Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft
File:                     tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json)
Hash identifier:          PxuhLGXJ2zq7oPtMyP6wOwS6XjSjcqbgNWDUTvFsBD4=
Subject key identifier:   AB:9B:67:0C:71:20:5A:D8:8D:A0:2F:57:85:4E:15:71:D4:45:07:0C
Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29
Certificate issuer:       /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429
Certificate serial:       0926
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft
Manifest number:          1FF9
Signing time:             Thu 24 Jul 2025 16:46:27 +0000
Manifest this update:     Thu 24 Jul 2025 16:46:26 +0000
Manifest next update:     Thu 31 Jul 2025 16:46:26 +0000
Files and hashes:         1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: Rt074i5nHh/COM6raMX+DyX3hO8Br7wxTiAuVoTxpQg=)
                          2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: Lmn08n30AiKaOdta7GpDKIWNdyU/iej42lU+unei0xc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl
                          rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 16:46:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2342 (0x926)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E3B25, serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429
        Validity
            Not Before: Jul 24 16:46:26 2025 GMT
            Not After : Jul 31 16:46:26 2025 GMT
        Subject: CN=68826362-ddda
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:71:76:02:72:cf:5f:ad:2c:ce:2d:61:0f:04:
                    cd:40:44:1f:38:3d:db:7b:f3:ed:f9:2f:f7:1a:a5:
                    bf:7a:96:c3:27:0f:bd:df:d0:0a:61:04:66:d0:f6:
                    d1:c1:c4:52:d5:92:0b:5e:2b:a5:ad:7c:2b:54:0f:
                    95:c3:01:ca:b2:b5:a8:8e:a6:63:08:d6:e2:d8:12:
                    f9:fa:7f:1f:92:ea:64:67:86:2a:ca:56:40:0a:af:
                    24:69:75:09:0f:2b:05:db:36:bc:92:4b:d8:18:df:
                    00:b0:29:56:54:4b:28:13:79:83:f9:27:79:20:3b:
                    6d:74:4e:09:21:15:f9:65:05:09:33:6c:52:2f:b7:
                    cb:35:d5:91:32:91:07:36:62:f7:de:83:42:40:a8:
                    2c:90:95:42:2d:a2:97:d5:a1:81:ae:05:9b:50:3c:
                    d2:5c:56:89:fe:e0:67:4d:b2:6c:39:b1:b7:6b:a2:
                    33:a4:86:82:12:5d:0a:5b:64:3b:82:6d:fc:20:63:
                    fe:0c:08:1e:4c:03:e4:6f:21:9a:64:5e:7f:2d:12:
                    34:e7:23:59:18:f9:51:47:96:e5:23:dc:87:c4:6e:
                    4d:99:4b:a0:f6:73:27:0d:03:23:7f:8c:a1:80:2c:
                    e5:34:17:31:e6:58:ad:3c:be:93:ed:29:df:1e:b7:
                    e6:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:9B:67:0C:71:20:5A:D8:8D:A0:2F:57:85:4E:15:71:D4:45:07:0C
            X509v3 Authority Key Identifier:
                keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:48:ae:56:67:5d:01:ab:d9:15:fa:90:a2:82:f5:15:1e:06:
         e2:8d:90:10:b3:1b:34:c6:d3:9d:5a:72:ef:45:f2:f5:96:d2:
         34:1c:3e:98:18:c0:a2:62:51:4d:cd:66:2f:e6:dc:6a:37:79:
         f9:23:00:2d:56:36:fa:cf:ad:ad:dc:87:a9:c2:7d:3b:f3:cd:
         da:3f:3f:84:b1:3f:b2:9c:a6:44:a5:e2:f6:57:15:45:20:3c:
         b8:60:c5:81:e9:1f:67:21:1b:cc:9f:fd:63:ca:30:3d:ea:d4:
         7c:3e:9a:60:99:4d:9d:ce:86:71:83:f2:a9:fc:61:31:f7:68:
         9c:ca:f0:ce:56:34:43:1a:5a:c0:5d:53:ea:3e:f6:03:ea:e7:
         40:52:f6:6e:0d:5c:04:80:f5:1b:2c:f2:16:ce:2f:9e:69:98:
         ab:a7:a1:3b:91:f2:cd:32:aa:e5:b1:f6:52:80:80:7c:25:2b:
         42:c1:69:10:90:90:4c:1b:ff:63:64:aa:ae:90:75:14:7e:5b:
         14:3a:68:e1:2c:e7:fd:1b:bb:99:a5:1e:86:a4:21:ce:0e:77:
         21:b9:32:36:ec:44:a5:ae:22:f7:11:df:cd:59:bc:69:c8:64:
         c7:2a:06:0b:95:45:1f:97:c8:f2:d3:8e:c7:28:2b:35:3c:df:
         ec:ee:41:89
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz
Q0FGQjM0MjkwHhcNMjUwNzI0MTY0NjI2WhcNMjUwNzMxMTY0NjI2WjAYMRYwFAYD
VQQDEw02ODgyNjM2Mi1kZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA13F2AnLPX60szi1hDwTNQEQfOD3be/Pt+S/3GqW/epbDJw+939AKYQRm0PbR
wcRS1ZILXiulrXwrVA+VwwHKsrWojqZjCNbi2BL5+n8fkupkZ4YqylZACq8kaXUJ
DysF2za8kkvYGN8AsClWVEsoE3mD+Sd5IDttdE4JIRX5ZQUJM2xSL7fLNdWRMpEH
NmL33oNCQKgskJVCLaKX1aGBrgWbUDzSXFaJ/uBnTbJsObG3a6IzpIaCEl0KW2Q7
gm38IGP+DAgeTAPkbyGaZF5/LRI05yNZGPlRR5blI9yHxG5NmUug9nMnDQMjf4yh
gCzlNBcx5litPL6T7SnfHrfmMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKubZwxx
IFrYjaAvV4VOFXHURQcMMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2
MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO
Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM
TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAFSK5WZ10Bq9kV+pCigvUVHgbijZAQsxs0xtOdWnLvRfL1ltI0HD6Y
GMCiYlFNzWYv5txqN3n5IwAtVjb6z62t3Iepwn07883aPz+EsT+ynKZEpeL2VxVF
IDy4YMWB6R9nIRvMn/1jyjA96tR8PppgmU2dzoZxg/Kp/GEx92icyvDOVjRDGlrA
XVPqPvYD6udAUvZuDVwEgPUbLPIWzi+eaZirp6E7kfLNMqrlsfZSgIB8JStCwWkQ
kJBMG/9jZKqukHUUflsUOmjhLOf9G7uZpR6GpCHODnchuTI27ESlriL3Ed/NWbxp
yGTHKgYLlUUfl8jy047HKCs1PN/s7kGJ
-----END CERTIFICATE-----
Generated at Fri Jul 25 06:30:28 2025 by rpki-client