Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
File:                     XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json)
Hash identifier:          rQtMvW8UYw243yIoYpOiuaVQOcxQkSuN5Cvp1RRCXR8=
Subject key identifier:   59:F4:28:C7:80:7D:6D:EB:28:73:1A:55:C0:52:1F:97:C3:10:75:A6
Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C
Certificate issuer:       /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C
Certificate serial:       C7
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
Manifest number:          C5
Signing time:             Mon 21 Jul 2025 05:30:48 +0000
Manifest this update:     Mon 21 Jul 2025 05:30:48 +0000
Manifest next update:     Mon 28 Jul 2025 05:30:48 +0000
Files and hashes:         1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: je/yzoyt/SwmccxYvwCUMa9ERcZAG2KFlI+2gmVaVxo=)
                          2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl
                          rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 05:30:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 199 (0xc7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C
        Validity
            Not Before: Jul 21 05:30:48 2025 GMT
            Not After : Jul 28 05:30:48 2025 GMT
        Subject: CN=687dd088-89ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:e3:23:7f:08:5b:8c:d1:8d:3e:1a:e3:ca:c6:
                    4f:41:e9:a5:5d:71:44:02:74:65:37:c6:51:c8:c2:
                    ba:96:2e:75:30:f8:de:86:4a:25:bd:dc:8d:d8:8d:
                    71:1e:c5:f8:7e:d4:35:76:0e:01:d0:26:3d:0b:f0:
                    8f:ab:6c:b0:8e:13:04:59:a5:c5:f2:cc:e7:59:d2:
                    1a:c8:3d:14:28:99:cc:ed:1d:14:ee:30:f1:e1:92:
                    48:ef:5b:74:72:b4:75:ae:c8:83:b5:18:bd:ec:27:
                    68:98:6f:bb:98:17:c9:d0:1d:86:af:af:05:56:a2:
                    2d:16:24:5c:c1:e4:85:85:c7:45:bd:25:30:46:d9:
                    f3:1f:9b:8d:63:24:0e:82:00:24:9d:d8:2d:83:ea:
                    86:0f:88:ae:c3:ec:5e:92:cc:b5:15:1b:67:b3:ef:
                    6d:31:a4:b4:57:7d:7d:bc:c6:c9:5e:f6:95:da:a3:
                    fe:a3:7c:c9:00:c5:b9:4a:14:a4:b4:60:7a:c4:20:
                    6a:52:ed:8d:fa:cd:62:01:31:95:8a:48:a4:6d:f8:
                    f7:cc:ad:c8:24:ec:d4:e7:29:08:c3:4f:a3:e7:98:
                    0c:19:5d:de:0b:09:94:e3:2a:6f:bc:74:e6:51:98:
                    fa:dd:dc:9c:00:b9:42:9c:a9:d3:b3:a0:3e:74:e6:
                    1b:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:F4:28:C7:80:7D:6D:EB:28:73:1A:55:C0:52:1F:97:C3:10:75:A6
            X509v3 Authority Key Identifier:
                keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:41:ad:94:96:dd:a4:16:3e:f2:69:23:52:3b:b9:73:d3:45:
         c3:c6:34:8a:87:6e:c7:87:06:23:58:d1:4b:13:14:67:33:38:
         44:53:65:99:98:3d:83:21:03:cd:4a:c2:4b:d7:76:05:24:56:
         25:08:eb:76:b0:6f:29:c9:24:0b:09:19:db:60:94:4c:e1:46:
         a3:b8:f5:9b:34:a2:af:e1:c1:c2:7d:c4:96:a3:34:bf:e8:a6:
         5d:4b:c2:cb:2d:19:9c:30:a0:17:24:7b:ec:07:63:6e:b2:d0:
         32:ba:15:7a:d9:5b:66:5f:f3:fd:0f:a9:fb:95:20:c0:91:21:
         4e:8a:db:f4:43:41:ed:24:2b:8d:a2:5b:d7:30:d4:60:3c:43:
         69:90:09:11:fc:03:1b:12:71:33:aa:f8:d3:59:47:9c:d7:0e:
         df:d4:26:8b:7b:6b:3c:d9:4c:68:a7:4a:3a:5c:5b:59:b2:04:
         6e:24:62:c1:11:fd:1c:27:44:eb:63:e9:4a:7b:84:ca:69:3b:
         3c:cc:da:ab:ea:e6:b5:98:95:c8:1b:1e:27:b5:47:8e:b3:59:
         00:f8:b5:cc:1a:ae:71:86:3a:3e:cb:0a:69:e4:2a:f5:e5:61:
         bf:58:ad:80:8b:bb:29:28:84:96:27:2b:ba:f9:00:24:56:68:
         69:27:97:fb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw
MkYyRkM1MUMwHhcNMjUwNzIxMDUzMDQ4WhcNMjUwNzI4MDUzMDQ4WjAYMRYwFAYD
VQQDEw02ODdkZDA4OC04OWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1eMjfwhbjNGNPhrjysZPQemlXXFEAnRlN8ZRyMK6li51MPjehkolvdyN2I1x
HsX4ftQ1dg4B0CY9C/CPq2ywjhMEWaXF8sznWdIayD0UKJnM7R0U7jDx4ZJI71t0
crR1rsiDtRi97CdomG+7mBfJ0B2Gr68FVqItFiRcweSFhcdFvSUwRtnzH5uNYyQO
ggAkndgtg+qGD4iuw+xeksy1FRtns+9tMaS0V319vMbJXvaV2qP+o3zJAMW5ShSk
tGB6xCBqUu2N+s1iATGVikikbfj3zK3IJOzU5ykIw0+j55gMGV3eCwmU4ypvvHTm
UZj63dycALlCnKnTs6A+dOYbvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFn0KMeA
fW3rKHMaVcBSH5fDEHWmMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE
OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4
UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG
Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB8Qa2Ult2kFj7yaSNSO7lz00XDxjSKh27HhwYjWNFLExRnMzhEU2WZ
mD2DIQPNSsJL13YFJFYlCOt2sG8pySQLCRnbYJRM4UajuPWbNKKv4cHCfcSWozS/
6KZdS8LLLRmcMKAXJHvsB2NustAyuhV62VtmX/P9D6n7lSDAkSFOitv0Q0HtJCuN
olvXMNRgPENpkAkR/AMbEnEzqvjTWUec1w7f1CaLe2s82Uxop0o6XFtZsgRuJGLB
Ef0cJ0TrY+lKe4TKaTs8zNqr6ua1mJXIGx4ntUeOs1kA+LXMGq5xhjo+ywpp5Cr1
5WG/WK2Ai7spKISWJyu6+QAkVmhpJ5f7
-----END CERTIFICATE-----
Generated at Mon Jul 21 12:46:10 2025 by rpki-client