Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft
File:                     IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json)
Hash identifier:          tTc6xbhY6qsEV/djg1Ha9DMRHwAuA0tcvj5E9hln4ws=
Subject key identifier:   D7:F7:85:86:17:12:6F:E7:F8:B0:06:7C:77:49:52:3D:F2:6B:5A:1A
Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99
Certificate issuer:       /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99
Certificate serial:       CC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft
Manifest number:          C9
Signing time:             Wed 23 Jul 2025 06:04:00 +0000
Manifest this update:     Wed 23 Jul 2025 06:03:59 +0000
Manifest next update:     Wed 30 Jul 2025 06:03:59 +0000
Files and hashes:         1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: IThldY4d1pWSZFmS4GHo3oheXplZIFgBRHi+zjUVuD8=)
                          2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: wZz+OlqUMy/mBTlpV+JPL6/+u7+0FBG8gjwEC4u2wAU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl
                          rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 06:03:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 204 (0xcc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99
        Validity
            Not Before: Jul 23 06:03:59 2025 GMT
            Not After : Jul 30 06:03:59 2025 GMT
        Subject: CN=68807b50-868d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:cb:a6:05:5a:0c:16:0a:3b:84:c9:8d:cc:42:
                    dc:e9:5f:60:2a:b6:45:0e:b1:83:c1:6c:05:bd:64:
                    92:5e:8e:a7:28:73:5d:b3:fc:28:ad:d7:20:d8:87:
                    39:87:b8:3c:ff:b5:40:b9:78:0c:b1:9d:9c:ad:32:
                    1c:10:fa:7d:34:9c:0c:c5:98:32:d8:79:39:e4:b8:
                    bb:d3:d3:1f:f1:d7:22:93:00:6e:70:44:63:a8:9b:
                    d4:03:3d:c6:40:24:82:ae:73:11:8e:12:d9:9b:c9:
                    bc:54:24:3a:bf:ef:bc:d6:74:1a:d5:c2:9a:df:d0:
                    89:02:26:7b:b8:0a:40:9e:7b:16:37:d6:cc:95:84:
                    89:b9:03:b1:56:6f:af:30:7d:43:f0:bf:ef:8d:b4:
                    be:0a:bd:6e:cc:b9:cc:a8:b6:25:28:b0:02:6c:74:
                    3b:42:b0:05:f8:7f:56:02:39:6b:70:38:67:57:35:
                    9e:59:65:f0:8a:21:23:b6:1e:ad:e7:ea:ff:dc:af:
                    fb:69:21:25:c7:9c:3a:89:af:6e:6a:6e:0f:8c:e9:
                    41:0a:5e:a6:66:1e:66:46:05:37:f7:79:d3:01:34:
                    2b:32:72:06:b4:41:67:63:b6:19:52:aa:c2:6c:d8:
                    4b:db:ba:c3:a4:d2:37:a0:f7:b7:39:c0:ee:42:48:
                    3e:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:F7:85:86:17:12:6F:E7:F8:B0:06:7C:77:49:52:3D:F2:6B:5A:1A
            X509v3 Authority Key Identifier:
                keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:e2:d0:dd:d0:c2:0f:eb:49:16:08:ad:41:3d:b9:6f:b1:bd:
         d4:51:a7:f5:2f:32:ae:e0:4e:8a:95:42:59:93:7d:7f:3e:57:
         f7:7e:4e:b2:b0:2f:c9:19:69:0a:d8:98:92:21:02:d7:e7:5c:
         ea:5d:8a:c8:0d:65:ba:51:f1:31:32:00:ef:a7:1c:8e:65:49:
         01:8e:a7:9c:ad:63:7d:f8:08:f7:2b:40:6f:79:3c:64:33:e8:
         e6:34:39:18:79:2e:5b:7a:07:80:13:c5:c7:8c:a3:86:1d:e5:
         fb:18:b4:8c:51:87:6b:7c:31:03:84:d3:e3:c4:7d:e7:94:fa:
         35:40:53:ef:45:94:da:93:e6:01:3b:7c:cb:c2:1a:ee:0f:d6:
         86:ff:88:8f:fb:0f:4b:03:2b:72:d1:2f:a0:d6:4d:19:5d:56:
         25:45:11:32:65:d8:e7:bc:9d:c5:a7:1a:d8:c7:46:17:4e:bd:
         60:83:45:36:30:a8:4c:c7:c1:b1:c0:8b:63:24:74:f9:90:e3:
         4b:91:86:07:31:41:26:5d:b3:4e:a3:93:82:31:c2:a3:b0:88:
         b6:d5:d1:da:6b:7b:27:db:87:ed:08:d7:93:96:00:e7:8f:99:
         fb:b5:b8:8d:5d:3f:b8:91:2c:ec:4c:91:e8:10:7e:1d:20:6d:
         af:63:1e:5b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy
NzQ0NjhGOTkwHhcNMjUwNzIzMDYwMzU5WhcNMjUwNzMwMDYwMzU5WjAYMRYwFAYD
VQQDEw02ODgwN2I1MC04NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArsumBVoMFgo7hMmNzELc6V9gKrZFDrGDwWwFvWSSXo6nKHNds/wordcg2Ic5
h7g8/7VAuXgMsZ2crTIcEPp9NJwMxZgy2Hk55Li709Mf8dcikwBucERjqJvUAz3G
QCSCrnMRjhLZm8m8VCQ6v++81nQa1cKa39CJAiZ7uApAnnsWN9bMlYSJuQOxVm+v
MH1D8L/vjbS+Cr1uzLnMqLYlKLACbHQ7QrAF+H9WAjlrcDhnVzWeWWXwiiEjth6t
5+r/3K/7aSElx5w6ia9uam4PjOlBCl6mZh5mRgU393nTATQrMnIGtEFnY7YZUqrC
bNhL27rDpNI3oPe3OcDuQkg+WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNf3hYYX
Em/n+LAGfHdJUj3ya1oaMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4
NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq
NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11
UGxsdGlqNWl1OE1uUkdqNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAY4tDd0MIP60kWCK1BPblvsb3UUaf1LzKu4E6KlUJZk31/Plf3fk6y
sC/JGWkK2JiSIQLX51zqXYrIDWW6UfExMgDvpxyOZUkBjqecrWN9+Aj3K0BveTxk
M+jmNDkYeS5begeAE8XHjKOGHeX7GLSMUYdrfDEDhNPjxH3nlPo1QFPvRZTak+YB
O3zLwhruD9aG/4iP+w9LAyty0S+g1k0ZXVYlRREyZdjnvJ3FpxrYx0YXTr1gg0U2
MKhMx8GxwItjJHT5kONLkYYHMUEmXbNOo5OCMcKjsIi21dHaa3sn24ftCNeTlgDn
j5n7tbiNXT+4kSzsTJHoEH4dIG2vYx5b
-----END CERTIFICATE-----
Generated at Thu Jul 24 08:26:13 2025 by rpki-client