Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
File:                     iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json)
Hash identifier:          rsu+kMsxdIcSx4ggRUibiHYGHBYMhsNZWNqqRA77Jbc=
Subject key identifier:   AB:A8:08:89:18:EC:2C:5B:60:7D:FB:7E:73:6D:EE:ED:8D:F5:4F:47
Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A
Certificate issuer:       /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A
Certificate serial:       01DF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
Manifest number:          01DA
Signing time:             Sun 27 Apr 2025 01:48:09 +0000
Manifest this update:     Sun 27 Apr 2025 01:48:08 +0000
Manifest next update:     Sun 04 May 2025 01:48:08 +0000
Files and hashes:         1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: wfOcBDJkAydyx+Epfr9iyK04DCYzZWmdbZKNTqqntyU=)
                          2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: GwA8WNqmVW1s9tawzkiqtYC7xFjjdtlbsl+Ur+WNSNc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl
                          rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 04 May 2025 01:48:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 479 (0x1df)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E6419, serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A
        Validity
            Not Before: Apr 27 01:48:08 2025 GMT
            Not After : May  4 01:48:08 2025 GMT
        Subject: CN=680d8cd9-5bf7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:2b:d9:b0:f8:ae:f6:57:bc:8b:8e:ec:99:00:
                    79:7e:4f:ec:c5:ee:ff:80:e5:fa:c0:ce:99:1d:09:
                    15:2f:09:d5:89:24:64:3e:b2:32:61:7c:44:e5:b0:
                    2b:f3:8e:24:71:b7:40:90:b0:37:2a:5b:92:cf:68:
                    4f:11:cb:3a:a1:19:59:4f:75:19:1f:85:ea:7e:c4:
                    79:2f:06:9c:ed:d5:40:8d:c4:0e:70:c7:49:43:94:
                    e8:34:9e:0e:9e:0d:71:4d:1f:27:d7:9e:2c:31:60:
                    85:3d:3a:8a:a1:ef:7c:3a:03:e1:80:9c:40:69:ae:
                    b0:5b:0b:f2:b7:2d:d1:4c:c9:9d:fe:c2:d8:db:e9:
                    50:71:80:30:fd:7e:c8:bf:1f:00:88:81:23:ca:23:
                    70:d0:77:44:bf:73:fc:4e:25:19:11:c7:7a:39:8f:
                    bd:97:3e:1d:66:a7:cb:eb:45:dd:1a:72:90:d4:13:
                    67:92:fb:2a:46:74:2b:1d:e5:d4:3e:01:d7:fe:7b:
                    d7:8e:d0:4d:9a:f5:c5:8f:e2:2c:c5:0f:f5:13:f2:
                    87:ce:df:fd:76:a9:70:19:27:03:5e:9a:d4:de:39:
                    88:6f:a5:bc:75:3a:fd:a4:aa:6b:5c:b2:a3:fa:d0:
                    33:dd:01:40:e8:c8:04:43:2f:83:05:33:68:d5:de:
                    f8:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:A8:08:89:18:EC:2C:5B:60:7D:FB:7E:73:6D:EE:ED:8D:F5:4F:47
            X509v3 Authority Key Identifier:
                keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:92:51:42:0c:22:a7:70:64:51:6a:ad:94:f2:67:56:9b:94:
         3b:f6:42:09:cb:0d:aa:41:af:69:ec:81:2f:dc:af:24:c0:5e:
         a6:23:62:9c:03:e5:c8:7c:ff:60:15:cf:71:ee:47:e9:19:1f:
         53:eb:1b:36:e3:b2:c7:56:b5:07:c5:aa:6a:7b:52:36:85:43:
         9a:4b:ed:5d:c2:b7:3a:e5:89:5e:38:02:f6:0d:94:66:0e:40:
         54:ea:b2:42:25:f9:cf:6b:59:5b:dd:66:c0:a5:57:75:15:fd:
         64:9e:51:26:4d:49:c8:38:dd:2c:43:51:d8:01:0f:a6:1b:13:
         6a:2c:f3:e6:71:ea:8a:03:10:23:e8:71:16:85:62:b5:a1:79:
         fd:52:cb:34:a3:cb:6d:3a:4d:05:b3:1c:9a:42:76:5a:40:80:
         d1:35:e4:55:d2:2c:4c:27:80:8d:27:77:4d:fe:75:d5:a5:18:
         43:08:7f:cd:b0:5e:9f:f8:28:af:41:f6:15:bd:22:3b:57:a8:
         41:36:70:f6:43:20:23:86:04:8d:7d:87:0f:61:2a:72:ec:c4:
         57:47:8b:e4:dd:2e:5a:a0:a1:65:38:56:f3:af:d0:9c:c3:b1:
         fb:2f:f4:4b:94:8a:03:6a:ed:b6:51:92:1b:f7:c6:13:78:cc:
         c8:f0:53:bd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE
NTM5N0E0MEEwHhcNMjUwNDI3MDE0ODA4WhcNMjUwNTA0MDE0ODA4WjAYMRYwFAYD
VQQDEw02ODBkOGNkOS01YmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxyvZsPiu9le8i47smQB5fk/sxe7/gOX6wM6ZHQkVLwnViSRkPrIyYXxE5bAr
844kcbdAkLA3KluSz2hPEcs6oRlZT3UZH4XqfsR5Lwac7dVAjcQOcMdJQ5ToNJ4O
ng1xTR8n154sMWCFPTqKoe98OgPhgJxAaa6wWwvyty3RTMmd/sLY2+lQcYAw/X7I
vx8AiIEjyiNw0HdEv3P8TiUZEcd6OY+9lz4dZqfL60XdGnKQ1BNnkvsqRnQrHeXU
PgHX/nvXjtBNmvXFj+IsxQ/1E/KHzt/9dqlwGScDXprU3jmIb6W8dTr9pKprXLKj
+tAz3QFA6MgEQy+DBTNo1d74oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuoCIkY
7CxbYH37fnNt7u2N9U9HMB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF
RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw
QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr
ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA8klFCDCKncGRRaq2U8mdWm5Q79kIJyw2qQa9p7IEv3K8kwF6mI2Kc
A+XIfP9gFc9x7kfpGR9T6xs247LHVrUHxapqe1I2hUOaS+1dwrc65YleOAL2DZRm
DkBU6rJCJfnPa1lb3WbApVd1Ff1knlEmTUnION0sQ1HYAQ+mGxNqLPPmceqKAxAj
6HEWhWK1oXn9Uss0o8ttOk0FsxyaQnZaQIDRNeRV0ixMJ4CNJ3dN/nXVpRhDCH/N
sF6f+CivQfYVvSI7V6hBNnD2QyAjhgSNfYcPYSpy7MRXR4vk3S5aoKFlOFbzr9Cc
w7H7L/RLlIoDau22UZIb98YTeMzI8FO9
-----END CERTIFICATE-----
Generated at Tue Apr 29 00:34:39 2025 by rpki-client