS
O1W6IoaqRDDXP3DIvR52+lYJKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdazCn9
R2LOmTLbBct+qXKqhNa/MB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0
OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl
SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1
Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCcrWQqiSJlgLTNH5x5y1e3wLreWBC8Kf0i9+lU8wPz/UVwQt+zYdb1
bf2EUQr6MfQTT1VpxMVL2jAk3k1wje0arQDTM9RFHK/gQtwgjZ2C5OF7aN70vuJ9
350V7XxSRaijFq4i0JZ49aV79/ChSmy+4KkWQVSJ2aFlOlwCdFAKSKxQdSpoE6y5
15KpZQ0/wkw1H4ZRMgazixMtt5H5WUUUE1NqrJDNcbL1yxllkM1W5GFrDF7PAE0x
SuD4YXIl5mrCEhnV6ka46ApE7lZJnFHcF9aVobjIAR8yQj6hFGJZGDhcXYL/DLBD
1YfC87JQoVfmKnRnt0CrB/RK1T9lKN7E
-----END CERTIFICATE-----
Generated at Sat Aug 9 23:10:51 2025 by rpki-client