Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft
File:                     s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json)
Hash identifier:          I0iVrzcBfg1+nuuvpvHoVeN2p0e6xMrGeQkxExnNT7s=
Subject key identifier:   B1:69:85:4B:15:8B:AE:0C:1F:78:67:2D:34:16:62:46:9E:62:2B:9F
Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46
Certificate issuer:       /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546
Certificate serial:       0AFB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft
Manifest number:          0AF4
Signing time:             Thu 24 Jul 2025 19:31:37 +0000
Manifest this update:     Thu 24 Jul 2025 19:31:36 +0000
Manifest next update:     Thu 31 Jul 2025 19:31:36 +0000
Files and hashes:         1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: mHk9Ojh7kT6GRlGgAhwWsHofRdTREDeeqZ7Gzcsj/gQ=)
                          2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: j/OpYEtDuYk8PfhysOsvn+uhuepZ3xGdAVnmL79tUAw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl
                          rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 19:31:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2811 (0xafb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546
        Validity
            Not Before: Jul 24 19:31:36 2025 GMT
            Not After : Jul 31 19:31:36 2025 GMT
        Subject: CN=68828a18-32f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:4b:1e:68:ad:66:cc:32:0f:be:28:9b:c4:02:
                    5e:9a:11:88:4e:a9:8c:76:4e:23:6c:5d:a9:39:6c:
                    36:04:ea:8d:c9:0f:90:82:29:1d:dc:c9:74:f2:13:
                    79:f4:b8:be:b4:f1:a0:71:c6:7e:f7:2e:42:f7:64:
                    f3:fe:2d:3b:69:9e:0d:99:43:92:ca:40:a8:d3:b1:
                    94:fa:0a:33:71:e6:da:c8:9e:4e:e3:72:f7:6e:b9:
                    99:a0:dd:f4:5d:f4:f1:60:03:89:62:78:11:db:6e:
                    fc:d2:36:9f:12:3e:10:6c:80:d7:b2:cf:6e:3d:4b:
                    5d:48:ba:74:25:9b:03:6f:10:33:81:78:c7:a1:6a:
                    fe:fa:10:25:0f:92:44:34:f2:cb:68:56:1f:07:b7:
                    e6:32:24:2e:af:11:94:b4:f0:fd:ce:80:29:57:1f:
                    8c:7d:b3:c5:a3:32:9c:5c:85:c9:0b:dd:92:2c:66:
                    05:fa:fd:30:68:a2:0a:12:77:2c:e9:64:f6:f6:a0:
                    5a:ce:8c:8d:9b:69:d1:65:02:37:85:99:6c:e6:76:
                    2e:06:df:bf:ba:bc:8b:af:4d:56:97:07:de:cb:42:
                    15:1b:8b:fe:62:ec:97:93:97:3d:4e:59:6c:fb:a9:
                    b6:e4:d0:f1:8e:71:e8:68:a5:c4:37:b0:e9:96:7e:
                    31:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:69:85:4B:15:8B:AE:0C:1F:78:67:2D:34:16:62:46:9E:62:2B:9F
            X509v3 Authority Key Identifier:
                keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:c5:76:48:53:ec:f1:98:23:06:e1:5f:19:5f:87:1e:dc:0c:
         64:95:98:7b:3a:97:93:f1:dc:78:5b:14:64:fc:2c:f3:7a:24:
         00:c1:b2:51:10:32:55:85:74:27:34:bb:bd:8d:09:6f:e6:12:
         99:12:47:a3:94:32:3e:a5:d7:bb:41:f6:03:c3:ec:ef:4b:3e:
         5b:52:e2:f0:c1:9c:7c:39:0b:e6:05:9d:07:cf:a5:74:98:a7:
         82:5c:b4:13:69:de:eb:80:66:ca:1e:78:e6:e1:6a:07:57:5f:
         0f:40:7a:76:70:43:cd:3c:d6:c7:15:49:5d:e3:8d:61:7e:56:
         48:55:05:ac:08:02:a9:fa:f4:aa:77:cf:37:4c:91:33:35:e3:
         5e:5b:61:90:c3:e7:25:9b:e3:b8:fe:1f:8d:27:43:51:8a:2f:
         bf:97:9b:5b:d8:54:0b:42:d3:9a:87:74:54:36:69:0b:75:7e:
         95:10:ec:cf:24:5b:f4:79:43:c0:68:a6:99:66:cc:83:71:3b:
         7a:f9:70:c9:0b:de:13:56:7d:81:10:84:97:2c:5f:97:07:3e:
         f8:95:b3:0b:fb:26:09:6f:b7:f4:cb:bd:1b:0a:7a:06:40:d5:
         4d:6a:9c:dc:03:86:1d:2c:11:ba:1a:1e:1a:a7:57:02:38:a8:
         52:ad:c1:a7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1
RDg4MTY1NDYwHhcNMjUwNzI0MTkzMTM2WhcNMjUwNzMxMTkzMTM2WjAYMRYwFAYD
VQQDEw02ODgyOGExOC0zMmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr0seaK1mzDIPviibxAJemhGITqmMdk4jbF2pOWw2BOqNyQ+Qgikd3Ml08hN5
9Li+tPGgccZ+9y5C92Tz/i07aZ4NmUOSykCo07GU+gozcebayJ5O43L3brmZoN30
XfTxYAOJYngR22780jafEj4QbIDXss9uPUtdSLp0JZsDbxAzgXjHoWr++hAlD5JE
NPLLaFYfB7fmMiQurxGUtPD9zoApVx+MfbPFozKcXIXJC92SLGYF+v0waKIKEncs
6WT29qBazoyNm2nRZQI3hZls5nYuBt+/uryLr01Wlwfey0IVG4v+YuyXk5c9Tlls
+6m25NDxjnHoaKXEN7Dpln4x1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFphUsV
i64MH3hnLTQWYkaeYiufMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC
MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa
VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx
VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA9xXZIU+zxmCMG4V8ZX4ce3AxklZh7OpeT8dx4WxRk/CzzeiQAwbJR
EDJVhXQnNLu9jQlv5hKZEkejlDI+pde7QfYDw+zvSz5bUuLwwZx8OQvmBZ0Hz6V0
mKeCXLQTad7rgGbKHnjm4WoHV18PQHp2cEPNPNbHFUld441hflZIVQWsCAKp+vSq
d883TJEzNeNeW2GQw+clm+O4/h+NJ0NRii+/l5tb2FQLQtOah3RUNmkLdX6VEOzP
JFv0eUPAaKaZZsyDcTt6+XDJC94TVn2BEISXLF+XBz74lbML+yYJb7f0y70bCnoG
QNVNapzcA4YdLBG6Gh4ap1cCOKhSrcGn
-----END CERTIFICATE-----
Generated at Fri Jul 25 05:25:24 2025 by rpki-client