Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
File:                     SihlGpSsY59qsTJHTTHrDfzm3Hk.mft (raw, json)
Hash identifier:          LUpWrg3BijxUBASIqoG8xAKPPOC9/k7O5gQaYvhy1NE=
Subject key identifier:   31:8D:D9:50:34:1D:1A:FB:0C:FB:09:CA:E6:4D:DC:E1:F2:4D:98:C3
Authority key identifier: 4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79
Certificate issuer:       /CN=A9122373/serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79
Certificate serial:       04EB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
Manifest number:          04DA
Signing time:             Sun 20 Jul 2025 23:59:17 +0000
Manifest this update:     Sun 20 Jul 2025 23:59:17 +0000
Manifest next update:     Sun 27 Jul 2025 23:59:17 +0000
Files and hashes:         1: SihlGpSsY59qsTJHTTHrDfzm3Hk.crl (hash: kB98KlAefZTCZGi4GElWATT0qLiyPUIfgmRoaqM+3Gs=)
                          2: A64296622BAA11EC9618D864C4F9AE02.roa (hash: OMr4Dz07a9K+JRAHryD2B9Vl/J9RaoHPdVjAOTh62ZI=)
                          3: C420EBE06EC911EC8A5A940AC4F9AE02.roa (hash: t0Udbj/BMaf/sH0WctEk56jZ3TVW9akvyOH3KkeFZWA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl
                          rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 23:59:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1259 (0x4eb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9122373, serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79
        Validity
            Not Before: Jul 20 23:59:17 2025 GMT
            Not After : Jul 27 23:59:17 2025 GMT
        Subject: CN=687d82d5-3d97
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:be:b2:48:89:ac:fb:60:a7:60:57:66:ac:26:
                    ac:55:30:0e:2b:68:40:71:0a:92:60:d2:ec:36:8a:
                    36:c2:19:4a:18:a2:57:18:0f:15:ee:32:04:5d:ff:
                    0d:f9:d9:a4:cc:b6:76:ad:fb:36:b0:e0:c0:55:a2:
                    4d:cf:c9:a9:0f:99:45:5b:f0:07:55:a8:8d:5a:df:
                    3b:c6:9e:fd:d8:69:b6:e5:24:7b:c8:34:2e:15:14:
                    6b:19:a7:62:7a:6c:05:ab:b0:ff:e3:47:c4:99:16:
                    94:37:99:d6:14:88:21:14:82:2a:8c:28:63:e7:59:
                    2b:15:94:10:e3:22:a6:d2:e5:76:5d:6e:a5:71:95:
                    25:c1:d2:aa:99:91:70:35:c5:76:f3:66:df:e0:42:
                    3a:e2:c8:99:66:e4:4c:9d:25:e8:a9:65:bf:93:af:
                    08:83:11:5c:92:f2:4a:98:bb:98:de:fc:ff:ef:ee:
                    7b:f5:e8:77:3c:aa:e3:8e:76:a8:cc:83:80:6f:77:
                    ee:f7:c1:42:ec:85:e8:99:47:56:98:7c:bb:ab:d6:
                    84:a8:61:78:54:91:00:ed:8f:f5:ff:e1:99:ce:b5:
                    a8:14:f2:c3:71:9f:16:0e:e2:a4:a4:d2:8e:59:a5:
                    9d:16:ad:37:96:27:b0:11:c5:92:7a:90:1f:36:9f:
                    cf:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:8D:D9:50:34:1D:1A:FB:0C:FB:09:CA:E6:4D:DC:E1:F2:4D:98:C3
            X509v3 Authority Key Identifier:
                keyid:4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:73:4c:f6:9d:8e:23:32:0e:d4:f0:7c:b1:2d:eb:7f:c0:da:
         e0:6b:1b:d6:79:4a:cd:fb:7c:70:e4:13:6b:29:1b:36:c3:c8:
         fe:4c:74:7d:9e:ae:b0:0f:42:11:54:8b:a3:3b:57:8d:31:f6:
         3e:00:92:89:14:b5:78:23:6a:30:20:72:8a:20:95:33:bc:3b:
         8d:3e:89:a5:9b:0a:8f:c5:55:78:d0:bb:38:01:df:e3:7c:aa:
         9f:42:52:ff:61:06:4a:d8:a4:bb:77:ab:0f:23:3c:d9:40:d6:
         f9:57:b8:f6:0f:af:56:6d:69:f6:1a:76:39:27:d6:31:e4:42:
         55:26:1f:53:ef:c0:8f:d8:e5:3b:f7:8f:0d:da:23:a5:c7:78:
         61:3c:b1:95:c8:04:9e:8a:1e:68:cc:22:fa:3a:6a:71:c4:3b:
         15:4c:38:db:8c:6c:83:59:90:7d:07:82:26:2d:82:fa:5f:89:
         03:31:3d:d3:88:83:92:5c:e3:1d:f4:71:60:1a:1d:58:da:d8:
         8c:39:cd:16:2a:f9:06:ed:2a:3b:eb:96:e8:0f:93:52:38:6d:
         00:7c:07:b5:2d:28:c2:fb:fb:a2:0c:8d:23:f9:62:0d:62:39:
         7e:d7:86:6d:c4:a5:4f:89:0c:d6:bc:15:1e:1c:4e:40:a3:6d:
         bb:29:ce:85
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjIzNzMxMTAvBgNVBAUTKDRBMjg2NTFBOTRBQzYzOUY2QUIxMzI0NzREMzFFQjBE
RkNFNkRDNzkwHhcNMjUwNzIwMjM1OTE3WhcNMjUwNzI3MjM1OTE3WjAYMRYwFAYD
VQQDEw02ODdkODJkNS0zZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3b6ySIms+2CnYFdmrCasVTAOK2hAcQqSYNLsNoo2whlKGKJXGA8V7jIEXf8N
+dmkzLZ2rfs2sODAVaJNz8mpD5lFW/AHVaiNWt87xp792Gm25SR7yDQuFRRrGadi
emwFq7D/40fEmRaUN5nWFIghFIIqjChj51krFZQQ4yKm0uV2XW6lcZUlwdKqmZFw
NcV282bf4EI64siZZuRMnSXoqWW/k68IgxFckvJKmLuY3vz/7+579eh3PKrjjnao
zIOAb3fu98FC7IXomUdWmHy7q9aEqGF4VJEA7Y/1/+GZzrWoFPLDcZ8WDuKkpNKO
WaWdFq03liewEcWSepAfNp/PjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGN2VA0
HRr7DPsJyuZN3OHyTZjDMB8GA1UdIwQYMBaAFEooZRqUrGOfarEyR00x6w385tx5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM3My8yQzAwNkJCODJC
MkQxMUVDQjg0RTcyNzNDNEY5QUUwMi9TaWhsR3BTc1k1OXFzVEpIVFRIckRmem0z
SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NpaGxHcFNzWTU5cXNUSkhUVEhyRGZ6bTNIay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MjM3My8yQzAwNkJCODJCMkQxMUVDQjg0RTcyNzNDNEY5QUUwMi9TaWhsR3BTc1k1
OXFzVEpIVFRIckRmem0zSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAzc0z2nY4jMg7U8HyxLet/wNrgaxvWeUrN+3xw5BNrKRs2w8j+THR9
nq6wD0IRVIujO1eNMfY+AJKJFLV4I2owIHKKIJUzvDuNPomlmwqPxVV40Ls4Ad/j
fKqfQlL/YQZK2KS7d6sPIzzZQNb5V7j2D69WbWn2GnY5J9Yx5EJVJh9T78CP2OU7
948N2iOlx3hhPLGVyASeih5ozCL6OmpxxDsVTDjbjGyDWZB9B4ImLYL6X4kDMT3T
iIOSXOMd9HFgGh1Y2tiMOc0WKvkG7So765boD5NSOG0AfAe1LSjC+/uiDI0j+WIN
Yjl+14ZtxKVPiQzWvBUeHE5Ao227Kc6F
-----END CERTIFICATE-----
Generated at Tue Jul 22 12:32:06 2025 by rpki-client