Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft
File:                     _nQHcdbqABLeOHBW-Iy-3TbEqGA.mft (raw, json)
Hash identifier:          NyTp8SaS9CA8xc11U2Hl/kKKzBEE5IMZkfvSLtar9CQ=
Subject key identifier:   D2:C1:68:FE:31:DC:B7:E7:7F:26:30:F4:63:5C:01:AC:84:F4:08:2C
Authority key identifier: FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60
Certificate issuer:       /CN=A91889A4/serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860
Certificate serial:       0194
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft
Manifest number:          0190
Signing time:             Wed 23 Jul 2025 03:42:14 +0000
Manifest this update:     Wed 23 Jul 2025 03:42:14 +0000
Manifest next update:     Wed 30 Jul 2025 03:42:14 +0000
Files and hashes:         1: _nQHcdbqABLeOHBW-Iy-3TbEqGA.crl (hash: PEYPDTvwt4RHXgIeTR7vIzAsVCieflXQPj5RbA+jjjs=)
                          2: 37B318C0050111EEAFBCAE7EC4F9AE02.roa (hash: eMm1aATtYTxr8yulbbTqFy3KIRD0+Hc1f6QKDsCg/8Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl
                          rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 03:42:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 404 (0x194)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91889A4, serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860
        Validity
            Not Before: Jul 23 03:42:14 2025 GMT
            Not After : Jul 30 03:42:14 2025 GMT
        Subject: CN=68805a16-7832
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:f3:99:fd:10:7c:ab:5d:33:e8:fe:67:b2:49:
                    37:ee:30:a3:dd:76:60:4a:d6:50:04:59:9b:a6:07:
                    31:68:c9:82:93:37:bf:71:e3:50:9c:c1:0f:34:0f:
                    29:77:70:98:dd:1f:bc:7c:c4:04:bb:72:9c:7e:cb:
                    a0:2d:0e:b9:f5:97:27:5b:c2:67:52:20:1b:cd:1f:
                    3e:d0:02:80:43:c8:4b:0b:05:e2:14:b1:d3:e2:ff:
                    c1:6b:08:1c:1a:f4:dd:c2:3b:1f:ef:d3:cd:c2:e4:
                    41:f5:44:dc:8c:dd:77:c2:4a:cf:32:67:ca:e5:13:
                    52:e3:7e:86:85:e9:23:d8:ae:92:4e:1b:5d:65:78:
                    98:e8:73:8c:9c:1a:4d:7a:bc:9c:9e:47:b6:2f:7d:
                    8b:1b:3f:f1:da:02:3a:06:9f:75:6f:86:f9:75:ea:
                    45:6e:fd:b7:5e:82:92:b4:3a:a4:5b:94:76:ee:bf:
                    99:f8:04:69:60:d4:28:38:b3:e8:3f:88:c7:0b:d8:
                    68:dc:b5:a2:9f:f8:ab:fb:a2:30:4a:87:f9:d9:2a:
                    c7:fb:a8:d9:32:d4:f0:09:88:67:cd:e2:e8:00:d9:
                    84:9a:8c:c9:9f:c8:1c:ca:b3:b4:8a:9a:a9:1e:d3:
                    99:f5:dd:c7:3e:88:f9:ef:3a:ef:55:e9:2f:18:ba:
                    d4:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:C1:68:FE:31:DC:B7:E7:7F:26:30:F4:63:5C:01:AC:84:F4:08:2C
            X509v3 Authority Key Identifier:
                keyid:FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:62:a0:48:4b:2a:81:f9:8d:8a:6b:48:ea:80:b2:c5:54:9e:
         ef:38:23:3f:25:db:72:bd:16:9e:bd:cc:63:6c:5e:69:30:93:
         e4:ad:eb:6d:c1:90:c2:b9:95:96:d2:5e:85:fa:78:9c:af:0e:
         51:97:3a:7e:a5:45:b5:51:32:32:89:e6:97:6a:25:dc:26:38:
         43:5d:91:19:54:1c:b4:55:cb:64:ca:48:b4:9e:b5:22:fd:26:
         07:0a:e8:7e:a2:fa:8e:66:54:5c:43:72:75:94:63:a9:33:71:
         54:b1:25:20:d2:7a:7e:08:a4:0a:54:cf:0c:a8:3c:15:99:46:
         7a:f3:b0:76:3d:3e:23:68:2d:4b:b8:c8:34:ef:83:33:b5:69:
         77:f5:2c:f6:97:9a:fe:af:ed:0b:f9:02:4d:87:47:cf:44:2a:
         9d:6b:30:ee:fc:40:f5:10:51:b8:2c:b2:fd:f4:dc:e6:73:53:
         d8:db:c5:8f:4c:5b:db:c8:18:0e:d3:c4:98:69:05:41:a0:b2:
         23:68:ea:88:74:2f:18:6f:4c:b1:3a:86:7d:94:f6:70:96:62:
         40:89:57:f3:a8:26:56:03:fb:2e:5a:b8:6b:f7:2b:59:7e:aa:
         a8:d5:29:b3:fc:72:bf:3a:b5:16:cd:b2:48:07:6c:40:75:98:
         49:20:0f:a0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODg5QTQxMTAvBgNVBAUTKEZFNzQwNzcxRDZFQTAwMTJERTM4NzA1NkY4OENCRURE
MzZDNEE4NjAwHhcNMjUwNzIzMDM0MjE0WhcNMjUwNzMwMDM0MjE0WjAYMRYwFAYD
VQQDEw02ODgwNWExNi03ODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs/OZ/RB8q10z6P5nskk37jCj3XZgStZQBFmbpgcxaMmCkze/ceNQnMEPNA8p
d3CY3R+8fMQEu3KcfsugLQ659ZcnW8JnUiAbzR8+0AKAQ8hLCwXiFLHT4v/Bawgc
GvTdwjsf79PNwuRB9UTcjN13wkrPMmfK5RNS436Ghekj2K6SThtdZXiY6HOMnBpN
erycnke2L32LGz/x2gI6Bp91b4b5depFbv23XoKStDqkW5R27r+Z+ARpYNQoOLPo
P4jHC9ho3LWin/ir+6IwSof52SrH+6jZMtTwCYhnzeLoANmEmozJn8gcyrO0ipqp
HtOZ9d3HPoj57zrvVekvGLrUHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLBaP4x
3LfnfyYw9GNcAayE9AgsMB8GA1UdIwQYMBaAFP50B3HW6gAS3jhwVviMvt02xKhg
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlBNC8yN0EyNUE1NjA0
RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFCTGVPSEJXLUl5LTNUYkVx
R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL19uUUhjZGJxQUJMZU9IQlctSXktM1RiRXFHQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
ODlBNC8yN0EyNUE1NjA0RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFC
TGVPSEJXLUl5LTNUYkVxR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAIYqBISyqB+Y2Ka0jqgLLFVJ7vOCM/JdtyvRaevcxjbF5pMJPkrett
wZDCuZWW0l6F+nicrw5Rlzp+pUW1UTIyieaXaiXcJjhDXZEZVBy0Vctkyki0nrUi
/SYHCuh+ovqOZlRcQ3J1lGOpM3FUsSUg0np+CKQKVM8MqDwVmUZ687B2PT4jaC1L
uMg074MztWl39Sz2l5r+r+0L+QJNh0fPRCqdazDu/ED1EFG4LLL99Nzmc1PY28WP
TFvbyBgO08SYaQVBoLIjaOqIdC8Yb0yxOoZ9lPZwlmJAiVfzqCZWA/suWrhr9ytZ
fqqo1Smz/HK/OrUWzbJIB2xAdZhJIA+g
-----END CERTIFICATE-----
Generated at Thu Jul 24 04:00:05 2025 by rpki-client