Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft
File:                     h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json)
Hash identifier:          KCKa5EWOlPQhY8sTPtsHKFE1Cjun4sRHkbRjp25bITQ=
Subject key identifier:   7E:49:D1:1D:88:76:DF:B4:63:3F:76:FC:40:D8:57:87:B9:7D:66:C8
Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9
Certificate issuer:       /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9
Certificate serial:       0145
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft
Manifest number:          0141
Signing time:             Wed 23 Jul 2025 04:37:51 +0000
Manifest this update:     Wed 23 Jul 2025 04:37:50 +0000
Manifest next update:     Wed 30 Jul 2025 04:37:50 +0000
Files and hashes:         1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: znOifDRYMLUcu6yi7bwX+TGzaJap9kY9Dn0RdMtnNKo=)
                          2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: lQYmsDBc3UpFQI5bvRZLM1pLBA2w7erJcueIAfvmPc0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl
                          rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 04:37:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 325 (0x145)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9
        Validity
            Not Before: Jul 23 04:37:50 2025 GMT
            Not After : Jul 30 04:37:50 2025 GMT
        Subject: CN=6880671e-9ccd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:ba:89:f8:d7:8e:a2:45:d9:57:e1:04:34:35:
                    e7:d0:6d:96:ad:f9:0f:19:2c:a2:87:8a:3a:71:fb:
                    dd:ad:99:11:0e:54:ce:c8:ec:7f:c0:dd:78:b2:53:
                    a8:a0:ea:62:94:ca:94:96:fc:db:a6:b4:b0:76:ee:
                    aa:07:70:56:e6:1f:47:3b:1d:1b:0b:e9:ad:1d:6d:
                    35:2d:b9:f3:26:3e:ee:48:7f:5f:f8:53:ec:29:a5:
                    7c:0e:0b:4f:69:45:b0:ad:92:c1:eb:37:c6:6c:db:
                    53:69:c2:0a:f0:15:ca:73:e6:18:e0:de:84:a6:f2:
                    fd:9f:1d:21:a5:11:db:98:7b:fe:aa:2b:58:9a:d3:
                    c1:9b:29:53:c0:56:3f:d0:02:b4:a6:12:10:82:8a:
                    da:f0:8d:f5:ef:5d:20:3d:6e:78:9e:68:07:13:f5:
                    9a:d6:e2:a4:85:8b:78:a8:5f:e3:25:53:ae:54:6b:
                    48:0c:95:3a:98:79:3c:52:3c:26:28:eb:63:13:a2:
                    d3:b0:f8:62:50:8e:d1:73:63:cf:a4:fa:47:f3:fc:
                    ba:b3:a2:c9:0d:31:55:1e:91:37:c2:0b:a5:34:89:
                    b0:94:a3:1c:72:ff:cb:0a:ce:60:a6:e1:36:10:e8:
                    e7:d5:ae:42:d6:66:4b:0a:74:34:4c:79:63:17:20:
                    23:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:49:D1:1D:88:76:DF:B4:63:3F:76:FC:40:D8:57:87:B9:7D:66:C8
            X509v3 Authority Key Identifier:
                keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:3d:1f:3c:4c:87:74:c6:17:ee:d3:fc:99:56:c2:7d:ee:ee:
         c4:0e:b3:7a:e1:68:c2:91:08:4d:b7:a4:04:6d:50:e5:8c:1d:
         6d:cb:75:0f:97:40:99:53:7f:6f:46:71:24:af:02:b1:bb:77:
         ea:e5:14:7c:07:96:d2:84:d4:91:98:2a:1b:13:5e:69:dd:46:
         90:2f:fa:7b:18:5f:7e:47:6e:e5:ef:57:70:74:a7:7e:6e:b2:
         35:7c:df:18:0a:1f:55:11:77:81:0c:ed:77:e1:4c:7e:52:4b:
         2b:6c:f7:39:e3:18:4a:2d:3a:f7:a2:9e:1b:1b:42:34:6e:83:
         0a:7a:b0:ae:d2:c5:a8:2f:b8:1b:df:15:23:c6:56:29:d6:b7:
         6f:0c:9c:a1:45:1b:0d:be:ab:47:60:31:ef:01:07:d4:ff:4e:
         30:00:4b:94:46:33:e1:18:c3:49:fb:d6:09:e4:c6:b5:00:43:
         8a:4d:a3:57:0c:bd:0e:b2:b1:35:d8:4f:bc:09:25:02:c4:3b:
         8a:a7:a3:39:ca:5c:40:97:a0:af:9e:49:57:46:ad:2a:e4:bd:
         a0:d5:05:d7:d8:a7:a3:69:d4:e3:c7:fa:2c:ff:b1:5b:c3:da:
         63:cb:49:ee:71:fa:36:ae:fd:34:18:e6:86:5d:b8:ad:64:fc:
         4a:26:5b:a9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4
QzI5OTkwQjkwHhcNMjUwNzIzMDQzNzUwWhcNMjUwNzMwMDQzNzUwWjAYMRYwFAYD
VQQDEw02ODgwNjcxZS05Y2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr7qJ+NeOokXZV+EENDXn0G2WrfkPGSyih4o6cfvdrZkRDlTOyOx/wN14slOo
oOpilMqUlvzbprSwdu6qB3BW5h9HOx0bC+mtHW01LbnzJj7uSH9f+FPsKaV8DgtP
aUWwrZLB6zfGbNtTacIK8BXKc+YY4N6EpvL9nx0hpRHbmHv+qitYmtPBmylTwFY/
0AK0phIQgora8I31710gPW54nmgHE/Wa1uKkhYt4qF/jJVOuVGtIDJU6mHk8Ujwm
KOtjE6LTsPhiUI7Rc2PPpPpH8/y6s6LJDTFVHpE3wgulNImwlKMccv/LCs5gpuE2
EOjn1a5C1mZLCnQ0THljFyAj3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5J0R2I
dt+0Yz92/EDYV4e5fWbIMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG
QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr
TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI
V0JWQXhiaTRaRU9NS1prTGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCXPR88TId0xhfu0/yZVsJ97u7EDrN64WjCkQhNt6QEbVDljB1ty3UP
l0CZU39vRnEkrwKxu3fq5RR8B5bShNSRmCobE15p3UaQL/p7GF9+R27l71dwdKd+
brI1fN8YCh9VEXeBDO134Ux+UksrbPc54xhKLTr3op4bG0I0boMKerCu0sWoL7gb
3xUjxlYp1rdvDJyhRRsNvqtHYDHvAQfU/04wAEuURjPhGMNJ+9YJ5Ma1AEOKTaNX
DL0OsrE12E+8CSUCxDuKp6M5ylxAl6CvnklXRq0q5L2g1QXX2KejadTjx/os/7Fb
w9pjy0nucfo2rv00GOaGXbitZPxKJlup
-----END CERTIFICATE-----
Generated at Thu Jul 24 05:04:24 2025 by rpki-client