Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
File:                     X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json)
Hash identifier:          a2Xh735hlD7ZTy1J9bzyG9JXsa6OxVcpwhFjVK7laIY=
Subject key identifier:   EC:5E:AB:71:ED:B9:34:9A:42:81:C0:AA:71:AC:CB:CE:72:80:E4:A8
Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0
Certificate issuer:       /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0
Certificate serial:       015C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
Manifest number:          0157
Signing time:             Thu 07 Aug 2025 04:38:02 +0000
Manifest this update:     Thu 07 Aug 2025 04:38:02 +0000
Manifest next update:     Thu 14 Aug 2025 04:38:02 +0000
Files and hashes:         1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: tpVmda5CkLNRqjE81heNTDRWzA5OILMSwTMlFwXAt4Q=)
                          2: 85BF2BE4710111F093C54468C4F9AE02.roa (hash: DHeUh6Boki6/Qn0u9RFENX6qUoDb9jI1NIN7RVH9Vfk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl
                          rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 04:38:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 348 (0x15c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0
        Validity
            Not Before: Aug  7 04:38:02 2025 GMT
            Not After : Aug 14 04:38:02 2025 GMT
        Subject: CN=68942daa-f65c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:90:7d:6a:a5:6e:6f:86:d3:19:bf:93:82:ef:
                    3c:40:80:d2:6a:f2:73:a2:89:a5:18:d2:8f:73:d3:
                    a5:cd:23:40:97:a2:c5:dc:52:de:e1:72:ad:ce:dc:
                    07:68:c9:10:ec:90:40:79:fa:bd:29:3e:d7:33:57:
                    7b:9f:3b:4e:12:b4:62:26:f9:b9:7d:92:58:14:a6:
                    c5:b6:46:ab:80:ed:97:48:ea:95:66:b4:86:40:cf:
                    bc:24:33:2e:4f:6d:15:88:a8:9b:5b:05:fe:24:08:
                    e5:04:73:05:39:26:56:36:c7:70:ae:72:f7:2c:bf:
                    b5:47:74:61:69:6b:2d:28:ae:d1:f3:d7:7a:24:06:
                    14:4c:d6:ed:2d:e4:eb:7e:a3:58:bc:fe:95:78:2c:
                    ad:ad:fb:00:51:96:b0:b8:9b:33:3c:d9:0b:68:33:
                    f6:25:c8:db:f6:da:c3:ac:6d:ee:94:7e:0e:7f:77:
                    6f:c4:a5:f0:f4:d1:c2:28:25:75:3c:59:b1:06:ee:
                    74:29:81:17:8b:b3:bd:9e:d0:4a:1e:db:ef:4b:70:
                    72:a0:93:a0:1e:d8:a1:be:1f:bd:b9:0d:49:41:ed:
                    2a:79:b3:07:75:8e:fc:9e:17:56:dc:49:eb:d2:d2:
                    ca:78:63:df:06:e2:ec:39:a5:eb:44:f4:75:4c:cb:
                    ca:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:5E:AB:71:ED:B9:34:9A:42:81:C0:AA:71:AC:CB:CE:72:80:E4:A8
            X509v3 Authority Key Identifier:
                keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:f7:9d:be:ac:41:a6:0a:8e:da:ec:48:68:d1:f6:b8:a7:9c:
         a3:05:84:09:2a:05:1b:c6:9f:b7:2c:c9:39:5a:2d:ad:4f:99:
         fd:99:2d:79:64:d2:df:4a:58:51:f0:1c:1c:f6:1b:d5:b4:cd:
         a7:16:f9:6a:79:9d:8c:20:dc:cd:62:5d:45:f7:f9:85:33:9d:
         09:22:2f:b7:ec:27:56:35:c8:64:ce:cd:25:2d:be:34:c5:8c:
         4d:1c:95:9c:e7:7a:51:3c:ba:b5:c3:12:0f:b9:c3:a7:4b:2f:
         ce:2b:5b:98:91:2d:e5:70:fe:1b:2c:81:72:95:e9:5e:90:7e:
         46:b6:da:b3:04:74:66:81:e0:70:9d:21:dd:0d:06:cb:9f:af:
         2e:fc:16:2f:ff:71:48:a8:c8:3c:dc:c0:66:b6:04:95:9e:92:
         1b:5d:d3:91:79:96:6f:f4:22:c0:26:40:dd:78:9d:20:2d:77:
         a2:12:dc:ce:b3:aa:fd:ce:81:14:ab:80:05:06:21:1e:41:29:
         35:df:c5:c0:07:b3:af:bd:5d:7f:fa:c0:ca:17:1e:76:6e:ce:
         87:63:ee:47:8f:a3:83:4a:85:61:32:04:bd:17:99:bc:7f:ac:
         08:17:fb:ac:f5:c0:84:c6:0b:a2:e0:82:be:8f:32:bb:b0:0f:
         a4:81:1e:5e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4
M0QzOTU2RDAwHhcNMjUwODA3MDQzODAyWhcNMjUwODE0MDQzODAyWjAYMRYwFAYD
VQQDEw02ODk0MmRhYS1mNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3JB9aqVub4bTGb+Tgu88QIDSavJzoomlGNKPc9OlzSNAl6LF3FLe4XKtztwH
aMkQ7JBAefq9KT7XM1d7nztOErRiJvm5fZJYFKbFtkargO2XSOqVZrSGQM+8JDMu
T20ViKibWwX+JAjlBHMFOSZWNsdwrnL3LL+1R3RhaWstKK7R89d6JAYUTNbtLeTr
fqNYvP6VeCytrfsAUZawuJszPNkLaDP2Jcjb9trDrG3ulH4Of3dvxKXw9NHCKCV1
PFmxBu50KYEXi7O9ntBKHtvvS3ByoJOgHtihvh+9uQ1JQe0qebMHdY78nhdW3Enr
0tLKeGPfBuLsOaXrRPR1TMvKdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxeq3Ht
uTSaQoHAqnGsy85ygOSoMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD
QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW
dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw
VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBZ952+rEGmCo7a7Eho0fa4p5yjBYQJKgUbxp+3LMk5Wi2tT5n9mS15
ZNLfSlhR8Bwc9hvVtM2nFvlqeZ2MINzNYl1F9/mFM50JIi+37CdWNchkzs0lLb40
xYxNHJWc53pRPLq1wxIPucOnSy/OK1uYkS3lcP4bLIFylelekH5GttqzBHRmgeBw
nSHdDQbLn68u/BYv/3FIqMg83MBmtgSVnpIbXdOReZZv9CLAJkDdeJ0gLXeiEtzO
s6r9zoEUq4AFBiEeQSk138XAB7OvvV1/+sDKFx52bs6HY+5Hj6ODSoVhMgS9F5m8
f6wIF/us9cCExgui4IK+jzK7sA+kgR5e
-----END CERTIFICATE-----
Generated at Fri Aug 8 20:57:40 2025 by rpki-client