Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
File:                     o1EXGLQporBD5kW_sWUO5nd-QXI.mft (raw, json)
Hash identifier:          XltsFO0d7DfmW+exLp/XB0kA+ifZA5vquN9sS9h0rQs=
Subject key identifier:   E6:C0:5E:64:06:EF:9C:8B:5C:A0:66:E0:39:8D:7D:33:BA:3C:06:29
Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72
Certificate issuer:       /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172
Certificate serial:       0828
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
Manifest number:          0821
Signing time:             Tue 22 Jul 2025 21:01:38 +0000
Manifest this update:     Tue 22 Jul 2025 21:01:38 +0000
Manifest next update:     Tue 29 Jul 2025 21:01:38 +0000
Files and hashes:         1: o1EXGLQporBD5kW_sWUO5nd-QXI.crl (hash: eBFp4b6r34Fps/svaQnRiLdDIef1jzcUgyHryhUJz6k=)
                          2: F48207E6DB8711EAA446B360C4F9AE02.roa (hash: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl
                          rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 21:01:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2088 (0x828)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919ACF6, serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172
        Validity
            Not Before: Jul 22 21:01:38 2025 GMT
            Not After : Jul 29 21:01:38 2025 GMT
        Subject: CN=687ffc32-e1ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:65:f4:05:fb:c5:38:1a:37:b8:ad:0e:a6:b4:
                    eb:6f:1f:6a:f5:d3:2c:f9:23:3a:cb:bc:fb:94:fb:
                    be:7b:cc:68:24:44:a9:04:53:ce:a0:9f:eb:69:9b:
                    6d:3c:86:a4:86:1e:5e:29:d1:e3:39:e5:05:fd:7a:
                    b0:f4:20:17:31:05:9b:d3:b0:40:ff:01:23:0a:ae:
                    b4:e9:cf:d4:c7:99:20:2d:d9:7e:93:bb:c7:af:02:
                    fa:1c:ac:bb:a9:25:bc:72:12:78:e3:94:4f:58:b9:
                    e5:4a:ca:f3:56:25:13:f3:5c:9e:62:f7:76:6a:62:
                    07:22:8a:b0:01:8a:7a:2d:c4:53:03:9c:8e:cf:1c:
                    c1:bd:f4:3e:0f:f8:45:00:bb:3b:e4:a9:5d:14:31:
                    f7:1f:68:f8:95:99:c0:25:89:5d:4c:24:02:80:44:
                    0c:0d:ce:f1:0d:76:4d:ac:4a:a0:0c:d8:7a:6d:7b:
                    43:73:c9:b8:fd:ed:a1:c3:5e:f6:9b:77:75:f8:26:
                    15:12:8a:92:d5:c7:9c:01:fa:09:8f:fd:97:5e:9d:
                    c6:8c:dd:74:8c:2a:17:d2:71:0b:24:f8:5c:f8:16:
                    47:be:bb:d8:bf:11:84:03:e9:ce:f2:60:6f:4c:34:
                    f7:fe:5f:ec:83:99:ae:0d:4f:ed:d6:c5:d4:c6:84:
                    be:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:C0:5E:64:06:EF:9C:8B:5C:A0:66:E0:39:8D:7D:33:BA:3C:06:29
            X509v3 Authority Key Identifier:
                keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:61:64:b7:e5:99:1e:ff:f3:fd:bc:79:0d:a0:04:a8:c9:4f:
         3a:f4:bd:63:6c:b5:8f:37:74:b9:98:5f:ad:1a:4a:ad:2f:6f:
         85:7c:fc:1b:b4:d3:f1:10:70:84:8e:35:5e:b7:66:7a:83:dc:
         f4:14:86:6a:9b:88:d6:42:a2:00:46:8a:29:a1:88:1f:41:3b:
         22:c6:11:cb:e4:99:1b:4f:d2:c5:6e:94:58:e2:65:2d:bd:8c:
         8f:e4:e1:e2:17:7a:9c:87:15:d4:58:37:2a:a1:28:b1:34:18:
         cc:3c:28:47:41:93:9f:b4:30:ea:94:8f:c5:11:e2:1f:42:a4:
         40:01:f3:3a:d3:ad:76:03:e6:22:ac:7b:a5:2f:3d:4e:97:fe:
         e3:da:53:16:46:1a:fe:e2:77:22:8f:8e:ba:87:a8:39:92:dc:
         ba:13:e0:32:02:96:c6:8e:d5:bb:7d:9e:b0:40:1b:1e:27:0a:
         cf:3c:1d:5c:68:c7:d6:24:bc:a3:d7:55:ac:21:81:20:01:d5:
         64:72:4e:48:4d:8a:75:13:fa:5a:52:10:f5:09:35:49:c9:b1:
         7c:10:4f:3e:2f:41:e5:50:c3:b0:11:5e:d3:fe:dc:67:59:a8:
         1a:d2:0e:77:4e:13:bf:78:91:df:fb:f8:05:ec:07:a0:e3:21:
         9e:34:f0:1f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUFDRjYxMTAvBgNVBAUTKEEzNTExNzE4QjQyOUEyQjA0M0U2NDVCRkIxNjUwRUU2
Nzc3RTQxNzIwHhcNMjUwNzIyMjEwMTM4WhcNMjUwNzI5MjEwMTM4WjAYMRYwFAYD
VQQDEw02ODdmZmMzMi1lMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnmX0BfvFOBo3uK0OprTrbx9q9dMs+SM6y7z7lPu+e8xoJESpBFPOoJ/raZtt
PIakhh5eKdHjOeUF/Xqw9CAXMQWb07BA/wEjCq606c/Ux5kgLdl+k7vHrwL6HKy7
qSW8chJ445RPWLnlSsrzViUT81yeYvd2amIHIoqwAYp6LcRTA5yOzxzBvfQ+D/hF
ALs75KldFDH3H2j4lZnAJYldTCQCgEQMDc7xDXZNrEqgDNh6bXtDc8m4/e2hw172
m3d1+CYVEoqS1cecAfoJj/2XXp3GjN10jCoX0nELJPhc+BZHvrvYvxGEA+nO8mBv
TDT3/l/sg5muDU/t1sXUxoS+DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObAXmQG
75yLXKBm4DmNfTO6PAYpMB8GA1UdIwQYMBaAFKNRFxi0KaKwQ+ZFv7FlDuZ3fkFy
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUNGNi8zNDk3ODNFRURC
ODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9yQkQ1a1dfc1dVTzVuZC1R
WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL28xRVhHTFFwb3JCRDVrV19zV1VPNW5kLVFYSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
QUNGNi8zNDk3ODNFRURCODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9y
QkQ1a1dfc1dVTzVuZC1RWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBjYWS35Zke//P9vHkNoASoyU869L1jbLWPN3S5mF+tGkqtL2+FfPwb
tNPxEHCEjjVet2Z6g9z0FIZqm4jWQqIARoopoYgfQTsixhHL5JkbT9LFbpRY4mUt
vYyP5OHiF3qchxXUWDcqoSixNBjMPChHQZOftDDqlI/FEeIfQqRAAfM60612A+Yi
rHulLz1Ol/7j2lMWRhr+4ncij466h6g5kty6E+AyApbGjtW7fZ6wQBseJwrPPB1c
aMfWJLyj11WsIYEgAdVkck5ITYp1E/paUhD1CTVJybF8EE8+L0HlUMOwEV7T/txn
Waga0g53ThO/eJHf+/gF7Aeg4yGeNPAf
-----END CERTIFICATE-----
Generated at Thu Jul 24 05:08:22 2025 by rpki-client