Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft
File:                     nbJYwXCyMilNhj9g0twBI82q54k.mft (raw, json)
Hash identifier:          RyVb6Q7kiz5nslCXhUJb0XYtKusIp3Ckj07u5cgobNI=
Subject key identifier:   BD:84:02:32:C4:A4:69:AC:2C:7A:27:43:D4:D5:E8:A3:E7:68:58:B0
Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89
Certificate issuer:       /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789
Certificate serial:       34
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft
Manifest number:          32
Signing time:             Sat 19 Jul 2025 07:55:50 +0000
Manifest this update:     Sat 19 Jul 2025 07:55:49 +0000
Manifest next update:     Sat 26 Jul 2025 07:55:49 +0000
Files and hashes:         1: nbJYwXCyMilNhj9g0twBI82q54k.crl (hash: nif7Vg4yVit0aHZgCLuKI8l1UoRttNS2g/L3G2WjfYU=)
                          2: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (hash: gBn5RMkmkclmyZmL4wf1QAerjjB7P04/rGPHIIjACSc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl
                          rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 07:55:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 52 (0x34)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789
        Validity
            Not Before: Jul 19 07:55:49 2025 GMT
            Not After : Jul 26 07:55:49 2025 GMT
        Subject: CN=687b4f86-9b49
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:ad:3c:ac:33:b1:d9:14:c5:c5:81:3e:e8:9d:
                    e2:24:bb:ec:fd:17:0c:81:c7:ac:e5:3e:3a:83:d4:
                    89:71:c3:c7:97:30:40:c4:85:01:33:80:fa:92:55:
                    c7:e9:9d:44:b6:89:c5:75:f7:12:26:2d:2c:e0:96:
                    f7:c7:24:70:dd:fb:ca:a7:63:f7:99:85:ba:13:49:
                    6c:3b:a0:61:1a:9f:9f:cd:4c:73:80:64:81:49:94:
                    5d:ba:b0:10:2d:8d:11:c7:34:28:e8:f2:52:10:43:
                    e1:b0:43:0f:c1:aa:4b:69:52:b6:22:69:cb:7a:c2:
                    7f:d3:89:14:65:7f:d8:d7:01:e9:5f:f8:9d:da:a1:
                    81:55:d2:80:b1:be:5e:88:be:9c:c8:4a:01:c2:6b:
                    c4:ff:8e:70:37:ca:95:8c:f1:a4:01:04:21:eb:0d:
                    9e:f1:15:db:ba:87:76:f0:3f:75:ec:71:4e:6f:f5:
                    15:07:46:cf:2e:e7:35:95:be:e1:4f:45:bd:1d:f1:
                    e7:3b:f0:48:39:b9:1a:b7:e6:90:4a:d1:ce:35:2e:
                    99:a3:f9:e1:7a:db:3d:ad:8e:7f:24:4f:02:3a:d9:
                    b3:4c:69:fb:53:33:2c:a0:09:42:05:c7:d3:4a:6d:
                    ae:0c:3c:16:83:ba:25:d8:8f:ee:ab:15:b6:7b:24:
                    db:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:84:02:32:C4:A4:69:AC:2C:7A:27:43:D4:D5:E8:A3:E7:68:58:B0
            X509v3 Authority Key Identifier:
                keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:68:58:de:dd:15:b0:63:3a:4c:03:cc:c2:7c:72:5d:01:53:
         04:7e:0c:3a:8a:df:c3:bb:1a:19:c0:1f:7f:4d:0a:92:42:a0:
         26:30:b7:25:c7:aa:0e:91:6d:9c:b6:ef:71:d3:ac:fc:73:ee:
         83:df:dc:d7:a8:68:b1:e6:51:35:ea:50:c5:f3:05:b3:d3:70:
         df:59:ef:18:fa:74:fb:81:f0:de:d7:34:45:a3:07:59:5b:6a:
         3e:5c:80:ae:c8:ed:83:22:bb:55:f1:31:f4:8f:da:75:20:5b:
         c7:63:56:f5:12:83:b2:2d:38:5e:54:17:7e:aa:dd:cd:d6:82:
         a3:a6:ea:a1:9d:8f:6a:e9:d8:75:61:69:7e:43:01:17:de:3e:
         2f:c7:95:8e:4a:d6:89:55:36:98:3c:fd:9d:b9:5e:d8:8f:1f:
         d3:9f:9b:84:aa:1a:71:1e:1b:09:1e:3f:0d:5e:21:8a:55:d9:
         01:bf:fe:bb:c3:53:a6:df:28:54:e8:be:f1:bd:56:4b:1a:41:
         01:d2:91:43:67:d8:4d:39:be:41:2d:ee:8f:ca:58:cb:8c:f0:
         78:bb:46:5c:73:ea:2b:ff:b6:5c:b1:5e:e4:5e:1c:77:2b:42:
         c4:c2:84:1b:f2:b3:d0:c4:1f:d6:61:d6:56:2c:8e:57:91:bb:
         48:15:aa:b5
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC
MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND
REFBRTc4OTAeFw0yNTA3MTkwNzU1NDlaFw0yNTA3MjYwNzU1NDlaMBgxFjAUBgNV
BAMTDTY4N2I0Zjg2LTliNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD2rTysM7HZFMXFgT7oneIku+z9FwyBx6zlPjqD1Ilxw8eXMEDEhQEzgPqSVcfp
nUS2icV19xImLSzglvfHJHDd+8qnY/eZhboTSWw7oGEan5/NTHOAZIFJlF26sBAt
jRHHNCjo8lIQQ+GwQw/BqktpUrYiact6wn/TiRRlf9jXAelf+J3aoYFV0oCxvl6I
vpzISgHCa8T/jnA3ypWM8aQBBCHrDZ7xFdu6h3bwP3XscU5v9RUHRs8u5zWVvuFP
Rb0d8ec78Eg5uRq35pBK0c41Lpmj+eF62z2tjn8kTwI62bNMaftTMyygCUIFx9NK
ba4MPBaDuiXYj+6rFbZ7JNutAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvYQCMsSk
aawseidD1NXoo+doWLAwHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC
NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0
ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy
RURFLzU1Q0IyRTA0MUFCNDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWls
TmhqOWcwdHdCSTgycTU0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBADJoWN7dFbBjOkwDzMJ8cl0BUwR+DDqK38O7GhnAH39NCpJCoCYwtyXH
qg6RbZy273HTrPxz7oPf3NeoaLHmUTXqUMXzBbPTcN9Z7xj6dPuB8N7XNEWjB1lb
aj5cgK7I7YMiu1XxMfSP2nUgW8djVvUSg7ItOF5UF36q3c3WgqOm6qGdj2rp2HVh
aX5DARfePi/HlY5K1olVNpg8/Z25XtiPH9Ofm4SqGnEeGwkePw1eIYpV2QG//rvD
U6bfKFTovvG9VksaQQHSkUNn2E05vkEt7o/KWMuM8Hi7Rlxz6iv/tlyxXuReHHcr
QsTChBvys9DEH9Zh1lYsjleRu0gVqrU=
-----END CERTIFICATE-----
Generated at Sun Jul 20 22:28:45 2025 by rpki-client