Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft
File:                     _nQHcdbqABLeOHBW-Iy-3TbEqGA.mft (raw, json)
Hash identifier:          K4mDuzBaXb2SAKuqMGesIEU+XMfFx2GdwojPC/UJESA=
Subject key identifier:   1D:0E:F5:71:B4:2A:3E:ED:1A:BC:6D:80:3D:25:5F:08:7C:25:B4:08
Authority key identifier: FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60
Certificate issuer:       /CN=A91889A4/serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860
Certificate serial:       0193
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft
Manifest number:          018F
Signing time:             Mon 21 Jul 2025 03:33:30 +0000
Manifest this update:     Mon 21 Jul 2025 03:33:29 +0000
Manifest next update:     Mon 28 Jul 2025 03:33:29 +0000
Files and hashes:         1: _nQHcdbqABLeOHBW-Iy-3TbEqGA.crl (hash: rSsi+aZ3JRyHjt5fSAu1VqEGEcI5dN1h5eKkh1I7e2Y=)
                          2: 37B318C0050111EEAFBCAE7EC4F9AE02.roa (hash: eMm1aATtYTxr8yulbbTqFy3KIRD0+Hc1f6QKDsCg/8Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl
                          rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 03:33:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 403 (0x193)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91889A4, serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860
        Validity
            Not Before: Jul 21 03:33:29 2025 GMT
            Not After : Jul 28 03:33:29 2025 GMT
        Subject: CN=687db50a-3a51
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:df:3d:c9:6b:c9:99:f1:c2:f1:92:c8:a1:6f:
                    ed:d0:4d:05:77:99:28:75:ed:27:8e:16:8d:ae:22:
                    a4:87:ce:07:30:9c:c4:9b:84:cd:24:31:c0:60:04:
                    a8:23:82:32:49:d0:3d:e5:fe:1b:b3:99:4d:ad:6a:
                    ea:fb:3c:3d:87:65:90:9a:8b:5c:1b:f9:19:34:7d:
                    30:68:ac:73:3a:84:75:0d:d4:50:2c:10:54:ee:3f:
                    bb:2b:8c:e1:d2:52:54:3c:2f:7d:f6:e3:59:5e:1d:
                    05:d4:0f:11:5c:74:7e:9c:9a:02:80:cc:2f:da:09:
                    38:01:87:2b:0c:28:20:9c:8b:9a:44:2e:c5:e5:be:
                    36:8f:df:03:67:26:b4:ef:2a:9f:b1:72:4d:38:e7:
                    5c:92:07:04:cb:42:cb:5e:b2:0a:f4:00:bd:8c:d2:
                    22:eb:4b:6a:84:f3:1a:82:68:eb:e8:de:ae:80:07:
                    9d:98:b7:34:db:70:aa:74:76:02:4d:7e:10:e0:4b:
                    49:3f:61:d2:44:1d:23:71:33:42:5b:f3:63:52:4a:
                    0b:04:04:34:22:2c:a9:81:f9:ae:8e:b8:23:92:57:
                    03:cb:51:dc:ee:82:c7:e6:c9:70:15:e2:bd:1f:90:
                    40:60:4f:6c:c5:37:5b:03:03:77:49:26:56:6a:71:
                    bc:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:0E:F5:71:B4:2A:3E:ED:1A:BC:6D:80:3D:25:5F:08:7C:25:B4:08
            X509v3 Authority Key Identifier:
                keyid:FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:15:47:21:62:65:7e:d8:3e:37:ab:19:b9:d9:97:92:f2:74:
         bb:4a:7f:b0:84:de:8a:7b:16:dc:7b:23:21:36:e7:a7:44:2d:
         7d:5a:d4:33:79:0e:53:24:bf:b3:58:a6:59:6f:e1:ae:56:b2:
         d1:b7:53:e2:c4:ad:ef:4d:e4:22:e7:97:8b:21:a8:8a:0b:c4:
         c0:82:80:2e:f5:01:12:20:f4:8e:2d:42:1a:1c:ce:03:e9:24:
         48:e3:2b:e5:70:48:45:4d:c4:8d:5a:32:25:72:31:20:69:ff:
         d4:c6:6f:0f:ec:36:8b:11:f1:c4:a7:b6:ba:1f:ac:66:0e:fb:
         d8:24:47:cf:22:86:92:3b:fb:d0:8c:16:70:72:62:94:f1:ab:
         8c:6a:fc:78:32:46:b3:6e:b4:ad:51:da:80:d3:aa:09:e9:f0:
         99:a9:4e:4c:c2:7b:de:0e:87:0a:ec:0a:49:03:5a:d3:05:2b:
         e7:c0:95:e4:86:61:6e:b1:62:7a:be:6a:d1:dc:c8:1b:61:ef:
         99:8c:cc:aa:2f:e1:a4:7c:58:44:03:62:47:e7:bd:97:f4:b0:
         d9:2f:d5:23:90:21:00:5d:dc:47:2f:2e:8b:a6:86:30:77:29:
         4b:80:84:c3:5d:a8:a6:8c:2c:1f:48:c2:d3:b5:aa:52:b8:18:
         b3:84:3b:41
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODg5QTQxMTAvBgNVBAUTKEZFNzQwNzcxRDZFQTAwMTJERTM4NzA1NkY4OENCRURE
MzZDNEE4NjAwHhcNMjUwNzIxMDMzMzI5WhcNMjUwNzI4MDMzMzI5WjAYMRYwFAYD
VQQDEw02ODdkYjUwYS0zYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3t89yWvJmfHC8ZLIoW/t0E0Fd5kode0njhaNriKkh84HMJzEm4TNJDHAYASo
I4IySdA95f4bs5lNrWrq+zw9h2WQmotcG/kZNH0waKxzOoR1DdRQLBBU7j+7K4zh
0lJUPC999uNZXh0F1A8RXHR+nJoCgMwv2gk4AYcrDCggnIuaRC7F5b42j98DZya0
7yqfsXJNOOdckgcEy0LLXrIK9AC9jNIi60tqhPMagmjr6N6ugAedmLc023CqdHYC
TX4Q4EtJP2HSRB0jcTNCW/NjUkoLBAQ0IiypgfmujrgjklcDy1Hc7oLH5slwFeK9
H5BAYE9sxTdbAwN3SSZWanG83QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0O9XG0
Kj7tGrxtgD0lXwh8JbQIMB8GA1UdIwQYMBaAFP50B3HW6gAS3jhwVviMvt02xKhg
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlBNC8yN0EyNUE1NjA0
RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFCTGVPSEJXLUl5LTNUYkVx
R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL19uUUhjZGJxQUJMZU9IQlctSXktM1RiRXFHQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
ODlBNC8yN0EyNUE1NjA0RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFC
TGVPSEJXLUl5LTNUYkVxR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQALFUchYmV+2D43qxm52ZeS8nS7Sn+whN6KexbceyMhNuenRC19WtQz
eQ5TJL+zWKZZb+GuVrLRt1PixK3vTeQi55eLIaiKC8TAgoAu9QESIPSOLUIaHM4D
6SRI4yvlcEhFTcSNWjIlcjEgaf/Uxm8P7DaLEfHEp7a6H6xmDvvYJEfPIoaSO/vQ
jBZwcmKU8auMavx4MkazbrStUdqA06oJ6fCZqU5MwnveDocK7ApJA1rTBSvnwJXk
hmFusWJ6vmrR3MgbYe+ZjMyqL+GkfFhEA2JH572X9LDZL9UjkCEAXdxHLy6LpoYw
dylLgITDXaimjCwfSMLTtapSuBizhDtB
-----END CERTIFICATE-----
Generated at Tue Jul 22 05:10:07 2025 by rpki-client