Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft
File:                     tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json)
Hash identifier:          4RCJxy5vCzb88g4Kpaw9Fa3Y/lbP1EMcvP5XUKdXjf8=
Subject key identifier:   E7:E1:5B:5B:EA:51:1E:3C:0B:88:1C:61:3B:81:C2:F4:C8:4E:D0:B0
Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29
Certificate issuer:       /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429
Certificate serial:       0925
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft
Manifest number:          1FF7
Signing time:             Tue 22 Jul 2025 16:47:48 +0000
Manifest this update:     Tue 22 Jul 2025 16:47:47 +0000
Manifest next update:     Tue 29 Jul 2025 16:47:47 +0000
Files and hashes:         1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: vXl8KmxvxCeOsa+ejioH4Afj2HGH2CiG0630teWk/lI=)
                          2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: Lmn08n30AiKaOdta7GpDKIWNdyU/iej42lU+unei0xc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl
                          rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 16:47:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2341 (0x925)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E3B25, serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429
        Validity
            Not Before: Jul 22 16:47:47 2025 GMT
            Not After : Jul 29 16:47:47 2025 GMT
        Subject: CN=687fc0b4-5956
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:32:bd:8f:a2:58:3f:22:cb:d3:6c:cd:2c:d3:
                    e9:93:95:68:b3:e2:8c:c6:63:15:13:3d:3c:81:8a:
                    73:fe:01:0a:78:dd:17:64:bd:25:6c:fd:54:c9:6b:
                    ec:d4:48:f9:38:02:a2:15:67:78:80:3d:71:3c:2b:
                    7a:4d:47:a9:94:24:1c:b4:56:30:3c:8b:d7:c4:ed:
                    2f:4e:8d:47:cb:4e:d2:f1:ad:2e:65:9e:9d:2e:2f:
                    07:0c:d1:ad:97:82:2b:03:6b:91:b5:8f:4a:c0:e2:
                    10:31:71:05:79:2b:b8:63:21:78:3d:b8:cb:26:8b:
                    4c:c5:43:11:00:9a:a9:35:0e:b4:dd:c4:11:e0:60:
                    c7:62:59:3e:39:b5:02:64:8e:db:f4:e1:d9:81:48:
                    d7:12:ce:09:3f:3b:cd:26:93:04:d6:0c:c9:e9:bc:
                    6e:48:db:54:22:9a:f6:f0:69:11:d4:46:ce:7a:7c:
                    08:37:25:a7:4c:c4:bd:55:6e:ce:8a:12:a2:1a:4a:
                    c1:7f:6a:7a:f8:54:e7:ec:d2:bf:1b:ac:f5:e6:a9:
                    a0:a1:d9:0f:25:27:b6:5d:7c:cf:d0:cf:6e:5b:5d:
                    30:14:e8:46:50:d1:68:cc:b3:08:6b:30:00:53:5f:
                    34:23:10:34:3c:24:b4:2b:29:e8:9b:21:1e:9e:c4:
                    c9:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:E1:5B:5B:EA:51:1E:3C:0B:88:1C:61:3B:81:C2:F4:C8:4E:D0:B0
            X509v3 Authority Key Identifier:
                keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:b3:8c:4e:7b:fd:83:fc:f3:5b:87:7b:7a:4b:e6:47:f8:ea:
         bf:f8:29:0c:03:40:e6:92:0e:06:bd:73:04:83:2c:51:73:b3:
         1b:62:3e:cf:04:26:25:90:a9:15:99:16:e8:e6:04:e0:7b:1f:
         0c:f8:18:bc:b5:1a:14:1c:65:1e:b9:e4:af:66:cc:44:7a:47:
         33:9e:d7:1d:8e:15:70:e3:e1:9d:94:d0:61:28:df:48:37:bf:
         64:00:50:7b:d7:c0:21:6a:0f:bc:75:6f:0b:7d:ff:54:f5:49:
         e9:58:74:ac:82:9d:0a:9a:75:32:b8:72:e6:aa:a1:cd:5a:d3:
         51:22:4c:43:98:86:11:34:28:bc:d8:66:77:e6:23:e2:5c:39:
         7a:cd:3c:10:4f:a5:e6:ae:11:00:5f:b8:1e:12:d0:99:27:11:
         9a:5d:2a:db:74:c8:f0:51:9c:10:31:eb:fe:ef:d2:e4:e4:ae:
         cf:36:42:b0:f9:11:b3:fb:32:7f:e4:2f:20:dc:7e:7b:2f:4f:
         43:0d:ea:52:08:c8:51:7a:91:e9:ba:48:c3:10:c1:d9:d7:75:
         8f:70:15:2f:8c:01:f3:c0:78:f5:dd:30:ff:41:a7:53:e6:ba:
         b6:0b:25:0a:d3:b3:ae:a0:e0:51:6d:ef:7f:c4:e3:ca:12:dd:
         a1:e6:ba:b4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz
Q0FGQjM0MjkwHhcNMjUwNzIyMTY0NzQ3WhcNMjUwNzI5MTY0NzQ3WjAYMRYwFAYD
VQQDEw02ODdmYzBiNC01OTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuzK9j6JYPyLL02zNLNPpk5Vos+KMxmMVEz08gYpz/gEKeN0XZL0lbP1UyWvs
1Ej5OAKiFWd4gD1xPCt6TUeplCQctFYwPIvXxO0vTo1Hy07S8a0uZZ6dLi8HDNGt
l4IrA2uRtY9KwOIQMXEFeSu4YyF4PbjLJotMxUMRAJqpNQ603cQR4GDHYlk+ObUC
ZI7b9OHZgUjXEs4JPzvNJpME1gzJ6bxuSNtUIpr28GkR1EbOenwINyWnTMS9VW7O
ihKiGkrBf2p6+FTn7NK/G6z15qmgodkPJSe2XXzP0M9uW10wFOhGUNFozLMIazAA
U180IxA0PCS0KynomyEensTJ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfhW1vq
UR48C4gcYTuBwvTITtCwMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2
MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO
Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM
TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCNs4xOe/2D/PNbh3t6S+ZH+Oq/+CkMA0Dmkg4GvXMEgyxRc7MbYj7P
BCYlkKkVmRbo5gTgex8M+Bi8tRoUHGUeueSvZsxEekczntcdjhVw4+GdlNBhKN9I
N79kAFB718Ahag+8dW8Lff9U9UnpWHSsgp0KmnUyuHLmqqHNWtNRIkxDmIYRNCi8
2GZ35iPiXDl6zTwQT6XmrhEAX7geEtCZJxGaXSrbdMjwUZwQMev+79Lk5K7PNkKw
+RGz+zJ/5C8g3H57L09DDepSCMhRepHpukjDEMHZ13WPcBUvjAHzwHj13TD/QadT
5rq2CyUK07OuoOBRbe9/xOPKEt2h5rq0
-----END CERTIFICATE-----
Generated at Wed Jul 23 02:07:57 2025 by rpki-client