Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
File:                     9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json)
Hash identifier:          +pSLooESSFKXQKU632Ql6B40SwQg+CDs3cIjgOsZ+Z8=
Subject key identifier:   D7:0C:59:EF:61:8C:85:F7:67:64:A4:2B:CA:33:3F:7B:AC:CB:13:EE
Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10
Certificate issuer:       /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
Certificate serial:       088A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
Manifest number:          13E8
Signing time:             Sun 20 Jul 2025 19:09:00 +0000
Manifest this update:     Sun 20 Jul 2025 19:09:00 +0000
Manifest next update:     Sun 27 Jul 2025 19:09:00 +0000
Files and hashes:         1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: xLLrpL+a5Ln4G55WasDc3Wq6znE6FV+FKD0rzHCOhrM=)
                          2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=)
                          3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl
                          rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 19:08:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2186 (0x88a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
        Validity
            Not Before: Jul 20 19:09:00 2025 GMT
            Not After : Jul 27 19:09:00 2025 GMT
        Subject: CN=687d3ecc-4a32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:5a:9f:be:11:c2:18:72:fb:bd:cf:3e:ef:98:
                    07:48:c3:23:c7:cc:ff:f1:dd:e3:38:8c:3c:79:4d:
                    8b:bb:b4:34:fc:af:a4:b2:85:0d:91:bd:1e:01:f4:
                    67:bc:96:2b:9f:75:3a:0d:98:70:16:76:28:1e:54:
                    28:70:13:c7:a3:8c:bc:d6:af:e6:bd:f6:94:fe:05:
                    34:c5:5a:77:b9:10:8b:da:96:c3:49:85:96:61:86:
                    9f:04:4c:45:0e:f6:e0:ca:b7:c8:44:c5:d7:a3:af:
                    6f:aa:30:81:c4:9b:f2:0d:08:a8:c4:59:81:4d:f4:
                    57:ef:bc:39:bc:1d:8d:1b:cd:b4:6d:0e:4e:5b:1b:
                    3f:df:98:ba:2e:e4:73:3c:8a:95:2f:9e:c4:a3:5f:
                    88:1b:19:73:9c:fb:f5:ba:95:87:c8:07:c8:97:d5:
                    d6:16:a2:36:d1:ce:c5:c1:dc:79:0b:33:69:a6:53:
                    46:e1:b4:dc:eb:35:41:49:a0:7d:38:ae:fa:27:ed:
                    f5:b5:dc:90:b0:15:59:cc:24:d4:2a:95:3f:81:21:
                    0c:50:73:a8:1b:5c:16:dd:ab:94:a5:b3:d9:ce:e3:
                    dc:0c:60:53:92:67:42:d0:45:29:bf:b8:87:34:60:
                    33:aa:0d:70:50:b5:58:c8:74:5d:da:2c:37:c3:7b:
                    ba:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:0C:59:EF:61:8C:85:F7:67:64:A4:2B:CA:33:3F:7B:AC:CB:13:EE
            X509v3 Authority Key Identifier:
                keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:bb:32:c0:b9:9f:64:0e:a1:39:ed:0b:3f:ea:a9:a7:30:88:
         1a:d6:32:88:24:f5:06:3a:00:83:0a:e4:fd:85:eb:8c:e7:1d:
         3d:64:76:44:3e:b3:dc:20:98:d8:4b:a7:a3:8b:08:8e:b5:41:
         4e:cd:1d:91:16:31:8a:0f:3c:c5:4c:35:ad:36:e0:0e:b8:09:
         b3:b7:e9:64:d6:a6:6d:e1:eb:4c:ff:f1:b8:bc:c3:4b:39:db:
         89:d5:1f:ba:58:b4:ad:5d:ff:0c:48:df:ab:a1:90:00:c0:99:
         85:ea:0e:8b:02:aa:46:ce:de:99:85:21:20:c9:07:a5:b9:ae:
         d8:ef:c8:d8:b3:45:49:02:b4:8c:9d:04:e0:6c:e8:83:db:32:
         97:fe:f5:80:c4:9b:ab:8f:b6:c7:32:db:18:79:3e:84:95:cc:
         96:60:a7:b0:f9:6e:46:fa:53:e4:67:de:7f:4d:4f:d0:32:19:
         87:b0:ac:fd:ad:d6:e6:4b:2f:e9:19:8b:af:23:de:a7:91:c4:
         34:d5:4a:53:7c:2f:00:ee:6b:02:a6:a2:5d:30:2a:8c:0b:0f:
         09:65:74:82:d1:c2:a2:16:43:88:d6:6a:56:0c:74:a4:40:ff:
         87:b7:6c:23:4d:13:d3:b6:81:84:4d:d4:2f:dc:d5:4c:41:07:
         16:f7:10:5d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4
M0QwMUJCMTAwHhcNMjUwNzIwMTkwOTAwWhcNMjUwNzI3MTkwOTAwWjAYMRYwFAYD
VQQDEw02ODdkM2VjYy00YTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAplqfvhHCGHL7vc8+75gHSMMjx8z/8d3jOIw8eU2Lu7Q0/K+ksoUNkb0eAfRn
vJYrn3U6DZhwFnYoHlQocBPHo4y81q/mvfaU/gU0xVp3uRCL2pbDSYWWYYafBExF
DvbgyrfIRMXXo69vqjCBxJvyDQioxFmBTfRX77w5vB2NG820bQ5OWxs/35i6LuRz
PIqVL57Eo1+IGxlznPv1upWHyAfIl9XWFqI20c7Fwdx5CzNpplNG4bTc6zVBSaB9
OK76J+31tdyQsBVZzCTUKpU/gSEMUHOoG1wW3auUpbPZzuPcDGBTkmdC0EUpv7iH
NGAzqg1wULVYyHRd2iw3w3u66wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcMWe9h
jIX3Z2SkK8ozP3usyxPuMB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy
RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1
eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j
dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBEuzLAuZ9kDqE57Qs/6qmnMIga1jKIJPUGOgCDCuT9heuM5x09ZHZE
PrPcIJjYS6ejiwiOtUFOzR2RFjGKDzzFTDWtNuAOuAmzt+lk1qZt4etM//G4vMNL
OduJ1R+6WLStXf8MSN+roZAAwJmF6g6LAqpGzt6ZhSEgyQelua7Y78jYs0VJArSM
nQTgbOiD2zKX/vWAxJurj7bHMtsYeT6ElcyWYKew+W5G+lPkZ95/TU/QMhmHsKz9
rdbmSy/pGYuvI96nkcQ01UpTfC8A7msCpqJdMCqMCw8JZXSC0cKiFkOI1mpWDHSk
QP+Ht2wjTRPTtoGETdQv3NVMQQcW9xBd
-----END CERTIFICATE-----
Generated at Tue Jul 22 12:32:01 2025 by rpki-client