Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
File:                     sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json)
Hash identifier:          l3dM24HOo5+BN1SmSHPtelp/oZpL114OKipVsWbnF/A=
Subject key identifier:   C3:E7:0D:34:68:34:F7:52:3F:61:04:FB:1E:C6:A8:B0:DE:33:9D:DA
Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
Certificate issuer:       /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E
Certificate serial:       7C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
Manifest number:          7B
Signing time:             Sat 19 Jul 2025 06:58:27 +0000
Manifest this update:     Sat 19 Jul 2025 06:58:27 +0000
Manifest next update:     Sat 26 Jul 2025 06:58:27 +0000
Files and hashes:         1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: 8SZSqghu/Es9XlckQVmYYncVi2msJaKXJSPcEi+SZ5c=)
                          2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl
                          rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 06:58:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 124 (0x7c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E
        Validity
            Not Before: Jul 19 06:58:27 2025 GMT
            Not After : Jul 26 06:58:27 2025 GMT
        Subject: CN=687b4213-2300
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:3e:88:ff:00:3b:4f:d1:dd:c9:54:ed:40:71:
                    1e:b7:5b:06:63:2e:90:a1:48:1b:37:69:19:b7:75:
                    3d:7f:1a:18:03:63:29:96:1b:04:40:f4:2f:5c:14:
                    6e:28:d6:ed:b5:28:d9:70:a9:a7:8b:18:00:d8:2e:
                    f7:5f:bc:17:b7:eb:d4:b7:77:3c:2b:d6:47:46:24:
                    ee:91:7a:51:ec:b7:0d:a8:3d:31:38:56:be:39:2a:
                    ba:4f:46:0c:6e:1c:db:ad:8d:55:9f:65:39:6b:ce:
                    76:76:87:4e:9f:5d:e7:a6:50:e6:46:05:8a:4b:6e:
                    ae:d9:02:59:b9:d3:6b:2e:40:8a:80:49:4d:f0:30:
                    e1:0c:cb:ac:ab:97:2b:20:75:56:89:7d:60:f2:94:
                    cc:ed:83:ec:a8:c5:7e:ea:4d:97:b3:74:47:ce:ff:
                    ce:4b:6e:bd:c7:86:fe:1d:25:a9:f5:96:e9:1c:b2:
                    99:ba:d7:ed:9e:86:b9:ce:3b:bd:10:5b:ed:7b:e8:
                    46:09:3b:3e:fd:96:bb:c4:15:bc:86:77:c9:7a:8b:
                    9d:66:b3:52:e3:7a:e6:8b:50:74:b1:7f:4e:6c:42:
                    dc:32:25:21:61:7d:0c:61:f9:2a:db:6d:e1:83:94:
                    78:91:b9:64:ff:32:c9:4f:2f:69:ae:c0:49:b0:c4:
                    b6:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:E7:0D:34:68:34:F7:52:3F:61:04:FB:1E:C6:A8:B0:DE:33:9D:DA
            X509v3 Authority Key Identifier:
                keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:66:83:03:33:99:7d:75:b5:ee:6b:3e:71:28:c6:44:06:a6:
         37:b2:8e:3e:15:a2:e2:33:c7:02:db:20:f1:e0:60:76:66:76:
         a5:95:0c:aa:42:e2:43:49:92:cd:51:f0:2f:ee:29:51:b2:f2:
         33:1f:45:1a:dc:ea:dd:18:0a:8a:a4:76:30:24:a7:0e:5e:ae:
         8a:94:ba:af:a5:96:de:6d:7c:c1:ed:47:20:6f:c1:2a:e8:be:
         ab:33:dd:84:39:0b:56:e7:41:fb:ae:18:fc:41:a7:d2:a7:5e:
         11:34:60:8d:fd:ab:3b:c4:4a:49:61:92:68:86:ac:56:c7:c1:
         40:9a:b1:21:90:9c:54:40:e2:67:e9:a7:67:c8:46:bc:81:48:
         6d:49:e4:dc:9b:d4:09:37:04:f7:4b:37:54:26:0b:4a:6d:9a:
         dc:36:09:9e:bf:db:f6:22:d8:66:14:0a:d6:2d:7d:04:bb:e4:
         05:85:0f:55:84:7c:80:13:3f:5b:6f:bc:2e:d8:4c:2b:92:98:
         60:a7:ae:96:ad:f1:39:ba:d4:b3:5f:0c:99:dd:7e:bb:86:cc:
         8f:2e:c7:4d:c3:ac:b9:3e:90:38:96:0d:26:ea:ec:32:45:37:
         17:2d:a2:2c:73:bb:cf:b8:36:71:b6:74:52:66:f1:b7:2f:54:
         d7:e0:5d:2a
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF
NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5
QkEyRTYwRTAeFw0yNTA3MTkwNjU4MjdaFw0yNTA3MjYwNjU4MjdaMBgxFjAUBgNV
BAMTDTY4N2I0MjEzLTIzMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC5Poj/ADtP0d3JVO1AcR63WwZjLpChSBs3aRm3dT1/GhgDYymWGwRA9C9cFG4o
1u21KNlwqaeLGADYLvdfvBe369S3dzwr1kdGJO6RelHstw2oPTE4Vr45KrpPRgxu
HNutjVWfZTlrznZ2h06fXeemUOZGBYpLbq7ZAlm502suQIqASU3wMOEMy6yrlysg
dVaJfWDylMztg+yoxX7qTZezdEfO/85Lbr3Hhv4dJan1lukcspm61+2ehrnOO70Q
W+176EYJOz79lrvEFbyGd8l6i51ms1LjeuaLUHSxf05sQtwyJSFhfQxh+SrbbeGD
lHiRuWT/MslPL2muwEmwxLZvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUw+cNNGg0
91I/YQT7HsaosN4zndowHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx
OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn
NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1
MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhK
ajg4TlRYNGcyaEp1aTVnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBALhmgwMzmX11te5rPnEoxkQGpjeyjj4VouIzxwLbIPHgYHZmdqWVDKpC
4kNJks1R8C/uKVGy8jMfRRrc6t0YCoqkdjAkpw5eroqUuq+llt5tfMHtRyBvwSro
vqsz3YQ5C1bnQfuuGPxBp9KnXhE0YI39qzvESklhkmiGrFbHwUCasSGQnFRA4mfp
p2fIRryBSG1J5Nyb1Ak3BPdLN1QmC0ptmtw2CZ6/2/Yi2GYUCtYtfQS75AWFD1WE
fIATP1tvvC7YTCuSmGCnrpat8Tm61LNfDJndfruGzI8ux03DrLk+kDiWDSbq7DJF
Nxctoixzu8+4NnG2dFJm8bcvVNfgXSo=
-----END CERTIFICATE-----
Generated at Sun Jul 20 11:40:26 2025 by rpki-client