Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft
File:                     mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft (raw, json)
Hash identifier:          eIRHvvOk2/8KxqgtU+NyQYy1e9oRH2e8P9E70kM1+dY=
Subject key identifier:   C1:CE:D7:D4:55:EE:78:86:5B:6E:0C:78:A4:7F:F0:90:6F:50:32:2C
Authority key identifier: 9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4
Certificate issuer:       /CN=A9147CBE/serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4
Certificate serial:       60
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft
Manifest number:          5F
Signing time:             Wed 23 Jul 2025 07:27:28 +0000
Manifest this update:     Wed 23 Jul 2025 07:27:27 +0000
Manifest next update:     Wed 30 Jul 2025 07:27:27 +0000
Files and hashes:         1: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl (hash: H7B++7SEvNLecKZEAlMqAf+MJvL9HeXG0SrlFnK/m2s=)
                          2: 6D66CE8017BA11F094861F7DC4F9AE02.roa (hash: +D4BVGFKWyg9Pr75Q40/ty5hMk4DuavCG4i3TGDDyg0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl
                          rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 07:27:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 96 (0x60)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9147CBE, serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4
        Validity
            Not Before: Jul 23 07:27:27 2025 GMT
            Not After : Jul 30 07:27:27 2025 GMT
        Subject: CN=68808edf-d34d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:00:7e:f6:31:7d:db:3f:2d:0c:10:ac:d0:66:
                    e6:fa:ed:53:f4:ea:ad:4f:85:81:50:7c:65:5a:8a:
                    fa:e6:e0:9b:0a:66:93:04:a6:b7:50:21:a8:f5:20:
                    d2:f4:21:d1:2f:db:55:dd:b3:25:f0:6e:38:2c:94:
                    5b:72:00:02:a7:e9:80:37:95:a0:66:c8:fe:fb:2c:
                    50:ba:92:6d:05:b5:36:56:4b:4c:10:32:73:e3:bf:
                    c7:b3:d3:3c:59:8b:0b:af:19:05:56:3b:e1:ce:00:
                    0e:30:b9:e8:32:3b:f3:d7:fa:1b:95:ad:03:27:7b:
                    d9:ed:d7:c7:a1:d7:4d:23:2c:9a:dc:78:6e:e7:2f:
                    1b:4b:9e:f0:b5:30:e0:60:fe:5e:52:30:95:0f:19:
                    ef:df:9b:99:56:2d:42:c0:84:42:17:38:db:5c:29:
                    a5:51:c9:5d:1a:dd:60:fd:63:b6:37:85:1f:ce:a0:
                    d7:42:9c:96:3f:e8:1e:ff:19:0f:f3:72:64:f7:c5:
                    7a:7e:1c:c0:84:8a:27:0f:f5:7d:58:f7:27:e3:02:
                    fd:c4:94:77:20:8c:ec:16:e4:cc:df:12:80:ac:72:
                    98:01:56:b1:63:50:b4:0b:50:5c:29:c6:ab:6e:98:
                    48:b7:d3:6f:d9:cd:e6:da:b3:f1:d9:3f:88:81:a4:
                    a8:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:CE:D7:D4:55:EE:78:86:5B:6E:0C:78:A4:7F:F0:90:6F:50:32:2C
            X509v3 Authority Key Identifier:
                keyid:9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:db:ff:89:70:99:da:18:21:f8:da:1b:58:c9:51:93:14:2d:
         89:f2:1d:c6:b2:20:3b:1d:ce:07:7c:60:56:11:dc:52:ee:cd:
         ca:70:31:a9:2c:00:e5:cf:4c:f4:4d:de:10:8c:9d:e1:2f:02:
         d4:a7:ef:bf:82:23:64:c7:2f:4a:52:9b:a9:26:88:b5:a3:f5:
         44:ba:b0:35:46:8c:d1:c9:4a:6e:80:83:72:15:f4:f3:3c:69:
         2e:fc:64:a1:c6:e0:58:d5:c1:36:a7:2c:ea:08:ee:c8:e2:d8:
         dd:2b:93:00:86:e7:a5:86:7b:17:e8:06:f8:bd:e6:a3:2f:a6:
         cd:00:4b:57:3e:5c:b5:cc:29:03:3b:fc:c2:2b:91:94:85:fc:
         9b:e9:9e:eb:46:84:f8:36:89:53:bb:1c:76:76:28:8b:15:77:
         40:7e:0a:9e:8e:7e:76:7c:c7:2f:7e:73:93:30:05:a9:76:63:
         30:68:7f:08:0c:38:00:cb:95:ee:bb:13:fd:da:41:f8:9e:60:
         cb:ea:40:76:e8:ea:c9:16:1e:f9:3b:1f:bd:95:6d:7a:43:66:
         05:21:44:e5:71:1f:0a:47:4c:46:14:17:19:34:1f:53:f1:f5:
         e3:52:24:8e:c0:93:30:01:36:0b:ef:62:93:14:be:09:14:3a:
         b7:fc:6a:53
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0
N0NCRTExMC8GA1UEBRMoOUExNjI0RjQ2MDgyRjU0QUM1Nzc4ODU5RTIyNkJEM0JB
NjkwMjNGNDAeFw0yNTA3MjMwNzI3MjdaFw0yNTA3MzAwNzI3MjdaMBgxFjAUBgNV
BAMTDTY4ODA4ZWRmLWQzNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQChAH72MX3bPy0MEKzQZub67VP06q1PhYFQfGVaivrm4JsKZpMEprdQIaj1INL0
IdEv21XdsyXwbjgslFtyAAKn6YA3laBmyP77LFC6km0FtTZWS0wQMnPjv8ez0zxZ
iwuvGQVWO+HOAA4wuegyO/PX+huVrQMne9nt18eh100jLJrceG7nLxtLnvC1MOBg
/l5SMJUPGe/fm5lWLULAhEIXONtcKaVRyV0a3WD9Y7Y3hR/OoNdCnJY/6B7/GQ/z
cmT3xXp+HMCEiicP9X1Y9yfjAv3ElHcgjOwW5MzfEoCscpgBVrFjULQLUFwpxqtu
mEi302/Zzebas/HZP4iBpKjPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwc7X1FXu
eIZbbgx4pH/wkG9QMiwwHwYDVR0jBBgwFoAUmhYk9GCC9UrFd4hZ4ia9O6aQI/Qw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0JFLzgzQkE4N0FFRDdD
MjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVyRmQ0aFo0aWE5TzZhUUlf
US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvbWhZazlHQ0M5VXJGZDRoWjRpYTlPNmFRSV9RLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3
Q0JFLzgzQkE4N0FFRDdDMjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVy
RmQ0aFo0aWE5TzZhUUlfUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAAbb/4lwmdoYIfjaG1jJUZMULYnyHcayIDsdzgd8YFYR3FLuzcpwMaks
AOXPTPRN3hCMneEvAtSn77+CI2THL0pSm6kmiLWj9US6sDVGjNHJSm6Ag3IV9PM8
aS78ZKHG4FjVwTanLOoI7sji2N0rkwCG56WGexfoBvi95qMvps0AS1c+XLXMKQM7
/MIrkZSF/JvpnutGhPg2iVO7HHZ2KIsVd0B+Cp6OfnZ8xy9+c5MwBal2YzBofwgM
OADLle67E/3aQfieYMvqQHbo6skWHvk7H72VbXpDZgUhROVxHwpHTEYUFxk0H1Px
9eNSJI7AkzABNgvvYpMUvgkUOrf8alM=
-----END CERTIFICATE-----
Generated at Thu Jul 24 08:31:10 2025 by rpki-client