Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
File:                     065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json)
Hash identifier:          9zP3BhrDqYL79csFF4K0FwNxCuU+GAgZwlcPyAWrpnM=
Subject key identifier:   0D:59:64:C8:79:CA:CD:78:53:B6:C9:EA:C2:DF:49:ED:6A:4E:97:5B
Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF
Certificate issuer:       /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF
Certificate serial:       019F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
Manifest number:          019A
Signing time:             Mon 21 Jul 2025 03:30:39 +0000
Manifest this update:     Mon 21 Jul 2025 03:30:38 +0000
Manifest next update:     Mon 28 Jul 2025 03:30:38 +0000
Files and hashes:         1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: YA6Q03MBdRuj+ApTxKlmHJkdskWxOGf2OnnyawGwuUM=)
                          2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: hdoIBFcsKBcfu2ieIGwj6SsbqU4NXl1pTKHhFjI1OAE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl
                          rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 03:30:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 415 (0x19f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9163B62, serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF
        Validity
            Not Before: Jul 21 03:30:38 2025 GMT
            Not After : Jul 28 03:30:38 2025 GMT
        Subject: CN=687db45e-777b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:05:5e:c6:75:b9:bd:15:33:71:bd:ce:d1:d4:
                    cf:92:0c:2d:49:98:e5:d8:e2:a1:7b:e0:ef:bc:be:
                    05:1a:03:3b:07:05:5c:bc:8b:a2:25:3c:93:91:28:
                    e8:be:f5:ba:74:1e:2d:50:8d:4d:9d:67:da:db:fd:
                    09:eb:0a:ad:df:3e:5c:02:02:1d:01:7b:a3:3d:41:
                    62:38:e8:22:f3:a4:21:d3:d6:db:7b:d0:e1:9d:4b:
                    8f:2f:51:d0:ab:df:f9:f9:1e:65:ee:31:05:84:49:
                    f8:92:d8:36:06:e6:74:dd:39:f9:0a:81:59:f6:72:
                    05:26:ea:4c:cb:4f:a0:52:39:b5:10:61:c6:10:e7:
                    f9:a2:3b:0a:81:12:ea:6e:92:19:a3:97:83:b2:fb:
                    ae:6c:17:4d:ea:31:37:9c:4f:a9:cf:fc:0c:b1:69:
                    0f:a9:43:c1:af:04:94:d2:60:46:b4:f5:7a:2e:f1:
                    99:29:9b:ec:ec:68:83:27:60:36:29:77:20:19:76:
                    6e:f8:da:cd:0e:78:96:a9:65:d1:46:10:34:a8:10:
                    e4:96:74:67:06:d2:50:bc:50:f6:f1:09:45:18:f0:
                    58:8c:ab:cf:44:1f:46:bc:46:ca:8e:65:69:33:96:
                    41:61:c6:4f:6f:1b:09:cd:ad:47:28:4c:18:87:d6:
                    c2:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:59:64:C8:79:CA:CD:78:53:B6:C9:EA:C2:DF:49:ED:6A:4E:97:5B
            X509v3 Authority Key Identifier:
                keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:77:d4:e3:c5:95:63:66:49:f0:3f:9a:99:76:71:56:f5:1f:
         3a:50:6f:bd:20:a1:62:b7:33:fe:1b:58:42:17:7d:ee:45:6a:
         39:12:78:7d:ff:d0:48:09:79:f2:ea:69:97:26:6a:63:7c:ec:
         13:65:20:43:c1:72:8a:1c:48:53:05:72:aa:b3:12:4f:c8:14:
         76:24:b8:72:f5:11:43:cb:9c:01:30:d9:cf:f1:04:dd:7d:7a:
         59:74:8d:00:ce:45:6a:ee:8a:d1:ba:15:b7:d1:74:85:6a:00:
         61:f9:76:ad:48:2a:e5:5b:ae:9e:fd:be:60:05:eb:6c:6d:25:
         11:01:70:6b:0d:01:a2:fb:fa:92:3b:1b:d0:f6:7c:b4:9e:76:
         f6:f0:48:cb:50:7d:d9:e4:58:53:e4:a0:83:80:ec:9d:5c:5f:
         a4:6d:08:6c:58:59:0c:d3:43:53:85:f3:f0:9b:1c:68:d7:0c:
         aa:78:66:2e:89:b7:83:dc:36:96:45:f1:6f:07:54:b7:15:fb:
         02:5c:57:17:83:4e:4e:36:7c:ad:4a:10:24:b0:e1:9b:49:ba:
         b4:fd:f0:ee:bc:08:9f:c0:fb:9a:03:4a:59:36:e3:9a:2a:26:
         57:b9:56:f2:18:1f:de:f2:bf:fd:8f:bf:f4:d2:93:ad:1f:d4:
         c6:48:d8:b4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjNCNjIxMTAvBgNVBAUTKEQzQUU2MjY0NDlDM0E5REQwRTc3OThCQ0U4QkNCQjM5
NjYyQTI3RkYwHhcNMjUwNzIxMDMzMDM4WhcNMjUwNzI4MDMzMDM4WjAYMRYwFAYD
VQQDEw02ODdkYjQ1ZS03NzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAywVexnW5vRUzcb3O0dTPkgwtSZjl2OKhe+DvvL4FGgM7BwVcvIuiJTyTkSjo
vvW6dB4tUI1NnWfa2/0J6wqt3z5cAgIdAXujPUFiOOgi86Qh09bbe9DhnUuPL1HQ
q9/5+R5l7jEFhEn4ktg2BuZ03Tn5CoFZ9nIFJupMy0+gUjm1EGHGEOf5ojsKgRLq
bpIZo5eDsvuubBdN6jE3nE+pz/wMsWkPqUPBrwSU0mBGtPV6LvGZKZvs7GiDJ2A2
KXcgGXZu+NrNDniWqWXRRhA0qBDklnRnBtJQvFD28QlFGPBYjKvPRB9GvEbKjmVp
M5ZBYcZPbxsJza1HKEwYh9bCbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1ZZMh5
ys14U7bJ6sLfSe1qTpdbMB8GA1UdIwQYMBaAFNOuYmRJw6ndDneYvOi8uzlmKif/
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0I2Mi80RTlCNzZEMkZC
RDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFkME9kNWk4Nkx5N09XWXFK
XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpfOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFk
ME9kNWk4Nkx5N09XWXFKXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA1d9TjxZVjZknwP5qZdnFW9R86UG+9IKFitzP+G1hCF33uRWo5Enh9
/9BICXny6mmXJmpjfOwTZSBDwXKKHEhTBXKqsxJPyBR2JLhy9RFDy5wBMNnP8QTd
fXpZdI0AzkVq7orRuhW30XSFagBh+XatSCrlW66e/b5gBetsbSURAXBrDQGi+/qS
OxvQ9ny0nnb28EjLUH3Z5FhT5KCDgOydXF+kbQhsWFkM00NThfPwmxxo1wyqeGYu
ibeD3DaWRfFvB1S3FfsCXFcXg05ONnytShAksOGbSbq0/fDuvAifwPuaA0pZNuOa
KiZXuVbyGB/e8r/9j7/00pOtH9TGSNi0
-----END CERTIFICATE-----
Generated at Wed Jul 23 02:32:38 2025 by rpki-client