Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
File:                     PMd5DiA3Zl70liuB2tL9B-1G-LI.mft (raw, json)
Hash identifier:          70aBFIXaCOaLAE7fl2MDm9C5JolxhJUSwjRHRguo9i4=
Subject key identifier:   B7:D3:61:7D:0E:0A:66:7D:FA:4E:96:3B:5D:C7:FF:0A:E9:40:D6:B2
Authority key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2
Certificate issuer:       /CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2
Certificate serial:       B8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
Manifest number:          B6
Signing time:             Fri 25 Jul 2025 06:14:48 +0000
Manifest this update:     Fri 25 Jul 2025 06:14:48 +0000
Manifest next update:     Fri 01 Aug 2025 06:14:47 +0000
Files and hashes:         1: PMd5DiA3Zl70liuB2tL9B-1G-LI.crl (hash: 9PF1Y8NEWzE1ASz9uzT+MrCybr7sOC8QLF0O5e/gvZY=)
                          2: A6449CBA54A011EFB35AED26C4F9AE02.roa (hash: TlHlbn6q/SJJmLaIdFeAVpNRm4YQAAsTE8XrQ+CUo9Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl
                          rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 06:14:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 184 (0xb8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9163EB9, serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2
        Validity
            Not Before: Jul 25 06:14:48 2025 GMT
            Not After : Aug  1 06:14:47 2025 GMT
        Subject: CN=688320d8-402e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:7b:50:91:8b:c2:cc:44:02:29:81:a2:42:f8:
                    72:5c:53:08:c9:fc:5f:f8:11:c0:3a:af:d2:4d:41:
                    53:de:cb:a5:1f:dd:1f:80:4c:7c:86:3d:88:55:b7:
                    b6:1d:b0:16:fd:8c:e9:04:73:94:2f:11:5d:5d:56:
                    b6:d0:69:6d:61:73:dd:80:99:90:2a:28:93:91:7f:
                    f3:61:44:dc:83:5e:13:42:60:15:19:6d:df:20:23:
                    e0:47:c2:7c:b9:32:18:71:cc:94:9c:48:85:69:dc:
                    1a:de:16:4d:ed:b2:d3:5e:2a:9d:5a:28:f1:92:ef:
                    0e:6e:85:bd:d6:0e:29:5c:e2:62:68:95:d8:1f:66:
                    48:16:c4:97:52:d3:a5:66:67:03:85:c4:db:a0:ca:
                    b9:2b:92:ac:2e:c6:a0:a4:75:93:71:65:b9:7c:e7:
                    a4:3a:d4:9c:2f:0f:94:0e:00:ed:14:d7:11:2a:37:
                    6f:26:6a:9d:89:07:e1:33:eb:b8:b6:40:7a:ea:5a:
                    c4:d9:bc:56:3e:e8:bb:bd:29:73:2f:cc:49:b8:f4:
                    1e:98:10:55:aa:96:c8:36:01:61:ab:b6:db:76:9e:
                    93:00:58:6e:7b:d2:eb:10:a9:4b:04:23:9b:e7:b2:
                    bd:d2:ba:24:02:94:be:1c:c4:99:ab:d4:ed:81:45:
                    a5:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:D3:61:7D:0E:0A:66:7D:FA:4E:96:3B:5D:C7:FF:0A:E9:40:D6:B2
            X509v3 Authority Key Identifier:
                keyid:3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:dd:c7:2d:68:8f:9b:a4:fc:d5:f5:5f:eb:9c:dd:25:70:8d:
         78:98:0c:0f:cf:54:ea:ee:53:5e:8b:ae:68:8b:8d:ad:5f:1a:
         fd:27:8a:ca:01:bf:59:a2:e5:fe:3b:1c:b7:e3:a0:4b:a8:c6:
         d0:a0:bb:56:d1:5b:09:20:1d:92:b4:13:b8:d1:87:97:da:9b:
         92:fa:be:b5:50:40:75:a5:ca:c6:47:4b:31:dc:d3:37:ad:c9:
         49:e2:21:f6:20:bf:ce:22:fd:21:dc:dd:9a:91:10:6e:4a:37:
         05:59:7b:c2:13:b7:e0:a2:81:fc:5c:af:2d:cc:3a:d6:7b:0e:
         91:b3:4c:26:b9:d5:ac:71:1b:de:3d:ff:c8:72:09:0b:f6:b0:
         a1:28:9f:e6:21:b8:ad:60:c0:14:a3:59:23:80:6a:a8:87:5a:
         dd:dc:39:fc:71:16:84:f1:3f:a9:68:e8:bc:58:46:32:0a:84:
         fe:93:f1:1f:24:51:53:58:e2:e9:b7:2b:b3:b4:99:42:ef:30:
         c3:04:fc:76:be:26:d5:84:0f:93:0a:f5:56:76:e0:46:b1:40:
         5f:8f:28:f1:b9:20:32:9d:ea:62:36:ca:f1:b0:45:e6:16:d2:
         01:28:6b:bf:7d:3a:98:0e:0f:2b:65:d5:c0:41:fe:2a:bf:16:
         b8:98:4c:77
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjNFQjkxMTAvBgNVBAUTKDNDQzc3OTBFMjAzNzY2NUVGNDk2MkI4MURBRDJGRDA3
RUQ0NkY4QjIwHhcNMjUwNzI1MDYxNDQ4WhcNMjUwODAxMDYxNDQ3WjAYMRYwFAYD
VQQDEw02ODgzMjBkOC00MDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsXtQkYvCzEQCKYGiQvhyXFMIyfxf+BHAOq/STUFT3sulH90fgEx8hj2IVbe2
HbAW/YzpBHOULxFdXVa20GltYXPdgJmQKiiTkX/zYUTcg14TQmAVGW3fICPgR8J8
uTIYccyUnEiFadwa3hZN7bLTXiqdWijxku8OboW91g4pXOJiaJXYH2ZIFsSXUtOl
ZmcDhcTboMq5K5KsLsagpHWTcWW5fOekOtScLw+UDgDtFNcRKjdvJmqdiQfhM+u4
tkB66lrE2bxWPui7vSlzL8xJuPQemBBVqpbINgFhq7bbdp6TAFhue9LrEKlLBCOb
57K90rokApS+HMSZq9TtgUWlUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfTYX0O
CmZ9+k6WO13H/wrpQNayMB8GA1UdIwQYMBaAFDzHeQ4gN2Ze9JYrgdrS/QftRviy
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VCOS8wNTFDOUU2NDU0
QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1psNzBsaXVCMnRMOUItMUct
TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1BNZDVEaUEzWmw3MGxpdUIydEw5Qi0xRy1MSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
M0VCOS8wNTFDOUU2NDU0QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1ps
NzBsaXVCMnRMOUItMUctTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCf3cctaI+bpPzV9V/rnN0lcI14mAwPz1Tq7lNei65oi42tXxr9J4rK
Ab9ZouX+Oxy346BLqMbQoLtW0VsJIB2StBO40YeX2puS+r61UEB1pcrGR0sx3NM3
rclJ4iH2IL/OIv0h3N2akRBuSjcFWXvCE7fgooH8XK8tzDrWew6Rs0wmudWscRve
Pf/IcgkL9rChKJ/mIbitYMAUo1kjgGqoh1rd3Dn8cRaE8T+paOi8WEYyCoT+k/Ef
JFFTWOLptyuztJlC7zDDBPx2vibVhA+TCvVWduBGsUBfjyjxuSAynepiNsrxsEXm
FtIBKGu/fTqYDg8rZdXAQf4qvxa4mEx3
-----END CERTIFICATE-----
Generated at Sat Jul 26 02:04:05 2025 by rpki-client