Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft
File:                     4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft (raw, json)
Hash identifier:          HphgnZ2KHF9PSh285FqaN0KQ3uNRdKeoWe+q/3ViTqA=
Subject key identifier:   9A:A2:9A:7A:6B:71:38:82:86:C5:ED:D2:2D:A8:BF:9A:41:6E:B8:BD
Authority key identifier: E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62
Certificate issuer:       /CN=A917F854/serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762
Certificate serial:       A9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft
Manifest number:          A4
Signing time:             Mon 21 Jul 2025 06:28:51 +0000
Manifest this update:     Mon 21 Jul 2025 06:28:51 +0000
Manifest next update:     Mon 28 Jul 2025 06:28:51 +0000
Files and hashes:         1: 4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl (hash: OOD2sv5Xmk7b87jhtlBvj3ycMnY/lXP1jW+Z3snrUhg=)
                          2: DA21D1C8DF0711EFA13DFF77C4F9AE02.roa (hash: naM1jWBBF1HgB1gzetomIgtwuH6iwO3twg6Wvbh3nCU=)
                          3: 3C74C0E0799D11EF9547461CC4F9AE02.roa (hash: HEoFn428OSrwoj9FY9UBG8roOsE7KCgrYxU/d2SrcQg=)
                          4: 3CE9A810799D11EF9547461CC4F9AE02.roa (hash: LfnrEoRSy98kq5+Het7TGQh6Md9GIYKtrywQQ+4Cqlg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl
                          rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 06:28:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 169 (0xa9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917F854, serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762
        Validity
            Not Before: Jul 21 06:28:51 2025 GMT
            Not After : Jul 28 06:28:51 2025 GMT
        Subject: CN=687dde23-9874
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:bb:a9:e3:c9:6e:48:12:14:e7:01:b4:2c:50:
                    0c:fb:67:54:9a:a3:cd:ee:3b:03:55:1a:ff:51:d9:
                    51:4a:63:cc:44:84:f3:9f:7c:4f:99:75:00:e1:ab:
                    70:1b:54:f9:10:1a:54:c9:e7:d5:23:80:64:42:a3:
                    32:93:0c:d8:5c:79:d7:b8:c9:42:84:08:cd:b7:e8:
                    b8:f5:46:37:1b:ed:17:df:96:ca:33:44:3b:25:c2:
                    b6:98:27:9a:ab:b2:bc:3c:64:87:b4:56:6c:82:ea:
                    52:7b:55:f2:ab:ce:d2:6a:71:5c:c9:5f:79:89:2d:
                    1d:58:10:20:b5:4a:56:ed:56:52:c1:ec:f7:c1:9b:
                    f0:e8:39:bd:11:e8:ac:71:5e:6d:2c:30:5c:fd:ec:
                    ae:a5:b6:c5:ad:44:6d:dd:53:82:78:a9:9a:03:27:
                    59:b9:76:06:99:08:fb:c1:5c:60:be:e1:32:53:f3:
                    31:0d:d2:64:57:13:d6:54:3d:da:5d:3d:9a:e8:0b:
                    1e:4b:ca:b6:05:7f:d5:f1:32:23:84:3a:b9:14:89:
                    e4:30:1d:b5:b2:c1:4a:6d:91:73:64:4a:1a:31:01:
                    25:13:7e:eb:a9:5c:44:f5:4b:f2:72:13:50:f5:06:
                    78:9e:4e:93:f9:55:93:17:69:81:3d:ac:e7:e7:9f:
                    25:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:A2:9A:7A:6B:71:38:82:86:C5:ED:D2:2D:A8:BF:9A:41:6E:B8:BD
            X509v3 Authority Key Identifier:
                keyid:E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:ba:86:80:e3:c0:14:dd:b7:84:67:89:03:9c:c3:42:f6:d2:
         9e:7a:b0:65:45:df:9f:b9:c2:83:61:91:b3:98:01:5a:d1:a2:
         be:c2:2d:61:71:de:a5:b5:50:85:97:fc:06:ec:79:d0:c9:52:
         db:7a:04:80:b3:2f:87:9f:6e:c3:2c:e2:09:c8:52:29:83:6d:
         39:01:75:98:0c:75:eb:79:61:a3:a8:7f:63:b2:5a:a2:7a:58:
         39:96:b6:e5:da:8c:55:43:1d:66:b8:5c:5c:7d:ef:9e:45:85:
         a3:b1:40:be:95:81:04:de:fd:c2:1d:03:5c:38:72:99:52:8b:
         6c:cb:3e:c8:40:27:d0:3a:cd:02:1f:7d:e1:9c:99:b3:2d:a7:
         71:9b:b7:0d:8d:ce:24:50:a2:42:d9:f5:32:28:ea:f1:c3:34:
         54:ef:57:78:3e:30:50:74:ff:4e:33:7f:03:9b:f7:a9:38:80:
         55:a4:9b:ce:28:e8:65:f2:10:a7:f0:85:07:00:e2:59:4c:27:
         a8:9b:a6:16:7d:a3:08:d2:27:ac:69:cb:1f:f3:27:13:c0:57:
         ac:57:d5:c2:5e:71:69:87:0a:fd:51:61:b9:b5:d6:89:4d:f0:
         87:97:6e:d4:f5:0f:aa:7a:9b:3a:59:12:ee:88:3e:71:01:1f:
         ec:4e:c4:7f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0Y4NTQxMTAvBgNVBAUTKEUxMUE0NzJGODQ5RkEzRDY2M0NBODdDQTY2MzNFQ0U3
RDhEMDA3NjIwHhcNMjUwNzIxMDYyODUxWhcNMjUwNzI4MDYyODUxWjAYMRYwFAYD
VQQDEw02ODdkZGUyMy05ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAq7up48luSBIU5wG0LFAM+2dUmqPN7jsDVRr/UdlRSmPMRITzn3xPmXUA4atw
G1T5EBpUyefVI4BkQqMykwzYXHnXuMlChAjNt+i49UY3G+0X35bKM0Q7JcK2mCea
q7K8PGSHtFZsgupSe1Xyq87SanFcyV95iS0dWBAgtUpW7VZSwez3wZvw6Dm9Eeis
cV5tLDBc/eyupbbFrURt3VOCeKmaAydZuXYGmQj7wVxgvuEyU/MxDdJkVxPWVD3a
XT2a6AseS8q2BX/V8TIjhDq5FInkMB21ssFKbZFzZEoaMQElE37rqVxE9UvychNQ
9QZ4nk6T+VWTF2mBPazn558lewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqimnpr
cTiChsXt0i2ov5pBbri9MB8GA1UdIwQYMBaAFOEaRy+En6PWY8qHymYz7OfY0Adi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg1NC9BODk2NDY2MDc5
OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85Wmp5b2ZLWmpQczU5alFC
MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzRScEhMNFNmbzlaanlvZktaalBzNTlqUUIySS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
Rjg1NC9BODk2NDY2MDc5OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85
Wmp5b2ZLWmpQczU5alFCMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBquoaA48AU3beEZ4kDnMNC9tKeerBlRd+fucKDYZGzmAFa0aK+wi1h
cd6ltVCFl/wG7HnQyVLbegSAsy+Hn27DLOIJyFIpg205AXWYDHXreWGjqH9jslqi
elg5lrbl2oxVQx1muFxcfe+eRYWjsUC+lYEE3v3CHQNcOHKZUotsyz7IQCfQOs0C
H33hnJmzLadxm7cNjc4kUKJC2fUyKOrxwzRU71d4PjBQdP9OM38Dm/epOIBVpJvO
KOhl8hCn8IUHAOJZTCeom6YWfaMI0iesacsf8ycTwFesV9XCXnFphwr9UWG5tdaJ
TfCHl27U9Q+qeps6WRLuiD5xAR/sTsR/
-----END CERTIFICATE-----
Generated at Tue Jul 22 06:00:29 2025 by rpki-client