Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft
File:                     H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json)
Hash identifier:          yAV2XNQbO2A6OS2V8hlfM+t9fRE0XvI244cQUnkJ1DU=
Subject key identifier:   69:2D:69:83:FA:C4:15:92:06:7E:56:A2:E7:C8:7E:AA:20:62:82:1D
Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C
Certificate issuer:       /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C
Certificate serial:       08ED
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft
Manifest number:          08DF
Signing time:             Sun 08 Jun 2025 20:09:24 +0000
Manifest this update:     Sun 08 Jun 2025 20:09:24 +0000
Manifest next update:     Sun 15 Jun 2025 20:09:24 +0000
Files and hashes:         1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: dZJMa1rlXSyZBQCCtx4OUwVVqMfkA1llweQanMVVzUU=)
                          2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl
                          rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 20:09:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2285 (0x8ed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C
        Validity
            Not Before: Jun  8 20:09:24 2025 GMT
            Not After : Jun 15 20:09:24 2025 GMT
        Subject: CN=6845edf4-716b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:ff:e8:08:a7:17:69:03:c8:1d:20:9f:c6:fb:
                    0f:04:10:6b:db:46:56:2c:12:82:73:98:5c:c2:80:
                    f8:a0:b6:35:04:ac:62:f0:38:7c:a3:2b:ae:e2:97:
                    03:8a:2f:c9:73:fe:ad:5d:a4:b1:ec:54:5c:91:71:
                    2b:5b:6a:96:0c:14:e0:cb:a0:56:bb:0e:6b:5a:54:
                    f0:5c:37:f2:9b:a3:fa:3f:03:c8:fa:f6:0e:41:b1:
                    c3:53:ef:cb:1d:18:80:27:bc:d9:60:71:cf:ca:1a:
                    4b:8d:3a:0f:9b:56:bf:e5:dd:57:d4:43:f6:69:c1:
                    57:d5:f4:9d:0a:bc:ac:4d:6f:ff:81:e7:f7:14:45:
                    da:f2:55:49:e0:c5:24:5a:36:cf:e7:1d:b0:94:4d:
                    62:20:2b:89:3a:6d:55:6b:2d:94:e3:75:94:7d:e2:
                    39:c6:64:0e:49:04:46:8b:4d:47:f9:4a:70:ed:ea:
                    55:11:27:65:18:61:a9:56:7f:82:2d:6b:8e:8a:0d:
                    db:9f:ac:da:51:bc:da:1d:d1:bd:53:eb:20:0f:56:
                    35:fd:98:4b:88:4b:d5:cd:1e:0c:f9:b8:dc:25:01:
                    60:50:67:d0:d9:52:3d:05:45:ab:a3:92:13:fd:10:
                    e2:96:c3:40:54:9c:03:6b:85:53:6b:ec:58:24:fd:
                    10:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:2D:69:83:FA:C4:15:92:06:7E:56:A2:E7:C8:7E:AA:20:62:82:1D
            X509v3 Authority Key Identifier:
                keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:82:20:90:fc:ad:2a:35:36:bf:ad:1e:34:5f:10:ca:ee:c4:
         e7:2b:51:7d:3c:fa:63:d7:0f:66:85:ea:5b:03:03:ad:10:17:
         2e:e0:5a:2f:21:6a:cd:95:04:ee:f5:0d:d7:fd:35:da:ec:3e:
         98:3f:1a:2a:4c:72:ed:5c:f6:0e:1c:ca:ae:6a:c1:f5:98:c3:
         68:84:b5:bd:f0:c7:15:53:81:3d:91:4c:0d:5c:7b:a4:90:45:
         c8:bc:56:6a:21:c9:fa:08:52:07:f6:0f:5a:1a:62:37:03:a5:
         3d:7d:b4:7d:90:41:b2:2a:a6:12:6e:9f:e5:96:f2:74:21:ca:
         3e:76:a1:4f:25:45:96:64:33:f3:9f:f9:a0:5f:1e:e7:b3:70:
         00:4c:47:0e:f0:bd:62:61:7e:e2:aa:e4:e0:e4:16:41:96:7d:
         00:49:4f:6b:e2:cc:40:ce:55:b0:0d:4b:e4:96:6d:ad:2c:00:
         0f:39:27:79:dc:2f:25:2f:5b:73:63:82:94:f4:1b:70:2a:26:
         40:59:99:af:fb:d7:a1:3c:98:f6:20:10:03:28:74:24:be:7c:
         f8:a1:f0:3a:73:30:c9:50:49:13:32:eb:59:91:e6:f9:13:79:
         42:3d:03:fa:4d:36:a6:5e:d1:ed:0c:45:ae:9f:23:1f:1e:5b:
         c1:66:a5:c1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG
NjhBREMwMkMwHhcNMjUwNjA4MjAwOTI0WhcNMjUwNjE1MjAwOTI0WjAYMRYwFAYD
VQQDEw02ODQ1ZWRmNC03MTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3//oCKcXaQPIHSCfxvsPBBBr20ZWLBKCc5hcwoD4oLY1BKxi8Dh8oyuu4pcD
ii/Jc/6tXaSx7FRckXErW2qWDBTgy6BWuw5rWlTwXDfym6P6PwPI+vYOQbHDU+/L
HRiAJ7zZYHHPyhpLjToPm1a/5d1X1EP2acFX1fSdCrysTW//gef3FEXa8lVJ4MUk
WjbP5x2wlE1iICuJOm1Vay2U43WUfeI5xmQOSQRGi01H+Upw7epVESdlGGGpVn+C
LWuOig3bn6zaUbzaHdG9U+sgD1Y1/ZhLiEvVzR4M+bjcJQFgUGfQ2VI9BUWro5IT
/RDilsNAVJwDa4VTa+xYJP0QkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGktaYP6
xBWSBn5WoufIfqogYoIdMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw
RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3
Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx
SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCOgiCQ/K0qNTa/rR40XxDK7sTnK1F9PPpj1w9mhepbAwOtEBcu4Fov
IWrNlQTu9Q3X/TXa7D6YPxoqTHLtXPYOHMquasH1mMNohLW98McVU4E9kUwNXHuk
kEXIvFZqIcn6CFIH9g9aGmI3A6U9fbR9kEGyKqYSbp/llvJ0Ico+dqFPJUWWZDPz
n/mgXx7ns3AATEcO8L1iYX7iquTg5BZBln0ASU9r4sxAzlWwDUvklm2tLAAPOSd5
3C8lL1tzY4KU9BtwKiZAWZmv+9ehPJj2IBADKHQkvnz4ofA6czDJUEkTMutZkeb5
E3lCPQP6TTamXtHtDEWunyMfHlvBZqXB
-----END CERTIFICATE-----
Generated at Tue Jun 10 21:52:55 2025 by rpki-client