Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
File:                     HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json)
Hash identifier:          Tidh2S8uehhYlYVud3QRnOBmiOi6HYS3bAKv8XMIBM4=
Subject key identifier:   7E:DB:03:DB:1B:AE:CD:5B:0A:B9:5D:06:53:32:BB:AD:C3:6F:BA:36
Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36
Certificate issuer:       /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636
Certificate serial:       07E8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
Manifest number:          07D5
Signing time:             Sat 14 Jun 2025 20:52:52 +0000
Manifest this update:     Sat 14 Jun 2025 20:52:52 +0000
Manifest next update:     Sat 21 Jun 2025 20:52:52 +0000
Files and hashes:         1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: tPSVQPBa/5FTi8aEIC7owYfZGfnFnHwV9FH7BShg3+I=)
                          2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: xYIcgS1Zp8wD+PJFBZBjfV7mWptLx74W20qrbaZleiE=)
                          3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: vzmf8XnwJutTzSkLhDDX6poVkZL6XtaY1a0fPCQC+dY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl
                          rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 21 Jun 2025 18:49:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2024 (0x7e8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636
        Validity
            Not Before: Jun 14 20:52:52 2025 GMT
            Not After : Jun 21 20:52:52 2025 GMT
        Subject: CN=684de124-4991
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:ed:83:af:9c:d2:49:30:53:5f:9e:4c:9e:0c:
                    36:63:fa:ad:fb:d9:7d:56:23:b3:e1:79:0f:ba:af:
                    1b:f8:76:4a:72:d1:c6:d9:f9:0b:2d:13:6e:41:da:
                    5a:8f:e4:9b:96:a5:1a:ff:a9:b3:e7:d2:4c:8f:81:
                    8a:93:d6:7b:5e:9e:03:dc:93:aa:af:c5:bb:6b:60:
                    0d:26:f5:0d:e1:26:68:86:ae:6e:58:63:f3:2f:76:
                    48:3b:b0:f5:6e:f3:10:ad:c8:5f:21:9e:5a:d8:3a:
                    4a:08:1a:26:80:ba:95:59:9f:4c:5f:0c:b1:1a:42:
                    0d:40:0a:24:db:d2:52:86:7f:c4:39:50:c1:a7:02:
                    14:44:8b:70:ee:eb:17:e7:5a:cd:53:9c:d3:09:57:
                    b8:76:ca:1c:35:da:33:13:30:7a:92:78:0d:2a:90:
                    6c:44:4e:94:53:09:a4:59:c6:63:3c:18:08:c4:39:
                    9f:22:50:7f:cc:ae:1a:87:6a:83:5a:d3:fa:bf:1e:
                    69:e3:0b:0c:e1:61:e2:6d:dc:61:f9:7d:94:83:da:
                    c7:63:43:d8:e2:87:c0:e6:4d:b8:eb:65:c6:12:4c:
                    37:eb:99:b1:e1:c0:7c:1a:f9:c7:cb:df:6c:a0:5a:
                    9a:30:e2:61:ae:44:31:ea:6d:bf:81:c6:4a:71:7d:
                    77:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:DB:03:DB:1B:AE:CD:5B:0A:B9:5D:06:53:32:BB:AD:C3:6F:BA:36
            X509v3 Authority Key Identifier:
                keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:f3:5f:a7:e7:3d:e3:e9:5d:49:ca:b0:44:0b:27:0c:b2:b4:
         0d:56:fc:ee:b9:61:a3:2f:3b:f1:ea:56:71:55:9d:c0:b6:80:
         5c:0d:52:ba:61:4e:96:0e:b4:22:9c:2c:60:be:a4:10:e9:bc:
         c9:5e:e7:62:dc:fc:48:04:2c:88:0a:3a:2a:34:85:04:8c:4b:
         e2:2a:29:96:50:b1:b7:6f:a4:3f:db:a4:7c:15:5f:30:30:29:
         15:3e:b4:a7:34:b2:d1:7d:0e:98:af:bf:47:08:04:e2:fb:d8:
         cc:29:12:88:ea:20:5a:f2:53:48:07:3f:df:bd:a9:a0:6e:bd:
         8d:4f:c2:14:47:45:7b:a1:f1:03:c5:64:15:43:a1:6d:1c:48:
         c1:7c:f6:3b:11:0a:bc:bb:98:ee:0b:bb:e1:6c:27:06:50:91:
         99:34:22:30:35:95:eb:f1:d8:22:7b:17:f8:12:59:5d:f6:ce:
         70:23:a9:f3:b0:b4:33:da:d8:99:fb:91:31:fe:0b:63:c9:a6:
         35:2c:a4:38:bd:74:97:9c:c0:34:f7:a9:e1:a2:94:78:c6:9e:
         cd:11:4e:c1:a2:11:f9:73:00:e9:2e:6a:3d:15:77:a2:8f:f9:
         1b:4f:06:c5:14:b0:03:00:3f:26:e9:be:a2:54:45:bd:07:06:
         94:52:ee:62
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4
NzY4MUI2MzYwHhcNMjUwNjE0MjA1MjUyWhcNMjUwNjIxMjA1MjUyWjAYMRYwFAYD
VQQDEw02ODRkZTEyNC00OTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAte2Dr5zSSTBTX55Mngw2Y/qt+9l9ViOz4XkPuq8b+HZKctHG2fkLLRNuQdpa
j+SblqUa/6mz59JMj4GKk9Z7Xp4D3JOqr8W7a2ANJvUN4SZohq5uWGPzL3ZIO7D1
bvMQrchfIZ5a2DpKCBomgLqVWZ9MXwyxGkINQAok29JShn/EOVDBpwIURItw7usX
51rNU5zTCVe4dsocNdozEzB6kngNKpBsRE6UUwmkWcZjPBgIxDmfIlB/zK4ah2qD
WtP6vx5p4wsM4WHibdxh+X2Ug9rHY0PY4ofA5k2462XGEkw365mx4cB8GvnHy99s
oFqaMOJhrkQx6m2/gcZKcX13IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7bA9sb
rs1bCrldBlMyu63Db7o2MB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3
QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0
alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy
ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB/81+n5z3j6V1JyrBECycMsrQNVvzuuWGjLzvx6lZxVZ3AtoBcDVK6
YU6WDrQinCxgvqQQ6bzJXudi3PxIBCyICjoqNIUEjEviKimWULG3b6Q/26R8FV8w
MCkVPrSnNLLRfQ6Yr79HCATi+9jMKRKI6iBa8lNIBz/fvamgbr2NT8IUR0V7ofED
xWQVQ6FtHEjBfPY7EQq8u5juC7vhbCcGUJGZNCIwNZXr8dgiexf4Elld9s5wI6nz
sLQz2tiZ+5Ex/gtjyaY1LKQ4vXSXnMA096nhopR4xp7NEU7BohH5cwDpLmo9FXei
j/kbTwbFFLADAD8m6b6iVEW9BwaUUu5i
-----END CERTIFICATE-----
Generated at Sat Jun 14 23:14:31 2025 by rpki-client