Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
File:                     bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json)
Hash identifier:          tcJqQQz1SPj0uBOrRh+RFLQqsQV++mzlYptIRmn5uk0=
Subject key identifier:   8C:4E:01:DB:3B:E3:56:58:0C:EF:13:66:C3:FC:A2:AB:E5:5E:23:09
Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C
Certificate issuer:       /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C
Certificate serial:       06A0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
Manifest number:          0699
Signing time:             Tue 22 Jul 2025 22:36:20 +0000
Manifest this update:     Tue 22 Jul 2025 22:36:20 +0000
Manifest next update:     Tue 29 Jul 2025 22:36:20 +0000
Files and hashes:         1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: C7c0lA4LkOzZ6DtEXq8hX8cJONZcMfuw9IdI/qqQwEk=)
                          2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl
                          rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 22:36:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1696 (0x6a0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C
        Validity
            Not Before: Jul 22 22:36:20 2025 GMT
            Not After : Jul 29 22:36:20 2025 GMT
        Subject: CN=68801264-fc03
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:4c:77:4a:c5:13:1c:25:52:73:0c:d1:5f:0c:
                    20:97:2e:d5:fa:ce:34:c6:93:1b:eb:9f:89:30:3c:
                    41:a7:fd:1d:1e:dc:59:60:43:14:5c:81:2a:d8:43:
                    f0:86:55:97:64:67:a9:62:5d:00:8d:d0:d6:81:e3:
                    4c:8e:b1:d6:2a:2a:9d:f0:e8:34:6e:aa:8e:e2:d4:
                    ff:c6:27:7a:6f:4a:f9:37:59:12:22:31:ee:1d:2a:
                    0f:72:b3:63:ad:30:01:2e:fc:fa:e0:5a:c6:7d:19:
                    97:0e:62:a4:48:64:b5:18:73:a9:7c:04:32:33:d5:
                    c6:e2:fa:41:42:8f:df:cb:47:21:7b:9f:dc:bc:04:
                    87:ef:bd:01:ee:af:c0:a3:8d:d7:32:64:57:e4:03:
                    35:db:3d:5c:26:97:9c:5c:58:81:0e:60:a2:75:00:
                    8e:c8:00:cd:28:9f:68:59:f8:3d:cf:cb:78:6f:ff:
                    bd:25:6a:eb:68:e5:b3:2f:01:58:47:a3:aa:35:a6:
                    1a:a7:03:1a:ad:fb:7e:56:9a:be:16:fb:8e:80:c8:
                    d5:92:d1:a9:16:90:68:64:74:86:13:73:52:83:83:
                    54:30:d5:78:b9:1a:50:7a:f0:a6:97:75:22:64:f8:
                    11:cf:6a:7b:e7:f6:af:eb:f7:b4:f0:ec:14:f2:dd:
                    9c:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:4E:01:DB:3B:E3:56:58:0C:EF:13:66:C3:FC:A2:AB:E5:5E:23:09
            X509v3 Authority Key Identifier:
                keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:b6:bc:15:e6:03:bc:d8:81:c3:7d:c4:aa:1e:f6:27:5d:98:
         75:ce:1d:90:01:48:fd:90:52:37:42:ba:dd:b9:16:06:0d:f4:
         8b:c3:0c:76:76:f2:53:ee:42:11:a1:e8:6a:d9:f3:c2:42:17:
         34:e9:38:39:26:bb:ba:e5:54:f8:58:a9:05:fd:a4:a2:31:36:
         a1:75:d3:25:49:e8:9e:12:93:fd:4e:c7:82:cd:72:56:7b:76:
         d5:7b:91:73:83:3d:92:c4:5f:9d:cb:6a:94:79:8c:7b:2e:37:
         9c:90:25:4e:c9:db:c7:c1:37:af:e5:e9:ed:b2:fc:f8:8e:2b:
         09:57:81:93:1c:83:a5:7a:e2:7f:eb:4a:55:a4:68:b5:2c:df:
         32:f7:9e:04:0f:d6:2a:3a:c5:a3:39:1c:0b:a8:67:7f:33:69:
         49:da:35:a1:52:46:bd:91:01:e0:29:b2:d2:8b:39:36:fb:c2:
         40:48:70:30:42:12:45:95:85:cf:52:73:0d:43:fd:dc:54:e1:
         48:98:3d:16:29:20:bb:70:01:48:ad:f5:21:3d:d3:95:e5:5d:
         47:91:d5:ff:31:83:6b:c2:dc:d8:36:d8:dc:cb:dc:8b:d3:ce:
         d4:01:1b:1d:ed:e5:12:33:5a:8a:3f:ca:ff:76:85:e5:50:f8:
         c9:43:e8:34
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5
MTUyNDNEMEMwHhcNMjUwNzIyMjIzNjIwWhcNMjUwNzI5MjIzNjIwWjAYMRYwFAYD
VQQDEw02ODgwMTI2NC1mYzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzEx3SsUTHCVScwzRXwwgly7V+s40xpMb65+JMDxBp/0dHtxZYEMUXIEq2EPw
hlWXZGepYl0AjdDWgeNMjrHWKiqd8Og0bqqO4tT/xid6b0r5N1kSIjHuHSoPcrNj
rTABLvz64FrGfRmXDmKkSGS1GHOpfAQyM9XG4vpBQo/fy0che5/cvASH770B7q/A
o43XMmRX5AM12z1cJpecXFiBDmCidQCOyADNKJ9oWfg9z8t4b/+9JWrraOWzLwFY
R6OqNaYapwMarft+Vpq+FvuOgMjVktGpFpBoZHSGE3NSg4NUMNV4uRpQevCml3Ui
ZPgRz2p75/av6/e08OwU8t2cGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxOAds7
41ZYDO8TZsP8oqvlXiMJMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD
Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ
UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l
TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCPtrwV5gO82IHDfcSqHvYnXZh1zh2QAUj9kFI3QrrduRYGDfSLwwx2
dvJT7kIRoehq2fPCQhc06Tg5Jru65VT4WKkF/aSiMTahddMlSeieEpP9TseCzXJW
e3bVe5Fzgz2SxF+dy2qUeYx7LjeckCVOydvHwTev5entsvz4jisJV4GTHIOleuJ/
60pVpGi1LN8y954ED9YqOsWjORwLqGd/M2lJ2jWhUka9kQHgKbLSizk2+8JASHAw
QhJFlYXPUnMNQ/3cVOFImD0WKSC7cAFIrfUhPdOV5V1HkdX/MYNrwtzYNtjcy9yL
087UARsd7eUSM1qKP8r/doXlUPjJQ+g0
-----END CERTIFICATE-----
Generated at Wed Jul 23 02:26:25 2025 by rpki-client