Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft
File:                     tGadMNIQ5JB80oiL50uJpt08tsg.mft (raw, json)
Hash identifier:          ABuscJnOJtjx22tDP5vGMgCdznkJcF564cW5IwJ+SRw=
Subject key identifier:   47:05:DC:8B:1F:21:BE:8E:6B:50:49:92:C7:C1:E4:6B:D9:F0:19:8D
Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8
Certificate issuer:       /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8
Certificate serial:       0942
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft
Manifest number:          092D
Signing time:             Tue 22 Jul 2025 20:31:24 +0000
Manifest this update:     Tue 22 Jul 2025 20:31:24 +0000
Manifest next update:     Tue 29 Jul 2025 20:31:24 +0000
Files and hashes:         1: tGadMNIQ5JB80oiL50uJpt08tsg.crl (hash: 77oav00I3NJle+B11Czv1KKhXc1JsSFyTDBdhITURPk=)
                          2: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (hash: p54CFofowbUbktzQ5l2cM2w3M6idGp06vDW+Qt3EoTM=)
                          3: B350B67E964611EDA10D8777C4F9AE02.roa (hash: dqgw7Vjah1kgl1Eb2Qsi3T+K4Ggh+1iUdEI4VBpnCIA=)
                          4: D7120558A7ED11EA95BED565C4F9AE02.roa (hash: 69e6c/vHo1P1XZkYWN+UCZupbdC0oSmCyhIpttIVtDU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl
                          rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 20:31:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2370 (0x942)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9161A58, serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8
        Validity
            Not Before: Jul 22 20:31:24 2025 GMT
            Not After : Jul 29 20:31:24 2025 GMT
        Subject: CN=687ff51c-12d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:8f:57:b2:f8:4c:b1:f5:cc:6f:e0:bb:7b:08:
                    97:cf:92:e2:04:3f:03:6f:16:69:a3:59:11:56:73:
                    f2:e2:69:fa:39:44:59:f3:42:e0:6d:c8:1f:57:de:
                    4f:3a:b3:5d:97:40:36:03:ed:c5:f6:f9:a0:82:91:
                    81:74:81:62:db:a1:d3:54:50:2a:ec:1e:cc:a6:c7:
                    7a:3e:80:ad:37:91:b9:9b:16:11:b3:3e:2f:5f:50:
                    d5:57:ce:7a:d0:6d:ab:66:e2:df:42:34:40:6b:c3:
                    fe:c7:02:7e:35:81:7f:17:7f:c5:53:23:8a:c4:6b:
                    a6:90:14:ea:ee:18:a5:15:9a:2e:d2:03:43:36:06:
                    87:c7:a1:4e:70:3b:95:cf:b3:c8:fe:8e:bb:98:63:
                    23:f3:21:f0:84:6e:4b:e3:65:03:95:90:be:bf:fa:
                    70:a8:98:31:02:45:94:4f:65:90:d4:cb:c7:dd:e0:
                    69:af:83:c3:1d:9b:03:eb:6d:61:5e:c0:de:bd:17:
                    85:14:f7:8b:e2:a2:95:f0:44:36:2c:9f:e0:12:ec:
                    a2:fe:28:c6:30:6f:08:f3:fe:ba:b2:8f:fe:8b:9b:
                    f8:6f:44:e4:66:ab:d7:93:40:19:a0:26:bc:19:3d:
                    90:af:64:5c:fb:3f:19:14:e7:a8:df:2d:34:58:83:
                    12:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:05:DC:8B:1F:21:BE:8E:6B:50:49:92:C7:C1:E4:6B:D9:F0:19:8D
            X509v3 Authority Key Identifier:
                keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:b2:26:33:22:85:3c:94:59:0b:5c:97:01:ff:b2:48:b3:e6:
         8b:e1:6d:13:3f:2e:2f:57:9e:5c:1b:f2:d8:5f:ac:0d:4a:e8:
         79:1e:56:4b:93:a3:0f:8d:ae:e2:ad:0c:dc:c6:95:f5:8b:1a:
         78:9b:40:06:aa:fa:0f:ef:aa:20:34:cf:3c:ab:ce:a3:ce:a5:
         62:ac:c5:dc:07:d5:68:fc:ba:37:37:39:52:df:41:7f:29:e6:
         be:01:23:61:df:b6:12:32:92:63:8c:75:fc:48:ac:24:d2:f0:
         f4:c6:4c:c9:37:6b:86:99:55:75:3c:01:93:5c:93:e2:65:e1:
         a9:58:11:bc:d7:e1:ed:39:7f:81:c5:d8:c1:84:78:a9:18:4b:
         9a:65:b5:1e:aa:fa:df:72:8e:5c:2c:24:de:76:8f:1e:91:0d:
         0a:48:3e:54:7e:73:82:8d:28:59:a5:17:33:d7:93:90:3e:ee:
         99:0f:2b:46:95:1f:d3:08:3e:43:16:41:56:f6:77:f9:8c:7c:
         ad:ae:fd:29:38:ab:f5:75:2d:b2:6f:8a:d2:4d:db:7c:a6:97:
         14:f4:63:dd:c6:30:f7:73:0f:e5:5b:dd:4f:33:11:29:98:20:
         03:14:9d:93:82:bc:75:7c:37:65:c6:69:0e:40:7c:4e:c5:4c:
         04:9b:c3:84
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2
REQzQ0I2QzgwHhcNMjUwNzIyMjAzMTI0WhcNMjUwNzI5MjAzMTI0WjAYMRYwFAYD
VQQDEw02ODdmZjUxYy0xMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAlI9XsvhMsfXMb+C7ewiXz5LiBD8DbxZpo1kRVnPy4mn6OURZ80LgbcgfV95P
OrNdl0A2A+3F9vmggpGBdIFi26HTVFAq7B7Mpsd6PoCtN5G5mxYRsz4vX1DVV856
0G2rZuLfQjRAa8P+xwJ+NYF/F3/FUyOKxGumkBTq7hilFZou0gNDNgaHx6FOcDuV
z7PI/o67mGMj8yHwhG5L42UDlZC+v/pwqJgxAkWUT2WQ1MvH3eBpr4PDHZsD621h
XsDevReFFPeL4qKV8EQ2LJ/gEuyi/ijGMG8I8/66so/+i5v4b0TkZqvXk0AZoCa8
GT2Qr2Rc+z8ZFOeo3y00WIMS/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcF3Isf
Ib6Oa1BJksfB5GvZ8BmNMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3
RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0
c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
MUE1OC9CMzg5MzA0RUE3RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVK
Qjgwb2lMNTB1SnB0MDh0c2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBEsiYzIoU8lFkLXJcB/7JIs+aL4W0TPy4vV55cG/LYX6wNSuh5HlZL
k6MPja7irQzcxpX1ixp4m0AGqvoP76ogNM88q86jzqVirMXcB9Vo/Lo3NzlS30F/
Kea+ASNh37YSMpJjjHX8SKwk0vD0xkzJN2uGmVV1PAGTXJPiZeGpWBG81+HtOX+B
xdjBhHipGEuaZbUeqvrfco5cLCTedo8ekQ0KSD5UfnOCjShZpRcz15OQPu6ZDytG
lR/TCD5DFkFW9nf5jHytrv0pOKv1dS2yb4rSTdt8ppcU9GPdxjD3cw/lW91PMxEp
mCADFJ2Tgrx1fDdlxmkOQHxOxUwEm8OE
-----END CERTIFICATE-----
Generated at Wed Jul 23 02:26:21 2025 by rpki-client