Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft
File:                     _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json)
Hash identifier:          vvPWxePunn8Sv63QXC08mW7ECBhiWgXQK6giYmTj8Qk=
Subject key identifier:   60:35:2D:39:C2:4B:0C:A3:D7:A1:F0:23:6B:A8:C4:E1:FC:AB:A7:46
Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F
Certificate issuer:       /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F
Certificate serial:       2104
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft
Manifest number:          20F2
Signing time:             Thu 24 Jul 2025 16:02:31 +0000
Manifest this update:     Thu 24 Jul 2025 16:02:30 +0000
Manifest next update:     Thu 31 Jul 2025 16:02:30 +0000
Files and hashes:         1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: +CF2L3Wc28m+WLaMc+e3SUFX5SZSUsejq2hAN4ohIeE=)
                          2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl
                          rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 16:02:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8452 (0x2104)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F
        Validity
            Not Before: Jul 24 16:02:30 2025 GMT
            Not After : Jul 31 16:02:30 2025 GMT
        Subject: CN=68825917-9d6e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:84:3d:8d:69:4f:65:98:d0:c2:2f:62:34:23:
                    1e:a1:06:81:23:33:89:4f:c7:40:ec:41:ef:d0:5c:
                    91:29:5d:e0:2a:fe:7a:75:d5:23:0d:e8:21:00:19:
                    e7:24:65:2e:16:f8:f1:18:0a:0b:5f:1c:93:e1:39:
                    d7:7e:79:90:9f:b1:f0:3e:bd:a7:d2:a2:49:e3:73:
                    09:a4:e3:ab:93:cf:a1:24:bb:9d:1c:e1:9c:d4:a5:
                    31:40:e7:ed:1c:75:6b:a9:f6:2c:90:2a:e2:75:5c:
                    85:fb:65:95:d5:a6:a1:9d:d2:37:49:72:3e:8c:f8:
                    48:43:0a:81:46:21:0f:6e:3b:2b:fc:68:10:db:07:
                    b2:75:02:78:70:41:2c:11:a5:52:9a:8e:f9:7f:e0:
                    11:e7:c3:46:9e:c3:51:b6:c8:13:cd:f7:f1:88:12:
                    69:ea:fe:b5:51:2a:bd:a8:86:e4:aa:9a:e4:7a:be:
                    65:0d:e0:03:6c:6c:52:d7:44:9e:05:1b:78:40:f4:
                    35:e8:c0:76:b2:87:74:55:4a:74:76:99:3c:10:bb:
                    28:00:8f:21:2a:a4:0f:1c:c4:46:9d:21:44:0d:60:
                    78:87:a7:a8:ff:58:29:af:05:94:37:5a:a0:92:97:
                    fd:c5:64:3f:ee:a7:5e:db:fa:7f:f6:10:45:21:56:
                    17:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:35:2D:39:C2:4B:0C:A3:D7:A1:F0:23:6B:A8:C4:E1:FC:AB:A7:46
            X509v3 Authority Key Identifier:
                keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:ed:27:45:d0:2a:9b:16:cb:d4:25:04:5a:e4:72:ce:30:4a:
         b1:d7:28:a9:36:df:09:fc:11:5f:b8:04:c3:ae:ac:bf:0a:1c:
         fa:c0:47:1b:a6:42:7f:ee:b1:ff:1a:1f:bd:eb:19:18:12:bc:
         3a:ca:df:b4:ca:85:ab:3b:24:f1:1b:50:7d:63:23:f1:5e:6d:
         4c:6b:60:84:30:b8:79:c2:02:c5:4c:15:86:99:d5:13:a0:bd:
         d1:bb:b1:13:a6:f9:b8:47:eb:4c:fb:89:58:4e:95:df:df:7d:
         b4:67:84:e3:01:da:a9:f7:e5:5c:a9:bc:08:da:ab:39:ea:a3:
         52:11:e0:6e:bd:29:ff:0f:43:8d:92:8e:a2:86:20:42:13:fc:
         55:a6:5e:9b:d4:15:88:53:00:41:9e:d2:88:43:46:d6:ee:ce:
         c2:8d:46:72:8a:1d:a1:2a:76:a1:29:63:74:31:59:a4:75:34:
         24:a9:2c:f5:0a:18:2f:e8:d1:99:ef:7d:f4:10:86:e5:4d:b9:
         b7:ff:b3:4f:e0:9f:4d:58:5d:2d:67:85:4a:8e:e4:b9:d7:7c:
         bc:52:9c:b4:19:80:c0:53:f0:83:88:6e:32:0d:c8:e7:7a:71:
         89:9c:0e:e1:96:5c:19:e6:b1:73:02:68:55:01:46:28:b3:aa:
         81:1e:d7:77
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICIQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE
RkQyQkI2NEYwHhcNMjUwNzI0MTYwMjMwWhcNMjUwNzMxMTYwMjMwWjAYMRYwFAYD
VQQDEw02ODgyNTkxNy05ZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAt4Q9jWlPZZjQwi9iNCMeoQaBIzOJT8dA7EHv0FyRKV3gKv56ddUjDeghABnn
JGUuFvjxGAoLXxyT4TnXfnmQn7HwPr2n0qJJ43MJpOOrk8+hJLudHOGc1KUxQOft
HHVrqfYskCridVyF+2WV1aahndI3SXI+jPhIQwqBRiEPbjsr/GgQ2weydQJ4cEEs
EaVSmo75f+AR58NGnsNRtsgTzffxiBJp6v61USq9qIbkqprker5lDeADbGxS10Se
BRt4QPQ16MB2sod0VUp0dpk8ELsoAI8hKqQPHMRGnSFEDWB4h6eo/1gprwWUN1qg
kpf9xWQ/7qde2/p/9hBFIVYX5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGA1LTnC
Swyj16HwI2uoxOH8q6dGMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF
REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0
azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT
MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAD7SdF0CqbFsvUJQRa5HLOMEqx1yipNt8J/BFfuATDrqy/Chz6wEcb
pkJ/7rH/Gh+96xkYErw6yt+0yoWrOyTxG1B9YyPxXm1Ma2CEMLh5wgLFTBWGmdUT
oL3Ru7ETpvm4R+tM+4lYTpXf3320Z4TjAdqp9+VcqbwI2qs56qNSEeBuvSn/D0ON
ko6ihiBCE/xVpl6b1BWIUwBBntKIQ0bW7s7CjUZyih2hKnahKWN0MVmkdTQkqSz1
Chgv6NGZ7330EIblTbm3/7NP4J9NWF0tZ4VKjuS513y8Upy0GYDAU/CDiG4yDcjn
enGJnA7hllwZ5rFzAmhVAUYos6qBHtd3
-----END CERTIFICATE-----
Generated at Fri Jul 25 07:01:50 2025 by rpki-client