Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft
File:                     HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json)
Hash identifier:          w2Ujy7zTFXQ0BL9NH8DEhPb/Lnb5jUzOHYPEm/F5JIc=
Subject key identifier:   E3:8E:AE:F6:13:9F:CE:E4:ED:6A:16:3A:74:3F:57:26:C6:43:2B:2B
Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33
Certificate issuer:       /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233
Certificate serial:       1136
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft
Manifest number:          1948
Signing time:             Wed 20 Aug 2025 17:21:06 +0000
Manifest this update:     Wed 20 Aug 2025 17:21:06 +0000
Manifest next update:     Wed 27 Aug 2025 17:21:06 +0000
Files and hashes:         1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: ztxKtNyGbMLqJKkemYWoLaiN87gozw+wxB+DKpOokz0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl
                          rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 27 Aug 2025 17:21:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4406 (0x1136)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233
        Validity
            Not Before: Aug 20 17:21:06 2025 GMT
            Not After : Aug 27 17:21:06 2025 GMT
        Subject: CN=68a60402-58e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:8c:e0:5a:18:71:17:22:47:35:60:39:10:8a:
                    0b:23:73:a7:9c:17:d9:8a:e2:4b:1f:c0:4c:06:4c:
                    9c:db:c2:f8:c7:c1:79:c2:98:69:f4:4b:de:fa:38:
                    7b:e8:6f:02:b1:76:fb:49:81:8d:00:ba:b3:1d:8e:
                    5f:fb:8c:5a:62:fc:72:81:0a:0f:36:7e:44:fb:a1:
                    ed:ab:fe:7d:3a:d6:8e:81:78:30:4f:7e:a9:3a:b3:
                    79:d3:ea:48:10:01:aa:16:1e:11:f2:4d:84:ef:b5:
                    df:66:f2:ba:8b:a9:5b:04:7c:b0:95:21:d5:5a:57:
                    dc:a6:86:c3:a7:73:65:c5:24:c2:bd:1e:17:be:2c:
                    bf:cc:49:77:12:7a:85:5a:26:7d:1e:7e:e1:70:e9:
                    23:b8:72:fb:43:9c:b7:d7:83:ac:af:e0:75:90:8b:
                    c3:b0:d1:24:8c:9d:52:8d:7c:09:ff:af:44:ad:67:
                    d6:39:fe:86:38:be:c5:16:65:65:22:50:b2:ae:b5:
                    4e:34:18:9c:a6:4e:1c:a3:ee:2f:2b:90:f3:53:96:
                    1b:42:1e:b6:3e:26:6a:9a:5a:a5:61:76:1b:e9:74:
                    94:9c:cf:e7:35:bd:3e:d3:03:39:14:5e:62:8d:51:
                    91:61:0b:6f:83:e1:e0:a1:27:37:77:96:91:c2:82:
                    d6:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:8E:AE:F6:13:9F:CE:E4:ED:6A:16:3A:74:3F:57:26:C6:43:2B:2B
            X509v3 Authority Key Identifier:
                keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:be:dc:88:c4:b1:fd:8c:37:1e:a3:7f:a1:a8:ad:bc:03:ae:
         1d:64:55:f8:22:6a:6e:31:b5:34:32:3e:65:56:18:4f:51:59:
         df:59:92:82:33:e0:c5:6f:58:cc:77:f2:d8:77:6e:13:84:90:
         9a:51:46:d0:a2:f8:27:3a:99:8e:be:27:d8:a5:57:76:d7:78:
         54:77:a8:9e:4d:9e:14:05:67:c6:d0:ef:fe:ff:69:0d:f7:6f:
         30:5f:e2:7c:4b:6c:11:59:4f:4c:60:a1:dc:18:59:06:ed:e6:
         fc:5a:ca:40:d5:a1:1e:ad:8a:4d:ae:83:38:5c:36:ca:f7:b7:
         cf:92:72:ed:10:bd:92:34:ce:20:b1:4c:fa:0c:c2:ac:9b:72:
         4f:f7:cf:61:7f:56:79:18:01:69:0d:fe:f9:a3:a6:bf:8f:de:
         fb:eb:d1:ea:51:bd:d5:d0:7a:23:fe:d0:f8:c6:52:d6:02:3a:
         25:f7:4e:74:1f:fd:47:1e:36:24:c8:7a:40:8a:c6:0a:ab:01:
         f9:dc:1a:cc:60:51:56:7e:e3:71:bf:b3:be:4c:24:6e:d0:ff:
         2b:96:c8:4d:ce:ac:cf:c1:ef:5e:79:44:e1:ee:0f:f4:87:60:
         ed:ea:e6:af:f8:28:e4:71:96:0e:aa:d8:fb:dc:ba:30:47:96:
         7d:bd:28:e6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICETYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx
N0JFRTgyMzMwHhcNMjUwODIwMTcyMTA2WhcNMjUwODI3MTcyMTA2WjAYMRYwFAYD
VQQDEw02OGE2MDQwMi01OGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA34zgWhhxFyJHNWA5EIoLI3OnnBfZiuJLH8BMBkyc28L4x8F5wphp9Eve+jh7
6G8CsXb7SYGNALqzHY5f+4xaYvxygQoPNn5E+6Htq/59OtaOgXgwT36pOrN50+pI
EAGqFh4R8k2E77XfZvK6i6lbBHywlSHVWlfcpobDp3NlxSTCvR4Xviy/zEl3EnqF
WiZ9Hn7hcOkjuHL7Q5y314Osr+B1kIvDsNEkjJ1SjXwJ/69ErWfWOf6GOL7FFmVl
IlCyrrVONBicpk4co+4vK5DzU5YbQh62PiZqmlqlYXYb6XSUnM/nNb0+0wM5FF5i
jVGRYQtvg+HgoSc3d5aRwoLWJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOOrvYT
n87k7WoWOnQ/VybGQysrMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz
RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn
ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT
RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAavtyIxLH9jDceo3+hqK28A64dZFX4ImpuMbU0Mj5lVhhPUVnfWZKC
M+DFb1jMd/LYd24ThJCaUUbQovgnOpmOvifYpVd213hUd6ieTZ4UBWfG0O/+/2kN
928wX+J8S2wRWU9MYKHcGFkG7eb8WspA1aEerYpNroM4XDbK97fPknLtEL2SNM4g
sUz6DMKsm3JP989hf1Z5GAFpDf75o6a/j97769HqUb3V0Hoj/tD4xlLWAjol9050
H/1HHjYkyHpAisYKqwH53BrMYFFWfuNxv7O+TCRu0P8rlshNzqzPwe9eeUTh7g/0
h2Dt6uav+CjkcZYOqtj73LowR5Z9vSjm
-----END CERTIFICATE-----
Generated at Fri Aug 22 16:22:28 2025 by rpki-client