Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
File:                     Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json)
Hash identifier:          UVjF5lQWH5Q+raWeeOxI5TIIqw6k60oPPC2R8/TlH0U=
Subject key identifier:   FD:4D:80:8E:8F:91:57:6C:2B:86:90:B9:11:CE:F7:19:41:C0:AB:A7
Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83
Certificate issuer:       /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083
Certificate serial:       0119
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
Manifest number:          0105
Signing time:             Mon 21 Jul 2025 05:28:06 +0000
Manifest this update:     Mon 21 Jul 2025 05:28:06 +0000
Manifest next update:     Mon 28 Jul 2025 05:28:05 +0000
Files and hashes:         1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: TlO1y6Wm8dOnSRj7sjsSKK2DLcPx+/WFeQ4J2PrcySo=)
                          2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: 5QVyPmB1PRFpCtk6BRZ20HLOXQ8hVyEmcdVKPIlpB7E=)
                          3: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: RlIbmp0Lo/M48Q8XdgnjXEwJZ7614fl+AY4B8ug41tA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl
                          rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 05:28:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 281 (0x119)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083
        Validity
            Not Before: Jul 21 05:28:06 2025 GMT
            Not After : Jul 28 05:28:05 2025 GMT
        Subject: CN=687dcfe6-f053
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:71:bc:2a:bd:45:1b:62:38:d7:46:c3:5e:9a:
                    81:ab:cf:2c:96:29:5c:e0:9f:fa:df:97:a9:f4:22:
                    40:23:1b:82:c9:70:f1:4a:ef:a6:05:82:25:cf:75:
                    46:a1:94:54:cc:53:37:b9:c5:8c:3a:14:5f:96:71:
                    8a:01:2c:8b:43:ef:db:50:53:b4:8b:a4:e0:ef:97:
                    eb:47:56:d7:10:4d:fa:29:20:49:06:6b:e0:a6:7a:
                    bd:84:c2:49:01:15:fc:79:32:7c:e2:1e:ca:e0:cf:
                    03:11:bd:6d:0a:06:6d:bd:ad:9a:b0:f9:17:81:f5:
                    c3:a5:c5:76:a0:29:d2:78:21:8d:59:a5:5d:7b:f1:
                    01:03:25:0d:8f:56:82:04:d5:4e:71:f5:c9:41:83:
                    ed:f8:cf:a5:d6:2c:04:b2:52:9f:78:5b:73:19:4c:
                    35:b2:15:2e:be:f4:98:7f:3a:74:55:67:21:90:d5:
                    17:9a:26:b2:61:37:7e:0a:09:46:c7:65:3f:17:2c:
                    de:16:ea:eb:64:f0:3b:0b:6a:4d:66:46:c4:22:46:
                    71:aa:09:ad:23:6c:cb:e6:7a:ed:fe:da:78:4a:ca:
                    6b:34:a3:6f:df:fc:90:3e:f2:d4:e1:c3:a5:8c:3e:
                    66:f2:4a:de:62:52:3c:50:48:a8:22:0e:e7:d4:0a:
                    c4:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:4D:80:8E:8F:91:57:6C:2B:86:90:B9:11:CE:F7:19:41:C0:AB:A7
            X509v3 Authority Key Identifier:
                keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:64:81:2f:14:53:66:52:3e:fe:d5:3b:a9:dd:ec:7e:97:ae:
         3f:28:b2:44:60:52:e7:96:37:27:18:ac:a1:89:67:db:c5:6e:
         3c:b9:7a:87:52:d9:fe:9f:b4:f3:d7:98:54:35:32:7e:1f:be:
         85:f4:3d:c6:0e:ef:98:d5:ef:73:11:ef:7d:44:d8:5b:6c:fc:
         43:a0:1c:90:2f:16:1d:86:b3:11:40:31:ba:23:c9:94:de:37:
         c1:57:c9:84:9b:64:21:03:fa:86:d3:f5:e8:d5:b5:f2:8a:b4:
         0c:88:31:83:de:30:4a:d0:1d:9b:1c:86:3e:cd:2b:19:13:0d:
         4e:e1:94:7f:b2:4f:58:bd:1b:4b:09:d6:e9:b3:f3:cf:0c:ee:
         59:45:93:3b:3b:f6:77:55:18:0b:79:a1:be:68:4a:48:eb:c3:
         83:7d:24:fa:a6:68:c1:1f:52:0f:a4:59:c1:f7:8e:43:5a:17:
         00:3b:30:d5:05:41:e1:8f:01:fd:45:e6:1b:0d:bf:d8:5f:86:
         f0:29:02:36:94:55:b8:79:2e:05:dd:f3:d2:d3:0b:68:12:05:
         e1:06:0b:03:0f:9f:b6:43:a5:5f:08:92:5a:cb:1c:69:1c:ce:
         ae:4b:44:9e:70:23:d8:05:b1:74:a2:d9:d9:1e:6a:f6:43:a6:
         33:f3:df:8b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy
MTFEQkUwODMwHhcNMjUwNzIxMDUyODA2WhcNMjUwNzI4MDUyODA1WjAYMRYwFAYD
VQQDEw02ODdkY2ZlNi1mMDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAoXG8Kr1FG2I410bDXpqBq88slilc4J/635ep9CJAIxuCyXDxSu+mBYIlz3VG
oZRUzFM3ucWMOhRflnGKASyLQ+/bUFO0i6Tg75frR1bXEE36KSBJBmvgpnq9hMJJ
ARX8eTJ84h7K4M8DEb1tCgZtva2asPkXgfXDpcV2oCnSeCGNWaVde/EBAyUNj1aC
BNVOcfXJQYPt+M+l1iwEslKfeFtzGUw1shUuvvSYfzp0VWchkNUXmiayYTd+CglG
x2U/FyzeFurrZPA7C2pNZkbEIkZxqgmtI2zL5nrt/tp4SsprNKNv3/yQPvLU4cOl
jD5m8kreYlI8UEioIg7n1ArE5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1NgI6P
kVdsK4aQuRHO9xlBwKunMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5
QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0
SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL
TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCCZIEvFFNmUj7+1Tup3ex+l64/KLJEYFLnljcnGKyhiWfbxW48uXqH
Utn+n7Tz15hUNTJ+H76F9D3GDu+Y1e9zEe99RNhbbPxDoByQLxYdhrMRQDG6I8mU
3jfBV8mEm2QhA/qG0/Xo1bXyirQMiDGD3jBK0B2bHIY+zSsZEw1O4ZR/sk9YvRtL
Cdbps/PPDO5ZRZM7O/Z3VRgLeaG+aEpI68ODfST6pmjBH1IPpFnB945DWhcAOzDV
BUHhjwH9ReYbDb/YX4bwKQI2lFW4eS4F3fPS0wtoEgXhBgsDD5+2Q6VfCJJayxxp
HM6uS0SecCPYBbF0otnZHmr2Q6Yz89+L
-----END CERTIFICATE-----
Generated at Tue Jul 22 04:49:42 2025 by rpki-client