Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
File:                     065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json)
Hash identifier:          bPPNe3QGT8PCErCdIM78L/UFO3GgLKrHkfOKgIh5S+g=
Subject key identifier:   BA:1C:F0:57:9D:FB:A3:6E:0A:91:DA:DC:1C:8B:BF:51:09:85:E4:4E
Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF
Certificate issuer:       /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF
Certificate serial:       01A1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
Manifest number:          019C
Signing time:             Fri 25 Jul 2025 03:36:45 +0000
Manifest this update:     Fri 25 Jul 2025 03:36:45 +0000
Manifest next update:     Fri 01 Aug 2025 03:36:45 +0000
Files and hashes:         1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: tqT7n0JymX3Bvap0itSuPbX7vo85VM/5Ln3TXf4622E=)
                          2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: hdoIBFcsKBcfu2ieIGwj6SsbqU4NXl1pTKHhFjI1OAE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl
                          rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 03:36:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 417 (0x1a1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9163B62, serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF
        Validity
            Not Before: Jul 25 03:36:45 2025 GMT
            Not After : Aug  1 03:36:45 2025 GMT
        Subject: CN=6882fbcd-d9ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:a4:cb:23:78:ad:d6:fd:eb:20:ce:c3:0f:8b:
                    6e:e1:0f:29:63:64:2a:b2:c7:33:6d:9a:c8:43:15:
                    47:c6:17:6e:6e:77:6e:b3:22:ab:a3:65:8d:72:62:
                    0f:82:20:2f:07:79:35:4b:51:5a:6e:c0:00:93:81:
                    91:0a:97:26:13:11:2c:40:28:41:d7:85:56:3b:dd:
                    fa:b4:69:bf:37:50:59:be:0e:e4:ed:dc:1a:51:78:
                    70:fe:80:4f:27:cb:2e:e2:61:95:cf:e7:c2:33:fc:
                    95:9f:2d:06:f6:37:c8:49:91:48:5d:c5:96:0f:bf:
                    11:e0:f7:3b:d0:71:74:cb:93:9d:d8:33:8e:5b:5f:
                    5c:b1:b7:1d:b5:73:a2:e1:dd:e8:8a:b5:36:66:3f:
                    ad:cb:f9:c3:1d:1f:c8:f2:d8:8f:0b:d2:90:98:11:
                    75:57:73:cb:cd:23:d5:52:e3:92:c2:cb:ce:5c:b9:
                    55:8f:5a:cf:66:77:9b:44:de:e0:6c:d3:ef:7b:25:
                    cb:06:8f:af:c4:33:a3:7a:72:d4:a6:61:f3:2f:0c:
                    a2:a0:54:53:0f:a4:af:44:90:59:9d:d2:9f:11:b9:
                    77:3b:20:5c:aa:d7:f1:29:b8:92:7f:d2:66:3e:7e:
                    5a:b1:6a:71:1d:9a:c3:56:f0:14:60:a3:3b:07:7a:
                    92:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:1C:F0:57:9D:FB:A3:6E:0A:91:DA:DC:1C:8B:BF:51:09:85:E4:4E
            X509v3 Authority Key Identifier:
                keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:72:9c:2d:f9:39:20:59:5f:30:1a:36:51:f5:e6:28:d3:b6:
         77:0f:f9:9d:9c:c5:cd:6a:3f:f5:ac:19:a6:72:a6:95:c2:da:
         69:4c:ea:e1:41:80:4e:49:6b:af:30:26:a0:6e:78:ed:11:85:
         55:47:96:ac:bc:92:f9:6f:4b:46:38:e3:43:6a:fe:cb:04:15:
         47:b8:c9:23:27:90:7e:14:6c:2f:ff:84:5b:df:62:b6:5c:21:
         3b:4b:d1:c1:b7:20:0e:2d:21:3b:f7:0a:ec:f5:80:e4:89:71:
         7f:92:6d:bc:71:d5:67:33:34:18:74:ec:d6:75:cf:25:e9:d7:
         5f:5a:fc:c4:64:55:3f:bb:3f:c0:59:85:43:69:93:d4:8f:f8:
         64:0b:d2:6d:dc:c7:2f:45:b8:1a:6d:fd:82:6e:ac:09:19:4f:
         8f:19:1e:b7:88:0b:d9:5d:2d:b7:dd:fa:8b:f2:8b:65:2a:86:
         bf:22:ec:ee:89:ea:4a:e9:6b:d7:9d:61:81:8a:3e:4e:d4:1f:
         fb:57:cc:e7:da:ef:4a:98:8a:c9:5a:d7:b5:ab:e9:c7:3b:c1:
         3f:34:02:51:67:c2:6a:26:0f:1d:cd:b9:c7:03:57:1b:19:89:
         4e:12:3c:02:b0:77:32:da:ea:ad:fd:21:a1:3a:c5:1e:da:4f:
         10:4b:7b:b8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjNCNjIxMTAvBgNVBAUTKEQzQUU2MjY0NDlDM0E5REQwRTc3OThCQ0U4QkNCQjM5
NjYyQTI3RkYwHhcNMjUwNzI1MDMzNjQ1WhcNMjUwODAxMDMzNjQ1WjAYMRYwFAYD
VQQDEw02ODgyZmJjZC1kOWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3aTLI3it1v3rIM7DD4tu4Q8pY2QqssczbZrIQxVHxhdubndusyKro2WNcmIP
giAvB3k1S1FabsAAk4GRCpcmExEsQChB14VWO936tGm/N1BZvg7k7dwaUXhw/oBP
J8su4mGVz+fCM/yVny0G9jfISZFIXcWWD78R4Pc70HF0y5Od2DOOW19csbcdtXOi
4d3oirU2Zj+ty/nDHR/I8tiPC9KQmBF1V3PLzSPVUuOSwsvOXLlVj1rPZnebRN7g
bNPveyXLBo+vxDOjenLUpmHzLwyioFRTD6SvRJBZndKfEbl3OyBcqtfxKbiSf9Jm
Pn5asWpxHZrDVvAUYKM7B3qSdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoc8Fed
+6NuCpHa3ByLv1EJheROMB8GA1UdIwQYMBaAFNOuYmRJw6ndDneYvOi8uzlmKif/
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0I2Mi80RTlCNzZEMkZC
RDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFkME9kNWk4Nkx5N09XWXFK
XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpfOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFk
ME9kNWk4Nkx5N09XWXFKXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAkcpwt+TkgWV8wGjZR9eYo07Z3D/mdnMXNaj/1rBmmcqaVwtppTOrh
QYBOSWuvMCagbnjtEYVVR5asvJL5b0tGOONDav7LBBVHuMkjJ5B+FGwv/4Rb32K2
XCE7S9HBtyAOLSE79wrs9YDkiXF/km28cdVnMzQYdOzWdc8l6ddfWvzEZFU/uz/A
WYVDaZPUj/hkC9Jt3McvRbgabf2CbqwJGU+PGR63iAvZXS233fqL8otlKoa/Iuzu
iepK6WvXnWGBij5O1B/7V8zn2u9KmIrJWte1q+nHO8E/NAJRZ8JqJg8dzbnHA1cb
GYlOEjwCsHcy2uqt/SGhOsUe2k8QS3u4
-----END CERTIFICATE-----
Generated at Sat Jul 26 02:01:23 2025 by rpki-client