Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft
File:                     Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft (raw, json)
Hash identifier:          Hds+6Bs59AP/9OKD58gmRu3o4IvaePVrxnZGrS01Pkw=
Subject key identifier:   2D:EB:6C:44:37:41:11:78:5F:6F:0E:00:5C:B1:CD:9B:2A:D3:6F:59
Authority key identifier: 51:AE:BA:23:FB:74:5A:55:3A:5E:49:96:DF:1C:81:73:47:3F:17:98
Certificate issuer:       /CN=A9183B33/serialNumber=51AEBA23FB745A553A5E4996DF1C8173473F1798
Certificate serial:       066A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft
Manifest number:          0661
Signing time:             Thu 24 Jul 2025 22:51:33 +0000
Manifest this update:     Thu 24 Jul 2025 22:51:33 +0000
Manifest next update:     Thu 31 Jul 2025 22:51:33 +0000
Files and hashes:         1: Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl (hash: rYvk+txCSjHtHzeTCIn0OnINWz4e17pSIpHzBFfRBwI=)
                          2: 59018DEE340611ED9C72786AC4F9AE02.roa (hash: rP6Pu7EfL4ZTfd4hkNZXRMND1x04kCFhfmQKKfFcDnY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl
                          rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 22:51:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1642 (0x66a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9183B33, serialNumber=51AEBA23FB745A553A5E4996DF1C8173473F1798
        Validity
            Not Before: Jul 24 22:51:33 2025 GMT
            Not After : Jul 31 22:51:33 2025 GMT
        Subject: CN=6882b8f5-74dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:0f:86:82:eb:16:3a:1f:d8:3a:e7:01:ac:17:
                    35:03:ad:6d:b9:12:e7:fd:83:9c:fb:f6:eb:00:9c:
                    e9:a6:03:3c:02:0d:47:1b:64:8b:d5:25:72:6c:3e:
                    87:fa:5f:f6:9c:21:cd:f4:1b:28:ad:aa:49:0f:10:
                    a1:79:44:d9:4e:60:82:de:17:f5:bc:3a:79:ed:df:
                    f6:47:43:25:b1:11:c0:50:31:19:06:8d:97:65:7d:
                    c8:a8:ff:0f:a1:20:3e:15:48:76:3e:9d:40:73:43:
                    b1:6b:18:cc:ab:ca:db:52:43:97:3c:22:8b:3c:83:
                    16:02:86:b5:e8:a3:c8:21:81:72:b9:b2:80:c1:ce:
                    ed:84:3a:69:9a:01:9f:69:86:54:be:f6:cf:0b:07:
                    35:f8:4e:db:42:f4:79:fe:be:28:06:e1:df:36:8a:
                    1d:9c:71:0b:f5:8a:3f:92:e3:63:02:0a:03:5b:93:
                    96:d8:88:3b:0a:ff:68:1d:2e:1b:40:8f:f3:7b:55:
                    dc:bd:79:9f:17:22:c7:d5:66:56:43:b3:8d:86:16:
                    d7:82:e9:88:bc:1a:4e:ee:7b:89:a2:b3:98:8f:a3:
                    a1:ed:75:27:4b:46:c3:d2:a9:a0:4f:1b:66:33:3c:
                    9c:65:92:dc:5b:df:43:b9:09:55:2e:ae:dd:c2:eb:
                    90:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:EB:6C:44:37:41:11:78:5F:6F:0E:00:5C:B1:CD:9B:2A:D3:6F:59
            X509v3 Authority Key Identifier:
                keyid:51:AE:BA:23:FB:74:5A:55:3A:5E:49:96:DF:1C:81:73:47:3F:17:98

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:c7:2d:70:62:d7:29:84:a0:8c:f1:74:ed:33:ce:85:27:1b:
         60:93:78:f3:43:ec:5f:16:83:6d:ed:5a:b0:d0:b1:b2:fd:6b:
         e0:b0:66:bd:a4:6f:6d:26:ea:53:b7:e3:bd:16:85:41:19:66:
         92:d7:a7:ac:f1:fb:c5:e5:47:37:4d:30:cf:19:32:50:06:80:
         e3:2f:a1:78:d2:a8:2a:38:87:70:62:bd:4b:9a:da:0f:6b:de:
         d8:a1:2d:6a:af:42:ae:9b:66:9a:b1:d3:15:2d:eb:f0:cc:dc:
         93:cb:ed:2c:6f:d4:1e:0f:f7:55:2e:1d:1d:9d:a8:64:2b:81:
         42:3c:ec:a3:04:22:74:d1:ae:28:a2:a2:77:ab:70:cf:ea:c6:
         15:28:4b:7b:17:70:d9:c1:db:90:0e:c6:4b:cb:49:3f:28:7b:
         ae:3b:7f:af:21:de:f1:c0:3a:10:61:5a:e9:11:9b:dd:21:fc:
         2b:60:04:a2:02:2e:35:a7:cb:4c:f5:47:d2:4b:f2:18:34:d7:
         10:d1:ea:af:92:7b:ca:b9:d0:d6:18:99:38:0b:7e:c9:29:a6:
         f9:53:99:4a:a5:9e:47:3b:33:32:f9:d5:fc:8a:aa:72:29:b7:
         45:40:b6:d7:1d:72:91:ca:7c:e6:20:cd:ec:c6:95:fb:9e:ee:
         6b:c8:c7:55
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODNCMzMxMTAvBgNVBAUTKDUxQUVCQTIzRkI3NDVBNTUzQTVFNDk5NkRGMUM4MTcz
NDczRjE3OTgwHhcNMjUwNzI0MjI1MTMzWhcNMjUwNzMxMjI1MTMzWjAYMRYwFAYD
VQQDEw02ODgyYjhmNS03NGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArA+GgusWOh/YOucBrBc1A61tuRLn/YOc+/brAJzppgM8Ag1HG2SL1SVybD6H
+l/2nCHN9BsorapJDxCheUTZTmCC3hf1vDp57d/2R0MlsRHAUDEZBo2XZX3IqP8P
oSA+FUh2Pp1Ac0OxaxjMq8rbUkOXPCKLPIMWAoa16KPIIYFyubKAwc7thDppmgGf
aYZUvvbPCwc1+E7bQvR5/r4oBuHfNoodnHEL9Yo/kuNjAgoDW5OW2Ig7Cv9oHS4b
QI/ze1XcvXmfFyLH1WZWQ7ONhhbXgumIvBpO7nuJorOYj6Oh7XUnS0bD0qmgTxtm
MzycZZLcW99DuQlVLq7dwuuQnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3rbEQ3
QRF4X28OAFyxzZsq029ZMB8GA1UdIwQYMBaAFFGuuiP7dFpVOl5Jlt8cgXNHPxeY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0IzMy9DRDM1REIxQTkx
MjQxMUVCOUI3MjkwM0FDNEY5QUUwMi9VYTY2SV90MFdsVTZYa21XM3h5QmMwY19G
NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VhNjZJX3QwV2xVNlhrbVczeHlCYzBjX0Y1Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
M0IzMy9DRDM1REIxQTkxMjQxMUVCOUI3MjkwM0FDNEY5QUUwMi9VYTY2SV90MFds
VTZYa21XM3h5QmMwY19GNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAnxy1wYtcphKCM8XTtM86FJxtgk3jzQ+xfFoNt7Vqw0LGy/WvgsGa9
pG9tJupTt+O9FoVBGWaS16es8fvF5Uc3TTDPGTJQBoDjL6F40qgqOIdwYr1LmtoP
a97YoS1qr0Kum2aasdMVLevwzNyTy+0sb9QeD/dVLh0dnahkK4FCPOyjBCJ00a4o
oqJ3q3DP6sYVKEt7F3DZwduQDsZLy0k/KHuuO3+vId7xwDoQYVrpEZvdIfwrYASi
Ai41p8tM9UfSS/IYNNcQ0eqvknvKudDWGJk4C37JKab5U5lKpZ5HOzMy+dX8iqpy
KbdFQLbXHXKRynzmIM3sxpX7nu5ryMdV
-----END CERTIFICATE-----
Generated at Fri Jul 25 07:10:33 2025 by rpki-client