Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
File:                     U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json)
Hash identifier:          Svx77sTra1E+uBhgi09kx13RyRVySlWeKlLcZSWEuhA=
Subject key identifier:   17:B1:C9:3D:C1:D9:7D:27:5E:BC:43:8C:59:24:9D:90:2D:74:60:DB
Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69
Certificate issuer:       /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569
Certificate serial:       093F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
Manifest number:          091B
Signing time:             Thu 24 Jul 2025 20:33:27 +0000
Manifest this update:     Thu 24 Jul 2025 20:33:27 +0000
Manifest next update:     Thu 31 Jul 2025 20:33:27 +0000
Files and hashes:         1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: KvcH+ryyhqBi7NbZCVoQCLIL/bEmudBjXKhWlf45LVY=)
                          2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl
                          rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 20:33:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2367 (0x93f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569
        Validity
            Not Before: Jul 24 20:33:27 2025 GMT
            Not After : Jul 31 20:33:27 2025 GMT
        Subject: CN=68829897-7f9f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:5c:c3:e4:c5:21:6d:00:99:84:b4:95:ba:71:
                    5e:23:5e:bd:4b:9f:b2:d2:64:18:df:64:24:0a:09:
                    a5:d2:0c:b9:37:f4:2c:17:c2:f4:38:2e:74:cd:b2:
                    52:62:c3:5b:eb:48:ac:08:b1:b4:d9:2c:87:f7:dd:
                    7f:68:c3:4b:84:36:4d:13:0c:22:f8:2e:39:39:f5:
                    c6:22:cc:6e:ad:68:9c:a6:b9:95:1e:7c:ca:4e:49:
                    eb:a6:4f:75:f2:8c:73:e9:84:9b:b1:8b:cb:7a:1b:
                    37:5b:b3:34:e4:a1:27:e7:36:f5:ff:d5:4f:49:5e:
                    61:f3:b0:98:f8:8d:94:76:46:36:e4:35:8c:a3:8a:
                    c9:2a:be:be:52:aa:14:4e:2f:11:de:b2:c0:23:0f:
                    24:b0:a8:1f:14:48:08:fe:77:34:78:0a:68:0d:d0:
                    df:6a:1b:44:64:a5:5b:73:ad:6b:4b:f2:6e:b3:e3:
                    16:96:23:c5:77:3a:0a:85:60:c9:96:04:08:82:99:
                    a5:e9:83:bd:f9:f3:3f:dc:69:74:0c:31:2f:96:9c:
                    ae:b5:97:10:e2:f8:74:7f:6c:ff:07:a9:c4:4c:ed:
                    d2:98:67:f0:23:ee:f6:be:24:a3:dc:01:06:30:c2:
                    08:49:f9:58:71:0d:24:86:7e:f4:c9:91:ff:e6:79:
                    40:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:B1:C9:3D:C1:D9:7D:27:5E:BC:43:8C:59:24:9D:90:2D:74:60:DB
            X509v3 Authority Key Identifier:
                keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:c4:b1:d1:60:7e:8c:9a:ec:a5:4b:a3:5e:74:91:f0:26:57:
         d8:fa:f0:cc:20:e0:0c:c8:07:25:4c:60:53:a6:78:ba:9a:c3:
         78:bc:ba:a3:37:79:7e:11:ef:f4:f3:af:04:1a:1b:a8:91:16:
         d3:68:f2:fc:f0:ac:ea:26:18:ec:c6:63:a2:d4:3b:02:28:31:
         5d:c6:0b:92:85:a2:91:39:3b:0e:3e:10:d7:1b:73:31:e2:0d:
         83:8f:27:11:9d:1b:b5:2b:25:a6:f4:23:34:80:b2:58:c5:94:
         3b:9c:00:22:1e:42:50:3f:21:c1:d0:48:13:be:47:c5:1e:cf:
         a0:98:9c:56:99:38:c4:77:f5:1e:ba:2a:b1:36:38:d9:1d:93:
         f5:03:96:ed:ec:7d:25:39:21:ae:92:ae:7a:bd:66:1f:d1:07:
         6c:8d:70:3c:a0:7b:b8:9b:ce:37:81:9d:97:14:b9:f2:1b:54:
         37:ad:31:42:64:d3:9a:47:a3:08:5d:5d:0c:e7:73:96:b5:10:
         c6:55:d0:d1:ed:25:1c:d6:eb:81:44:b2:55:bd:9a:c8:5d:c7:
         4d:f0:2c:46:a7:0f:02:d3:f1:de:a2:2a:7e:78:95:94:55:6c:
         08:41:74:a3:b9:13:31:e3:3f:a5:d1:17:60:db:a8:9e:b1:a0:
         39:55:3a:d3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG
NUM0OUI1NjkwHhcNMjUwNzI0MjAzMzI3WhcNMjUwNzMxMjAzMzI3WjAYMRYwFAYD
VQQDEw02ODgyOTg5Ny03ZjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA01zD5MUhbQCZhLSVunFeI169S5+y0mQY32QkCgml0gy5N/QsF8L0OC50zbJS
YsNb60isCLG02SyH991/aMNLhDZNEwwi+C45OfXGIsxurWicprmVHnzKTknrpk91
8oxz6YSbsYvLehs3W7M05KEn5zb1/9VPSV5h87CY+I2UdkY25DWMo4rJKr6+UqoU
Ti8R3rLAIw8ksKgfFEgI/nc0eApoDdDfahtEZKVbc61rS/Jus+MWliPFdzoKhWDJ
lgQIgpml6YO9+fM/3Gl0DDEvlpyutZcQ4vh0f2z/B6nETO3SmGfwI+72viSj3AEG
MMIISflYcQ0khn70yZH/5nlAswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBexyT3B
2X0nXrxDjFkknZAtdGDbMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx
MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0
V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz
LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAwxLHRYH6MmuylS6NedJHwJlfY+vDMIOAMyAclTGBTpni6msN4vLqj
N3l+Ee/0868EGhuokRbTaPL88KzqJhjsxmOi1DsCKDFdxguShaKROTsOPhDXG3Mx
4g2DjycRnRu1KyWm9CM0gLJYxZQ7nAAiHkJQPyHB0EgTvkfFHs+gmJxWmTjEd/Ue
uiqxNjjZHZP1A5bt7H0lOSGukq56vWYf0QdsjXA8oHu4m843gZ2XFLnyG1Q3rTFC
ZNOaR6MIXV0M53OWtRDGVdDR7SUc1uuBRLJVvZrIXcdN8CxGpw8C0/Heoip+eJWU
VWwIQXSjuRMx4z+l0Rdg26iesaA5VTrT
-----END CERTIFICATE-----
Generated at Sat Jul 26 02:03:17 2025 by rpki-client