Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft
File:                     -lmybsZZeADDV53XBz-ktoWnwtI.mft (raw, json)
Hash identifier:          3sVg8B17IAMQIX9Q0ujruKj0Rau2W7ivijMKLm193IE=
Subject key identifier:   93:4A:F0:40:29:03:8D:CC:08:BA:A1:F5:8E:8F:1F:C0:66:A5:EF:88
Authority key identifier: FA:59:B2:6E:C6:59:78:00:C3:57:9D:D7:07:3F:A4:B6:85:A7:C2:D2
Certificate issuer:       /CN=A9131B38/serialNumber=FA59B26EC6597800C3579DD7073FA4B685A7C2D2
Certificate serial:       040A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft
Manifest number:          0404
Signing time:             Wed 23 Jul 2025 00:51:06 +0000
Manifest this update:     Wed 23 Jul 2025 00:51:05 +0000
Manifest next update:     Wed 30 Jul 2025 00:51:05 +0000
Files and hashes:         1: -lmybsZZeADDV53XBz-ktoWnwtI.crl (hash: 15SskC48u/TVCTirPxM7zf3+XjScRqrLNHlD3G7p36c=)
                          2: 445C8236B69311EC9650A57CC4F9AE02.roa (hash: /iDRAphVdSgU2e36vGmGSufKHFaLvSp39p6b7uKMJro=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.crl
                          rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 00:51:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1034 (0x40a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9131B38, serialNumber=FA59B26EC6597800C3579DD7073FA4B685A7C2D2
        Validity
            Not Before: Jul 23 00:51:05 2025 GMT
            Not After : Jul 30 00:51:05 2025 GMT
        Subject: CN=688031f9-63da
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:96:14:7b:a6:6a:7d:13:8c:76:08:eb:a1:93:
                    52:bb:74:43:a4:d0:54:aa:7e:c3:19:1a:98:60:ba:
                    8f:da:9e:d8:b7:7f:c3:25:fd:3d:eb:e9:06:f6:03:
                    24:d1:48:1d:a3:ee:1d:b4:ad:da:1b:28:2c:01:7d:
                    44:29:b2:08:a9:ea:62:20:f4:49:0b:bb:f7:a6:90:
                    46:e0:fe:e2:3a:1e:dd:d3:67:3b:d3:93:12:fd:ba:
                    0e:ce:6e:c3:d6:e5:e7:f6:5e:74:bb:e7:0c:39:f9:
                    93:5f:33:97:e2:5c:d3:61:37:a0:97:f6:ec:ea:0f:
                    23:46:d6:e3:c9:5c:b8:4a:ad:53:84:79:2b:0c:ad:
                    df:47:1f:3e:00:22:2a:bf:92:3e:07:52:3b:f6:7d:
                    ed:c6:1e:94:27:b2:d6:fe:76:ca:ec:d5:5e:33:16:
                    bb:ff:91:ff:71:bb:da:72:ea:9a:5f:05:f7:95:0a:
                    0c:89:9b:e7:aa:62:82:36:80:7d:43:46:82:d2:ce:
                    8e:d3:6a:cc:44:e6:a3:bc:11:c9:74:ba:8b:f2:73:
                    3d:d3:20:e0:1e:f1:f7:93:f4:5f:b3:d6:ce:82:27:
                    4c:60:21:f9:28:a3:34:7a:64:27:6c:06:32:b5:ac:
                    09:92:fc:44:b1:1e:58:9a:85:b1:01:cf:2d:b5:07:
                    b4:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:4A:F0:40:29:03:8D:CC:08:BA:A1:F5:8E:8F:1F:C0:66:A5:EF:88
            X509v3 Authority Key Identifier:
                keyid:FA:59:B2:6E:C6:59:78:00:C3:57:9D:D7:07:3F:A4:B6:85:A7:C2:D2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         aa:9b:5e:64:8e:49:fe:78:29:fe:f1:6b:7f:38:d7:5a:40:20:
         1a:c5:01:11:b0:85:aa:15:ca:c1:bb:9d:aa:ac:a5:e7:89:d5:
         02:c9:5b:ec:4d:ed:2c:54:b1:30:38:55:06:96:34:c3:22:73:
         8a:e4:e4:80:29:49:dc:03:9f:da:f4:bc:7b:94:95:3e:7b:81:
         fe:51:bd:77:db:3e:8b:02:e2:ed:4b:9c:8f:d6:1e:f8:b8:6f:
         bd:56:e0:88:18:7e:d2:1a:03:c1:f6:ee:77:1c:c8:5e:18:c6:
         ae:d8:ad:6e:82:bf:ae:97:3b:50:d9:76:d2:99:b4:7b:81:11:
         68:8a:e7:ad:1a:42:90:ac:7b:db:b5:72:f9:d0:db:ef:e2:0c:
         07:50:af:9d:dd:10:67:a1:f8:99:28:a3:56:53:40:c7:6b:a0:
         e2:f9:71:0d:80:f4:b3:a9:d0:58:bf:35:7c:6c:ef:2b:09:15:
         55:12:f7:7a:b8:48:f1:e2:23:77:07:ca:12:cb:a6:dd:0a:a4:
         14:8e:3a:d8:d3:83:d0:4e:05:f7:5c:e2:05:f1:8d:43:4b:b5:
         45:82:6c:36:73:d1:4b:53:ea:c0:58:3a:0a:20:4d:f6:24:69:
         7e:ab:e6:06:8a:f7:13:f2:57:9e:7a:24:fc:97:fb:e2:9e:15:
         52:ce:a0:01
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzFCMzgxMTAvBgNVBAUTKEZBNTlCMjZFQzY1OTc4MDBDMzU3OURENzA3M0ZBNEI2
ODVBN0MyRDIwHhcNMjUwNzIzMDA1MTA1WhcNMjUwNzMwMDA1MTA1WjAYMRYwFAYD
VQQDEw02ODgwMzFmOS02M2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzpYUe6ZqfROMdgjroZNSu3RDpNBUqn7DGRqYYLqP2p7Yt3/DJf096+kG9gMk
0Ugdo+4dtK3aGygsAX1EKbIIqepiIPRJC7v3ppBG4P7iOh7d02c705MS/boOzm7D
1uXn9l50u+cMOfmTXzOX4lzTYTegl/bs6g8jRtbjyVy4Sq1ThHkrDK3fRx8+ACIq
v5I+B1I79n3txh6UJ7LW/nbK7NVeMxa7/5H/cbvacuqaXwX3lQoMiZvnqmKCNoB9
Q0aC0s6O02rMROajvBHJdLqL8nM90yDgHvH3k/Rfs9bOgidMYCH5KKM0emQnbAYy
tawJkvxEsR5YmoWxAc8ttQe0WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNK8EAp
A43MCLqh9Y6PH8Bmpe+IMB8GA1UdIwQYMBaAFPpZsm7GWXgAw1ed1wc/pLaFp8LS
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUIzOC8yREY1NDQ1NDdE
MEIxMUVDQkEyMzk0MzNDNEY5QUUwMi8tbG15YnNaWmVBRERWNTNYQnota3RvV253
dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLy1sbXlic1paZUFERFY1M1hCei1rdG9Xbnd0SS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MUIzOC8yREY1NDQ1NDdEMEIxMUVDQkEyMzk0MzNDNEY5QUUwMi8tbG15YnNaWmVB
RERWNTNYQnota3RvV253dEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCqm15kjkn+eCn+8Wt/ONdaQCAaxQERsIWqFcrBu52qrKXnidUCyVvs
Te0sVLEwOFUGljTDInOK5OSAKUncA5/a9Lx7lJU+e4H+Ub132z6LAuLtS5yP1h74
uG+9VuCIGH7SGgPB9u53HMheGMau2K1ugr+ulztQ2XbSmbR7gRFoiuetGkKQrHvb
tXL50Nvv4gwHUK+d3RBnofiZKKNWU0DHa6Di+XENgPSzqdBYvzV8bO8rCRVVEvd6
uEjx4iN3B8oSy6bdCqQUjjrY04PQTgX3XOIF8Y1DS7VFgmw2c9FLU+rAWDoKIE32
JGl+q+YGivcT8leeeiT8l/vinhVSzqAB
-----END CERTIFICATE-----
Generated at Thu Jul 24 03:58:32 2025 by rpki-client