Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft
File:                     ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json)
Hash identifier:          F2Ms+9hG145flckRxNd7a5JxGDGmadSuS7axXDofnb0=
Subject key identifier:   F1:C4:E2:93:4B:B2:FD:7A:8F:AC:D5:B9:EA:BC:6C:F7:C7:35:4E:3C
Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F
Certificate issuer:       /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F
Certificate serial:       0889
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft
Manifest number:          0882
Signing time:             Thu 24 Jul 2025 20:47:45 +0000
Manifest this update:     Thu 24 Jul 2025 20:47:44 +0000
Manifest next update:     Thu 31 Jul 2025 20:47:44 +0000
Files and hashes:         1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: XWJRmscU9JlqEgjGerkd0/MG5JKjU+gTc1/YCnPhKpk=)
                          2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: 3y+P8Wjw2NbNvaqBtjPXBVu0eGWr6eeBTOCTDHgw4uI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl
                          rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 20:47:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2185 (0x889)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919A285, serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F
        Validity
            Not Before: Jul 24 20:47:44 2025 GMT
            Not After : Jul 31 20:47:44 2025 GMT
        Subject: CN=68829bf0-937f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:47:84:43:db:0a:5c:cb:da:34:36:76:34:95:
                    04:74:3c:28:cb:bf:ae:06:c0:84:15:1c:c6:41:42:
                    89:68:44:50:f1:f3:0b:b2:0a:e8:a6:fa:85:f6:78:
                    ee:39:d2:8a:cc:03:93:31:14:96:40:11:fa:94:da:
                    c7:d2:7e:e4:f1:fd:77:74:20:6e:28:ba:a4:49:f0:
                    66:53:e8:53:bf:74:a0:72:f0:9b:8f:7c:c0:20:66:
                    f2:29:a9:dd:96:51:53:ab:f4:d8:2c:c4:f8:42:5d:
                    62:d1:2a:41:ae:99:1c:6a:b5:32:dd:a9:fd:82:91:
                    94:8a:e2:20:31:f2:33:52:f7:66:d5:25:e4:56:b4:
                    7a:cd:52:44:5b:2a:29:b9:0d:91:e4:83:79:cd:a6:
                    f2:26:fe:7c:19:06:37:08:45:46:95:f2:d5:c4:ab:
                    04:8f:87:21:91:98:00:fc:c9:50:01:74:3c:14:64:
                    02:39:7e:b5:a9:3d:48:d6:84:1b:7f:3b:66:0d:df:
                    d8:ae:06:46:0a:bf:1a:7f:33:52:42:e4:47:7b:76:
                    9f:f3:cb:a1:82:de:11:c0:8b:74:1e:02:c0:0d:8e:
                    53:56:64:dd:1d:2f:19:00:94:00:02:a1:a5:e7:9e:
                    5b:6a:2d:aa:f1:ea:f9:38:21:b2:a0:20:6c:4c:87:
                    73:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:C4:E2:93:4B:B2:FD:7A:8F:AC:D5:B9:EA:BC:6C:F7:C7:35:4E:3C
            X509v3 Authority Key Identifier:
                keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:f0:2a:72:c4:c5:02:f9:9b:b2:fb:51:87:96:5f:39:5c:d5:
         44:02:37:2d:ab:4d:ab:99:9e:97:aa:0a:b4:e7:07:4a:99:da:
         18:0b:2d:a9:66:dc:fd:33:75:d3:95:b9:87:62:87:80:9a:f4:
         8c:da:f9:1f:42:b9:e8:02:7e:51:38:4b:47:07:cb:4b:68:bd:
         62:1d:94:1e:b5:7c:34:05:0b:34:3c:99:2c:0f:b6:13:7e:01:
         86:aa:d5:f1:24:60:e5:69:96:5a:31:ca:42:34:c3:b2:33:41:
         b6:6c:16:a8:6a:66:42:31:35:1b:ac:05:68:97:92:2f:c0:3f:
         ad:7f:48:4c:78:a9:55:4c:31:ce:29:dd:f8:af:44:64:7f:b8:
         c2:4d:b3:e9:a5:09:b3:0f:a9:01:ce:b5:37:9a:58:f1:38:92:
         d3:ee:a8:57:a5:ab:af:eb:22:86:76:9e:cf:28:f4:7e:99:c9:
         eb:39:76:b1:02:b0:17:86:77:f1:c1:2a:27:4f:2b:49:22:55:
         57:9a:c5:cc:0f:93:74:46:ff:3f:bb:3d:f7:7c:c4:5a:af:5f:
         f6:3f:c6:0f:e8:26:89:c4:42:6b:ef:bd:0a:4b:f6:1b:c7:54:
         11:2e:1e:8e:4e:5a:f1:e1:cc:1c:e7:3a:fe:ba:41:b7:da:d7:
         e2:44:01:a2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD
RDBFRUQ0NUYwHhcNMjUwNzI0MjA0NzQ0WhcNMjUwNzMxMjA0NzQ0WjAYMRYwFAYD
VQQDEw02ODgyOWJmMC05MzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAu0eEQ9sKXMvaNDZ2NJUEdDwoy7+uBsCEFRzGQUKJaERQ8fMLsgropvqF9nju
OdKKzAOTMRSWQBH6lNrH0n7k8f13dCBuKLqkSfBmU+hTv3SgcvCbj3zAIGbyKand
llFTq/TYLMT4Ql1i0SpBrpkcarUy3an9gpGUiuIgMfIzUvdm1SXkVrR6zVJEWyop
uQ2R5IN5zabyJv58GQY3CEVGlfLVxKsEj4chkZgA/MlQAXQ8FGQCOX61qT1I1oQb
fztmDd/YrgZGCr8afzNSQuRHe3af88uhgt4RwIt0HgLADY5TVmTdHS8ZAJQAAqGl
555bai2q8er5OCGyoCBsTIdzpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHE4pNL
sv16j6zVueq8bPfHNU48MB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1
NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx
RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH
U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBQ8CpyxMUC+Zuy+1GHll85XNVEAjctq02rmZ6Xqgq05wdKmdoYCy2p
Ztz9M3XTlbmHYoeAmvSM2vkfQrnoAn5ROEtHB8tLaL1iHZQetXw0BQs0PJksD7YT
fgGGqtXxJGDlaZZaMcpCNMOyM0G2bBaoamZCMTUbrAVol5IvwD+tf0hMeKlVTDHO
Kd34r0Rkf7jCTbPppQmzD6kBzrU3mljxOJLT7qhXpauv6yKGdp7PKPR+mcnrOXax
ArAXhnfxwSonTytJIlVXmsXMD5N0Rv8/uz33fMRar1/2P8YP6CaJxEJr770KS/Yb
x1QRLh6OTlrx4cwc5zr+ukG32tfiRAGi
-----END CERTIFICATE-----
Generated at Sat Jul 26 02:06:13 2025 by rpki-client