Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft
File:                     m8V5k3xyDN2n11YYtyJj0kza_K4.mft (raw, json)
Hash identifier:          8GiIwHbAJ9/aftwY1DW4TiOHlsa6SCC0k4Z8WHSfQk8=
Subject key identifier:   8F:7F:14:C9:6B:6A:96:15:53:9D:DA:1F:47:60:60:9C:63:21:8C:13
Authority key identifier: 9B:C5:79:93:7C:72:0C:DD:A7:D7:56:18:B7:22:63:D2:4C:DA:FC:AE
Certificate issuer:       /CN=A91396E7/serialNumber=9BC579937C720CDDA7D75618B72263D24CDAFCAE
Certificate serial:       8D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft
Manifest number:          8D
Signing time:             Fri 25 Jul 2025 06:50:56 +0000
Manifest this update:     Fri 25 Jul 2025 06:50:56 +0000
Manifest next update:     Fri 01 Aug 2025 06:50:56 +0000
Files and hashes:         1: m8V5k3xyDN2n11YYtyJj0kza_K4.crl (hash: +0HS+uaQgIrcOLfvHtSdehg6mhBIH7AsQAmiZXfbxQ0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.crl
                          rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 06:50:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 141 (0x8d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91396E7, serialNumber=9BC579937C720CDDA7D75618B72263D24CDAFCAE
        Validity
            Not Before: Jul 25 06:50:56 2025 GMT
            Not After : Aug  1 06:50:56 2025 GMT
        Subject: CN=68832950-3ed1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:17:a2:1c:46:7f:78:56:79:10:15:c3:35:dd:
                    6c:3a:58:0a:f8:33:89:ba:ba:f9:c7:7c:61:70:9c:
                    58:bd:4b:f8:64:4a:a4:29:db:2f:56:de:33:8c:21:
                    6e:49:61:54:0a:24:8f:ad:8a:43:34:81:0e:19:52:
                    32:fc:a9:b4:21:53:dc:b6:0e:42:4d:a8:56:00:92:
                    05:05:07:fe:57:bf:58:c5:ee:65:0c:0b:3f:1b:53:
                    b8:de:02:6d:e4:77:18:85:74:c3:2f:52:f2:7a:13:
                    66:32:9a:0c:d7:3c:44:a6:1f:55:82:c8:a0:71:bd:
                    73:8b:4a:4b:ba:85:2d:5d:04:7e:e3:19:4e:d7:f3:
                    20:4a:0b:d0:2e:06:f8:e7:33:46:34:b9:4e:dd:84:
                    27:05:9a:24:5c:10:c5:02:34:89:ec:43:63:03:98:
                    33:b9:de:76:e2:d0:ae:d9:33:06:a5:06:60:f7:87:
                    1e:92:0f:e5:b2:14:81:00:fa:47:a7:d3:32:64:1c:
                    73:89:fd:92:34:24:65:59:21:4a:2e:ff:19:e0:c3:
                    f5:75:e4:aa:d1:10:30:75:ce:11:fa:1b:b9:2a:c1:
                    f3:e6:68:57:d0:9e:46:18:ad:52:63:88:42:f1:28:
                    62:d0:34:20:83:7a:74:91:6f:88:e8:77:1b:da:fb:
                    19:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:7F:14:C9:6B:6A:96:15:53:9D:DA:1F:47:60:60:9C:63:21:8C:13
            X509v3 Authority Key Identifier:
                keyid:9B:C5:79:93:7C:72:0C:DD:A7:D7:56:18:B7:22:63:D2:4C:DA:FC:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:0d:c6:c9:cb:fc:1a:c4:58:f1:b6:30:4a:8e:d5:c3:05:61:
         1c:0a:c5:34:a3:de:55:03:0a:f4:b4:f5:e2:0b:24:04:30:3f:
         9c:1d:d7:ac:1b:de:69:be:5c:1c:8b:66:12:e6:6d:fc:1c:c7:
         eb:b3:b1:2c:e4:79:77:c6:aa:6a:4c:d7:60:4f:a5:36:93:5f:
         a2:2d:4e:a9:b0:43:ff:51:3b:72:9a:22:d8:23:80:1d:c8:c9:
         40:3a:47:7a:ba:0a:0c:ea:3f:1a:69:02:3f:67:cb:8b:c6:b4:
         21:c0:7f:d2:e6:63:e4:db:4f:18:f4:b6:b8:bb:d4:c9:7c:80:
         86:22:83:b7:e7:c1:f8:5f:49:56:52:20:b3:27:4b:5c:af:cc:
         de:5f:f8:19:de:ee:02:d1:ee:ae:c3:c8:77:1a:dd:66:1e:47:
         2e:82:2d:14:04:e8:8b:17:b0:bc:b8:5c:2c:a7:e7:f3:25:2c:
         11:45:f8:93:5c:b1:35:3c:c5:df:ed:73:b0:b0:33:99:28:e4:
         d9:64:c9:5e:de:74:08:95:23:4f:04:c3:b0:ef:c4:40:63:25:
         c4:27:36:7f:e5:56:cb:75:1a:16:23:8f:e6:7a:7c:4c:65:bc:
         18:20:de:ae:7b:ab:ef:1e:0c:01:1e:8d:e6:36:4f:f5:08:ff:
         b4:81:a8:4b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Mzk2RTcxMTAvBgNVBAUTKDlCQzU3OTkzN0M3MjBDRERBN0Q3NTYxOEI3MjI2M0Qy
NENEQUZDQUUwHhcNMjUwNzI1MDY1MDU2WhcNMjUwODAxMDY1MDU2WjAYMRYwFAYD
VQQDEw02ODgzMjk1MC0zZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsReiHEZ/eFZ5EBXDNd1sOlgK+DOJurr5x3xhcJxYvUv4ZEqkKdsvVt4zjCFu
SWFUCiSPrYpDNIEOGVIy/Km0IVPctg5CTahWAJIFBQf+V79Yxe5lDAs/G1O43gJt
5HcYhXTDL1LyehNmMpoM1zxEph9Vgsigcb1zi0pLuoUtXQR+4xlO1/MgSgvQLgb4
5zNGNLlO3YQnBZokXBDFAjSJ7ENjA5gzud524tCu2TMGpQZg94cekg/lshSBAPpH
p9MyZBxzif2SNCRlWSFKLv8Z4MP1deSq0RAwdc4R+hu5KsHz5mhX0J5GGK1SY4hC
8Shi0DQgg3p0kW+I6Hcb2vsZSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9/FMlr
apYVU53aH0dgYJxjIYwTMB8GA1UdIwQYMBaAFJvFeZN8cgzdp9dWGLciY9JM2vyu
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTZFNy8wRjM4ODQyODkx
MjUxMUVGOTQyQTJCMjhDNEY5QUUwMi9tOFY1azN4eUROMm4xMVlZdHlKajBremFf
SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL204VjVrM3h5RE4ybjExWVl0eUpqMGt6YV9LNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
OTZFNy8wRjM4ODQyODkxMjUxMUVGOTQyQTJCMjhDNEY5QUUwMi9tOFY1azN4eURO
Mm4xMVlZdHlKajBremFfSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQARDcbJy/waxFjxtjBKjtXDBWEcCsU0o95VAwr0tPXiCyQEMD+cHdes
G95pvlwci2YS5m38HMfrs7Es5Hl3xqpqTNdgT6U2k1+iLU6psEP/UTtymiLYI4Ad
yMlAOkd6ugoM6j8aaQI/Z8uLxrQhwH/S5mPk208Y9La4u9TJfICGIoO358H4X0lW
UiCzJ0tcr8zeX/gZ3u4C0e6uw8h3Gt1mHkcugi0UBOiLF7C8uFwsp+fzJSwRRfiT
XLE1PMXf7XOwsDOZKOTZZMle3nQIlSNPBMOw78RAYyXEJzZ/5VbLdRoWI4/menxM
ZbwYIN6ue6vvHgwBHo3mNk/1CP+0gahL
-----END CERTIFICATE-----
Generated at Sat Jul 26 02:04:10 2025 by rpki-client