Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft
File:                     lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json)
Hash identifier:          tvvgpOu6n+yZjfU1tDwR08mUnGVNQmdhSeWbImJY8Hs=
Subject key identifier:   3C:4E:67:2B:82:24:A8:84:8D:F4:ED:ED:60:90:A2:22:6C:A9:05:16
Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9
Certificate issuer:       /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9
Certificate serial:       01F6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft
Manifest number:          02F5
Signing time:             Thu 07 Aug 2025 02:59:50 +0000
Manifest this update:     Thu 07 Aug 2025 02:59:50 +0000
Manifest next update:     Thu 14 Aug 2025 02:59:50 +0000
Files and hashes:         1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: +A4rBrxepJg1lM7MnF2Cc19ZIDGrjklQkHyzWBkkSyk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl
                          rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 02:59:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502 (0x1f6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9
        Validity
            Not Before: Aug  7 02:59:50 2025 GMT
            Not After : Aug 14 02:59:50 2025 GMT
        Subject: CN=689416a6-15e0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:17:72:52:9c:40:76:0d:cd:ef:ce:80:d6:a5:
                    7b:a9:a0:c3:ad:2c:f0:6e:88:35:04:e9:e7:2d:8e:
                    eb:ba:5f:47:df:f6:09:69:b7:83:04:84:c1:6f:02:
                    29:fb:28:f6:c2:72:4d:f4:62:c8:41:24:da:ab:67:
                    de:63:3e:f8:6a:e6:d7:29:26:64:9f:36:5d:47:3e:
                    3b:10:bf:ca:ea:51:7b:32:80:d9:90:c1:ad:c3:9e:
                    9f:99:a6:94:74:37:db:d4:56:c8:2e:fd:9a:c6:5a:
                    f4:3f:e2:a1:8b:22:32:60:02:73:a0:f8:37:bb:bc:
                    78:7f:f4:d9:90:12:9e:93:f6:8e:0c:6a:6b:bd:52:
                    06:ef:98:e5:52:18:55:bb:93:4b:64:cf:1b:b9:a2:
                    b4:dd:16:86:01:06:9c:ec:55:59:bc:81:ba:76:85:
                    b1:5a:23:f6:1e:62:86:2f:de:59:0b:bb:42:37:2c:
                    a3:28:f0:ae:34:a7:ce:ff:38:13:b6:75:67:75:e8:
                    a8:88:70:09:e8:c5:6b:65:21:40:22:69:96:c0:ae:
                    1f:06:e6:34:1b:e2:e1:eb:a0:e3:de:a1:5b:09:cb:
                    d2:d2:b5:29:1c:c4:e1:ec:fb:a0:4e:ae:1d:a2:a5:
                    d1:e8:60:91:ee:4a:16:c2:47:25:93:4b:e6:0b:59:
                    17:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:4E:67:2B:82:24:A8:84:8D:F4:ED:ED:60:90:A2:22:6C:A9:05:16
            X509v3 Authority Key Identifier:
                keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:14:1a:29:de:55:06:6f:ed:79:8d:42:8f:6e:82:f2:75:07:
         88:5d:68:d7:1d:00:7c:f2:8c:9c:a5:b9:7e:b1:47:6a:ae:7e:
         b2:d9:bc:5c:94:73:52:77:8b:bf:72:32:c1:a6:22:d7:0b:f3:
         cb:b1:ab:c7:30:5b:34:26:bc:62:d6:75:49:7e:72:3c:54:7e:
         9a:eb:4f:8c:b7:4c:79:91:9a:a7:2a:38:f5:cc:a8:b5:0c:40:
         d9:4f:51:3c:4c:60:9c:d9:40:74:5d:6b:32:72:16:a1:02:78:
         61:35:78:bb:0c:00:d7:ba:6b:a7:4f:4a:59:1f:4f:13:e8:e9:
         48:d9:07:33:22:48:1d:12:49:76:eb:e3:87:53:34:53:a9:06:
         67:ea:09:84:27:12:a1:79:3a:99:a0:84:2a:12:0b:64:83:0a:
         5a:15:4f:be:9a:a3:fd:ad:34:37:51:5e:cd:b5:90:69:fb:66:
         01:5b:10:da:d2:c2:de:4b:f0:ae:a1:3e:0f:8d:4d:2f:e8:39:
         1e:f1:1f:a7:22:83:c4:89:69:74:7f:5b:17:db:1d:91:eb:7f:
         9c:0e:6d:63:a1:18:ea:b2:c9:1a:15:be:87:cb:88:6e:c4:6c:
         90:37:21:ac:7f:fa:5a:4c:44:b8:1e:7d:28:b6:59:d2:1b:08:
         8d:c4:e7:97
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1
Q0ZDRDY4RjkwHhcNMjUwODA3MDI1OTUwWhcNMjUwODE0MDI1OTUwWjAYMRYwFAYD
VQQDEw02ODk0MTZhNi0xNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxhdyUpxAdg3N786A1qV7qaDDrSzwbog1BOnnLY7rul9H3/YJabeDBITBbwIp
+yj2wnJN9GLIQSTaq2feYz74aubXKSZknzZdRz47EL/K6lF7MoDZkMGtw56fmaaU
dDfb1FbILv2axlr0P+KhiyIyYAJzoPg3u7x4f/TZkBKek/aODGprvVIG75jlUhhV
u5NLZM8buaK03RaGAQac7FVZvIG6doWxWiP2HmKGL95ZC7tCNyyjKPCuNKfO/zgT
tnVndeioiHAJ6MVrZSFAImmWwK4fBuY0G+Lh66Dj3qFbCcvS0rUpHMTh7PugTq4d
oqXR6GCR7koWwkclk0vmC1kX/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxOZyuC
JKiEjfTt7WCQoiJsqQUWMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE
RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h
UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG
czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQC4FBop3lUGb+15jUKPboLydQeIXWjXHQB88oycpbl+sUdqrn6y2bxc
lHNSd4u/cjLBpiLXC/PLsavHMFs0Jrxi1nVJfnI8VH6a60+Mt0x5kZqnKjj1zKi1
DEDZT1E8TGCc2UB0XWsychahAnhhNXi7DADXumunT0pZH08T6OlI2QczIkgdEkl2
6+OHUzRTqQZn6gmEJxKheTqZoIQqEgtkgwpaFU++mqP9rTQ3UV7NtZBp+2YBWxDa
0sLeS/CuoT4PjU0v6Dke8R+nIoPEiWl0f1sX2x2R63+cDm1joRjqsskaFb6Hy4hu
xGyQNyGsf/paTES4Hn0otlnSGwiNxOeX
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:33 2025 by rpki-client