Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
File:                     Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json)
Hash identifier:          SWXbF/DIv92XFmWmLigz6nPLDvogeeUPV8ltwmpXP8E=
Subject key identifier:   B2:8A:AE:D9:2E:EB:D5:26:66:B8:18:41:3D:03:E1:54:DE:7E:12:3E
Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83
Certificate issuer:       /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083
Certificate serial:       011A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
Manifest number:          0106
Signing time:             Wed 23 Jul 2025 05:36:29 +0000
Manifest this update:     Wed 23 Jul 2025 05:36:28 +0000
Manifest next update:     Wed 30 Jul 2025 05:36:28 +0000
Files and hashes:         1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: O7wEtL5RpvNvm+hMn3m/T9xcyK1tc6aDdIpyR176MJE=)
                          2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: 5QVyPmB1PRFpCtk6BRZ20HLOXQ8hVyEmcdVKPIlpB7E=)
                          3: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: RlIbmp0Lo/M48Q8XdgnjXEwJZ7614fl+AY4B8ug41tA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl
                          rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 05:36:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 282 (0x11a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083
        Validity
            Not Before: Jul 23 05:36:28 2025 GMT
            Not After : Jul 30 05:36:28 2025 GMT
        Subject: CN=688074dd-a1a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:ac:1a:6c:66:97:a2:6a:99:81:98:8f:f5:bb:
                    80:6e:4f:03:85:7e:1c:ad:a2:22:07:ea:50:67:22:
                    0e:07:22:25:f9:16:18:11:38:7a:01:58:01:6b:7d:
                    ce:9c:df:5f:79:3b:9e:0e:db:a9:ef:c3:5e:da:9e:
                    87:e9:6a:ed:31:91:58:3e:0b:7e:f0:85:06:f7:de:
                    30:ff:34:c5:bd:06:1a:43:e5:7a:a7:06:15:65:e2:
                    d0:40:cc:9f:d3:85:33:90:f3:e8:70:eb:ea:ab:50:
                    90:7f:ef:6b:31:e9:4b:17:e4:79:68:c3:5c:c6:82:
                    91:33:c5:1f:95:d3:38:8e:07:23:36:b1:ff:87:a2:
                    4c:bd:4e:1a:f5:e0:0c:8a:30:9d:86:cb:d1:a9:6b:
                    3a:d3:c8:e6:0b:78:58:de:5d:64:a9:74:f5:2a:4e:
                    ae:b6:9c:e7:42:9e:19:0f:57:92:c7:dd:b2:1f:37:
                    a6:a0:85:39:04:5a:7c:29:d5:1a:c7:8a:c4:26:bf:
                    a9:8b:98:b5:a5:9c:59:d2:f1:68:aa:2d:94:e8:77:
                    4a:45:60:df:87:18:54:ba:1a:7e:d6:b8:17:9d:b9:
                    d9:5d:0e:82:18:31:6a:ca:04:9c:78:e6:7f:89:6d:
                    25:ab:1f:07:fd:68:93:f6:94:a3:9b:5e:41:fa:c5:
                    db:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:8A:AE:D9:2E:EB:D5:26:66:B8:18:41:3D:03:E1:54:DE:7E:12:3E
            X509v3 Authority Key Identifier:
                keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:4b:36:8d:43:2e:66:33:92:24:fd:1a:71:b0:e6:a8:c0:4e:
         62:bb:8d:25:4a:6f:24:c7:b2:0f:fc:28:28:5b:8d:35:f6:17:
         58:9d:cf:c3:42:a0:fc:c8:52:89:63:33:46:ab:d6:f6:2a:eb:
         da:a3:17:b6:8a:be:a2:d1:79:67:eb:c2:8e:ab:03:33:3c:7f:
         cb:54:2a:2e:af:bf:aa:24:ca:86:04:d7:98:6d:94:eb:ee:2c:
         46:23:85:ee:23:0f:0c:05:25:48:1f:88:7d:e0:85:d5:89:fa:
         72:96:ef:88:a3:79:5d:d6:8d:e5:69:3f:6e:14:8c:e6:1e:fe:
         97:7f:27:d8:ab:77:42:98:e9:ed:b0:91:71:c9:f4:47:95:5e:
         45:7e:77:40:1f:53:6b:95:a4:5b:a6:0d:fb:c6:3d:e5:20:89:
         af:6a:7e:30:06:32:28:2b:56:50:55:a4:93:08:6e:43:91:98:
         5f:a1:5e:36:a7:29:83:2f:79:0b:5c:e1:cc:cf:e0:b4:a4:42:
         ca:21:3e:04:d5:9f:2d:58:a3:37:4b:a5:64:11:d0:4f:d5:ea:
         09:f9:61:1e:f4:84:1a:20:bf:56:e1:42:68:2c:76:09:ea:f7:
         49:95:c2:17:4a:b3:cd:24:0f:60:08:c0:aa:5d:98:31:8a:04:
         9e:a1:6d:36
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy
MTFEQkUwODMwHhcNMjUwNzIzMDUzNjI4WhcNMjUwNzMwMDUzNjI4WjAYMRYwFAYD
VQQDEw02ODgwNzRkZC1hMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtqwabGaXomqZgZiP9buAbk8DhX4craIiB+pQZyIOByIl+RYYETh6AVgBa33O
nN9feTueDtup78Ne2p6H6WrtMZFYPgt+8IUG994w/zTFvQYaQ+V6pwYVZeLQQMyf
04UzkPPocOvqq1CQf+9rMelLF+R5aMNcxoKRM8UfldM4jgcjNrH/h6JMvU4a9eAM
ijCdhsvRqWs608jmC3hY3l1kqXT1Kk6utpznQp4ZD1eSx92yHzemoIU5BFp8KdUa
x4rEJr+pi5i1pZxZ0vFoqi2U6HdKRWDfhxhUuhp+1rgXnbnZXQ6CGDFqygSceOZ/
iW0lqx8H/WiT9pSjm15B+sXbwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKKrtku
69UmZrgYQT0D4VTefhI+MB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5
QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0
SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL
TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCaSzaNQy5mM5Ik/RpxsOaowE5iu40lSm8kx7IP/CgoW4019hdYnc/D
QqD8yFKJYzNGq9b2Kuvaoxe2ir6i0Xln68KOqwMzPH/LVCour7+qJMqGBNeYbZTr
7ixGI4XuIw8MBSVIH4h94IXVifpylu+Io3ld1o3laT9uFIzmHv6XfyfYq3dCmOnt
sJFxyfRHlV5FfndAH1NrlaRbpg37xj3lIImvan4wBjIoK1ZQVaSTCG5DkZhfoV42
pymDL3kLXOHMz+C0pELKIT4E1Z8tWKM3S6VkEdBP1eoJ+WEe9IQaIL9W4UJoLHYJ
6vdJlcIXSrPNJA9gCMCqXZgxigSeoW02
-----END CERTIFICATE-----
Generated at Thu Jul 24 03:52:11 2025 by rpki-client