Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft
File:                     O9MC-nouhmpnmxtglttnRToDq4Y.mft (raw, json)
Hash identifier:          /Yk+91O4ZiQ6jgQtcahhUoVos5lqymaG+AWw4eJqXS8=
Subject key identifier:   A6:1E:D0:FB:68:BB:84:FF:C5:8B:58:5D:75:76:C0:1B:E9:B6:2C:2E
Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86
Certificate issuer:       /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86
Certificate serial:       0A52
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft
Manifest number:          0A3C
Signing time:             Fri 08 Aug 2025 20:03:40 +0000
Manifest this update:     Fri 08 Aug 2025 20:03:39 +0000
Manifest next update:     Fri 15 Aug 2025 20:03:39 +0000
Files and hashes:         1: O9MC-nouhmpnmxtglttnRToDq4Y.crl (hash: lG/SbSsbzUHUgPINNswnfGJCawKhd3NsiVoR2uTcPBM=)
                          2: 0791DE6034A511ED9D82D13BC4F9AE02.roa (hash: juMQ71UzLGU0NVMfjPJ2FFyOOWRBZEQJenhZ2xiR7QE=)
                          3: 62512E2C73D311EABC99D63AC4F9AE02.roa (hash: DFYge5dHCEqKdjq6qJwiRBDOxqQ6gIZRO7JP5sPeXVk=)
                          4: 27323072FF0E11EFB014CB3CC4F9AE02.roa (hash: Fcw453Ezb9efQnwUieSmXg5daSqXlucP3XjYZWFxjYQ=)
                          5: 855AECF29B3A11EB9B73EB7BC4F9AE02.roa (hash: R3iQDjS1xmyA/Ti9pGMuv3ByraTjewOpXnxZ6reYInQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl
                          rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2642 (0xa52)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F7DCD, serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86
        Validity
            Not Before: Aug  8 20:03:39 2025 GMT
            Not After : Aug 15 20:03:39 2025 GMT
        Subject: CN=6896581b-b99c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:4f:a5:55:67:07:f6:0d:03:e7:08:fc:87:f6:
                    d4:10:a2:6e:6d:2b:76:f6:8b:26:5b:96:1f:9a:4b:
                    a3:41:f5:50:f5:f6:2b:57:2c:80:4d:c4:20:72:67:
                    13:71:63:96:77:e2:25:9c:f7:87:fc:98:bf:5f:df:
                    d2:0a:4d:91:bd:12:f7:2b:ef:a8:af:3c:b2:f9:a6:
                    ae:7b:fc:a9:dd:bc:ff:9f:6d:dc:7b:74:30:a9:5f:
                    7a:3b:fc:ab:ca:a1:a5:08:26:5d:af:7e:bf:51:c2:
                    41:96:a3:3f:8d:4d:06:8f:62:a5:f1:22:5c:58:ee:
                    91:7e:cf:f4:89:1e:ce:97:6f:5b:df:6d:01:dd:c4:
                    36:a7:a6:e1:a1:3b:d4:53:3a:6e:01:80:fe:61:56:
                    78:d1:85:52:cf:51:85:fe:e8:97:bc:a9:9d:d8:9e:
                    c8:48:3a:e0:f8:fc:aa:16:f1:67:cc:07:3d:f9:14:
                    a2:74:17:90:48:e2:97:b3:d3:d7:ed:fb:79:87:2f:
                    7d:b8:b7:c2:17:93:6a:2a:95:46:ec:5a:98:54:0d:
                    4b:c4:69:5b:03:3d:be:3a:bf:d5:82:f5:a4:31:fc:
                    5c:11:d2:c7:85:03:b5:3c:be:3b:6f:ab:dc:ea:cb:
                    b8:5d:ba:f9:b0:87:0c:f8:64:7f:a9:7a:14:b2:67:
                    36:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:1E:D0:FB:68:BB:84:FF:C5:8B:58:5D:75:76:C0:1B:E9:B6:2C:2E
            X509v3 Authority Key Identifier:
                keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:9e:2a:ee:64:29:61:8f:7a:62:fe:93:d5:1c:1b:3e:5a:91:
         1a:b8:34:09:57:ad:13:67:d6:0b:c5:52:c1:7a:d1:4b:e2:4d:
         cb:e9:98:32:a4:dd:39:e3:1a:e9:cb:83:f5:0f:1b:a7:e3:a6:
         b4:82:b2:77:23:58:ff:a9:a5:14:86:34:91:9d:f5:46:ae:05:
         94:67:25:46:de:b9:f4:33:2f:70:8d:25:36:95:40:9f:5b:6b:
         b4:5b:e6:04:79:4d:fd:ac:e0:96:46:a6:2e:6d:da:ab:2e:de:
         29:25:0f:b4:b2:4f:10:ca:89:9f:96:28:d3:ba:4a:0b:3f:66:
         a5:1d:a9:5d:75:79:2a:bd:2c:b6:3c:d3:a7:c5:a3:df:15:09:
         53:26:ae:4c:be:90:07:f4:d6:33:eb:ab:69:5d:b3:27:21:6b:
         35:0d:6d:d7:48:00:9d:6d:82:4c:89:d9:85:0a:cf:0c:5b:16:
         f0:03:7b:a2:87:19:b7:8f:b0:17:97:e0:b8:59:7f:a9:dd:0a:
         75:8e:1f:bf:b4:82:6a:c1:46:b4:28:56:e9:0d:f5:9a:55:36:
         25:dc:18:9b:30:4d:43:2d:30:52:af:aa:e7:ca:f1:fa:ef:0f:
         2f:02:98:1b:5c:df:c2:83:7f:60:2a:d5:19:2c:9a:81:85:08:
         21:2d:4f:c6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1
M0EwM0FCODYwHhcNMjUwODA4MjAwMzM5WhcNMjUwODE1MjAwMzM5WjAYMRYwFAYD
VQQDEw02ODk2NTgxYi1iOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAw0+lVWcH9g0D5wj8h/bUEKJubSt29osmW5YfmkujQfVQ9fYrVyyATcQgcmcT
cWOWd+IlnPeH/Ji/X9/SCk2RvRL3K++orzyy+aaue/yp3bz/n23ce3QwqV96O/yr
yqGlCCZdr36/UcJBlqM/jU0Gj2Kl8SJcWO6Rfs/0iR7Ol29b320B3cQ2p6bhoTvU
UzpuAYD+YVZ40YVSz1GF/uiXvKmd2J7ISDrg+PyqFvFnzAc9+RSidBeQSOKXs9PX
7ft5hy99uLfCF5NqKpVG7FqYVA1LxGlbAz2+Or/VgvWkMfxcEdLHhQO1PL47b6vc
6su4Xbr5sIcM+GR/qXoUsmc2wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYe0Pto
u4T/xYtYXXV2wBvptiwuMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz
RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx
NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
N0RDRC84NDQyOEIwRTczRDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWht
cG5teHRnbHR0blJUb0RxNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCmniruZClhj3pi/pPVHBs+WpEauDQJV60TZ9YLxVLBetFL4k3L6Zgy
pN054xrpy4P1Dxun46a0grJ3I1j/qaUUhjSRnfVGrgWUZyVG3rn0My9wjSU2lUCf
W2u0W+YEeU39rOCWRqYubdqrLt4pJQ+0sk8QyomflijTukoLP2alHalddXkqvSy2
PNOnxaPfFQlTJq5MvpAH9NYz66tpXbMnIWs1DW3XSACdbYJMidmFCs8MWxbwA3ui
hxm3j7AXl+C4WX+p3Qp1jh+/tIJqwUa0KFbpDfWaVTYl3BibME1DLTBSr6rnyvH6
7w8vApgbXN/Cg39gKtUZLJqBhQghLU/G
-----END CERTIFICATE-----
Generated at Sun Aug 10 13:49:41 2025 by rpki-client