Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
File:                     R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json)
Hash identifier:          iv87qQryg/o06DeF0lo10KHzKjIbtSx83PyKHW/jBhk=
Subject key identifier:   8F:B7:A5:96:2D:E6:23:43:22:E2:03:5B:01:08:C0:D3:A1:8A:E9:A2
Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B
Certificate issuer:       /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B
Certificate serial:       0273
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
Manifest number:          026F
Signing time:             Tue 01 Jul 2025 02:27:06 +0000
Manifest this update:     Tue 01 Jul 2025 02:27:06 +0000
Manifest next update:     Tue 08 Jul 2025 02:27:06 +0000
Files and hashes:         1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: pet+6G85SMYyILvK/EMbXSItPyKH/ZEU5O0Bt0Jovdc=)
                          2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: Zl1OdprsSbZO6kJ93156dFn5LZrbdumG7KQVdLYJ1W0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl
                          rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 08 Jul 2025 02:27:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 627 (0x273)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B
        Validity
            Not Before: Jul  1 02:27:06 2025 GMT
            Not After : Jul  8 02:27:06 2025 GMT
        Subject: CN=6863477a-e0ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:f8:f7:1c:bc:00:8c:95:62:b4:4b:f9:7e:4d:
                    cf:2a:7e:35:68:59:c8:b6:22:a7:8a:bd:cd:f0:1a:
                    68:b0:4d:9a:0c:9c:d0:f8:35:5b:6c:98:13:53:f3:
                    9a:69:59:b5:29:41:88:f3:1d:d2:1f:5f:1f:96:c8:
                    6c:83:95:c2:0c:e9:2d:1c:49:f7:4a:75:16:63:a9:
                    88:53:56:b3:79:83:23:5b:ce:35:c3:37:de:77:21:
                    95:18:e7:74:50:ba:6c:d7:42:76:6d:1a:1c:fc:94:
                    2e:07:3e:85:e6:b0:1b:43:15:ff:e4:dd:7c:27:f9:
                    1d:4f:be:bd:64:0c:c6:02:92:c5:a7:64:1f:c0:e9:
                    f9:87:60:cd:fe:52:3e:1d:12:8c:a0:bf:17:d8:74:
                    78:51:db:19:2e:ea:0f:b3:fe:8a:e1:57:b0:1d:b9:
                    d3:ed:d4:87:a2:f8:68:b0:0a:05:8f:2d:4b:7d:75:
                    75:38:bd:da:fd:0c:13:a5:9d:d0:ed:c0:90:79:10:
                    c6:c8:bc:fa:99:c1:ed:b7:61:c6:2d:71:e1:5d:63:
                    2a:83:2d:7a:df:67:97:db:18:2a:1e:c9:3c:60:f0:
                    5d:49:32:a3:e2:fb:4c:1b:1e:e5:66:21:53:80:9d:
                    ab:ae:6a:06:ff:08:59:49:77:7b:0e:df:76:b9:cb:
                    42:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:B7:A5:96:2D:E6:23:43:22:E2:03:5B:01:08:C0:D3:A1:8A:E9:A2
            X509v3 Authority Key Identifier:
                keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:a6:2e:c0:07:22:69:1c:68:29:d3:35:f9:a4:4d:97:e5:85:
         0f:74:2c:8d:45:d8:86:96:0a:23:1f:f6:a2:b8:a6:50:e9:17:
         49:17:4f:7d:30:90:f7:f9:8a:cf:43:51:87:51:b5:20:b0:ef:
         72:11:56:19:37:60:53:3d:cc:dc:d2:54:8a:74:54:ad:8f:cb:
         f1:5e:41:27:13:d8:f2:43:81:ac:82:28:41:6a:37:f1:e0:03:
         09:55:2e:dc:a1:ec:5e:17:2c:6f:93:cf:da:c8:87:40:1c:f2:
         0c:62:a6:e3:02:40:ab:8c:ef:a7:22:67:77:1e:9c:16:ed:81:
         ea:c3:70:3f:64:b7:7b:f2:86:b9:ef:61:57:90:6e:01:75:52:
         16:3b:17:d8:78:c6:18:87:02:d8:6f:de:69:fa:5d:8d:e5:96:
         df:c3:1f:67:c8:34:ca:ef:6b:5a:1f:61:bc:27:1c:a5:72:89:
         85:0a:a7:62:b2:4c:c5:a8:4c:96:b2:97:50:da:54:ed:a7:2c:
         78:e2:a6:17:e8:34:b7:ad:c6:f2:ab:74:b5:03:66:55:5e:23:
         b1:83:a5:7f:f1:5c:c9:d5:56:8b:9a:31:ec:ca:9d:c4:53:a6:
         9a:99:fb:bf:d1:4b:3d:1c:04:26:14:67:73:ab:82:5c:64:64:
         ec:39:25:d4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx
NDNBNTIzNUIwHhcNMjUwNzAxMDIyNzA2WhcNMjUwNzA4MDIyNzA2WjAYMRYwFAYD
VQQDEw02ODYzNDc3YS1lMGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0vj3HLwAjJVitEv5fk3PKn41aFnItiKnir3N8BposE2aDJzQ+DVbbJgTU/Oa
aVm1KUGI8x3SH18flshsg5XCDOktHEn3SnUWY6mIU1azeYMjW841wzfedyGVGOd0
ULps10J2bRoc/JQuBz6F5rAbQxX/5N18J/kdT769ZAzGApLFp2QfwOn5h2DN/lI+
HRKMoL8X2HR4UdsZLuoPs/6K4VewHbnT7dSHovhosAoFjy1LfXV1OL3a/QwTpZ3Q
7cCQeRDGyLz6mcHtt2HGLXHhXWMqgy1632eX2xgqHsk8YPBdSTKj4vtMGx7lZiFT
gJ2rrmoG/whZSXd7Dt92uctCQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+3pZYt
5iNDIuIDWwEIwNOhiumiMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3
QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ
MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm
Zm5FblVmNTBmNklVT2xJMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDDpi7AByJpHGgp0zX5pE2X5YUPdCyNRdiGlgojH/aiuKZQ6RdJF099
MJD3+YrPQ1GHUbUgsO9yEVYZN2BTPczc0lSKdFStj8vxXkEnE9jyQ4GsgihBajfx
4AMJVS7coexeFyxvk8/ayIdAHPIMYqbjAkCrjO+nImd3HpwW7YHqw3A/ZLd78oa5
72FXkG4BdVIWOxfYeMYYhwLYb95p+l2N5Zbfwx9nyDTK72taH2G8JxylcomFCqdi
skzFqEyWspdQ2lTtpyx44qYX6DS3rcbyq3S1A2ZVXiOxg6V/8VzJ1VaLmjHsyp3E
U6aamfu/0Us9HAQmFGdzq4JcZGTsOSXU
-----END CERTIFICATE-----
Generated at Wed Jul 2 02:01:55 2025 by rpki-client