Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft
File:                     -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json)
Hash identifier:          /CMUe4hDMU1PRAMNMWM/B2Bkc7oXDLr7X8Q3+0e4/Z4=
Subject key identifier:   8A:C7:31:E6:4C:E2:8C:40:D5:CD:5E:65:8D:1C:10:D0:F0:9B:4F:BA
Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF
Certificate issuer:       /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF
Certificate serial:       0177
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft
Manifest number:          0174
Signing time:             Mon 09 Jun 2025 02:51:29 +0000
Manifest this update:     Mon 09 Jun 2025 02:51:29 +0000
Manifest next update:     Mon 16 Jun 2025 02:51:29 +0000
Files and hashes:         1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: hMriGS+6H1XBA2vUkPVKK3ed5wGrQWxo+Uf+6lKgsUs=)
                          2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl
                          rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 02:51:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 375 (0x177)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF
        Validity
            Not Before: Jun  9 02:51:29 2025 GMT
            Not After : Jun 16 02:51:29 2025 GMT
        Subject: CN=68464c31-1834
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:3c:af:9c:16:aa:4b:00:1d:2b:25:c5:1d:9d:
                    7e:47:b2:57:f9:19:53:7b:b8:29:c3:bd:ea:9c:7e:
                    c2:ea:6e:6c:52:51:e4:5d:87:20:1d:d3:6f:14:c3:
                    77:08:e6:fb:0d:de:4d:dd:30:dd:9b:b2:89:8c:03:
                    ea:d1:6d:58:b6:ea:82:c1:b7:b6:31:18:7a:d5:ab:
                    04:a8:fb:fa:91:04:c1:bd:11:ef:29:85:0c:aa:6e:
                    ce:7e:86:87:c1:46:d5:46:49:72:15:16:52:78:6d:
                    8e:b6:80:d8:c1:40:1e:51:d4:20:f4:82:36:ba:c1:
                    4c:53:7b:ce:87:06:31:13:6e:6e:32:e6:54:40:cb:
                    6a:c0:da:12:3d:ac:d3:8e:42:05:de:dd:2b:53:6f:
                    e0:a0:a7:ca:15:af:c8:7b:87:80:a1:81:ed:d6:da:
                    9f:f8:99:c2:80:83:7d:d6:a8:be:5d:e0:5b:c1:7b:
                    a6:78:d2:83:d4:d6:fb:20:4f:cb:ad:11:72:9b:d0:
                    1e:ea:f9:11:3d:16:7d:0e:e3:1b:23:4c:6b:72:86:
                    a4:45:1b:01:4e:a2:4f:89:f1:27:1f:16:77:24:2a:
                    5d:d4:e7:1d:87:99:5c:d7:72:42:a7:88:34:5a:6f:
                    33:21:6e:d2:f5:69:c4:0c:df:85:4e:19:d2:a8:97:
                    58:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8A:C7:31:E6:4C:E2:8C:40:D5:CD:5E:65:8D:1C:10:D0:F0:9B:4F:BA
            X509v3 Authority Key Identifier:
                keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:e3:c1:4e:05:04:78:99:aa:1f:f1:36:95:69:6c:c1:d8:76:
         4c:63:ef:ea:66:2a:db:e4:08:08:d5:79:4f:43:4e:e7:13:3f:
         8e:35:6c:05:a6:65:c0:c7:42:93:fd:b8:af:75:bc:6c:9b:c6:
         58:3f:51:2d:08:10:b4:66:f9:66:0b:cf:27:cb:da:bc:bf:08:
         c4:e9:31:2b:fe:15:41:c6:5d:19:f1:7f:94:6d:32:fe:06:e3:
         47:73:7a:ea:bc:7d:bb:d5:0a:68:85:dc:b5:2c:3c:bd:8c:18:
         59:b1:83:2c:a7:24:8a:95:0c:52:bf:2b:46:44:11:7f:c5:26:
         f5:e9:6d:70:26:fb:89:84:df:79:86:3d:61:fd:a4:13:c0:3e:
         18:7a:55:dc:82:69:8d:73:ee:4b:81:9b:ec:eb:06:f3:df:1f:
         03:7c:c9:e7:68:4f:28:5e:7b:fa:59:b8:05:75:06:d7:a4:20:
         fd:d1:b6:b7:cb:75:99:cb:11:85:df:18:85:41:47:f5:1d:ea:
         a4:3a:be:f4:3f:59:c4:0b:8c:1a:56:b0:37:f2:97:08:f1:de:
         e7:78:b1:f6:cd:c0:2e:fe:5f:5b:8c:31:5b:2d:19:98:bd:c5:
         d2:38:29:7f:f9:91:ea:e5:1b:8c:a4:55:da:34:62:85:63:6e:
         4b:c4:f7:cd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG
ODBFNTJGREYwHhcNMjUwNjA5MDI1MTI5WhcNMjUwNjE2MDI1MTI5WjAYMRYwFAYD
VQQDEw02ODQ2NGMzMS0xODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxjyvnBaqSwAdKyXFHZ1+R7JX+RlTe7gpw73qnH7C6m5sUlHkXYcgHdNvFMN3
COb7Dd5N3TDdm7KJjAPq0W1YtuqCwbe2MRh61asEqPv6kQTBvRHvKYUMqm7OfoaH
wUbVRklyFRZSeG2OtoDYwUAeUdQg9II2usFMU3vOhwYxE25uMuZUQMtqwNoSPazT
jkIF3t0rU2/goKfKFa/Ie4eAoYHt1tqf+JnCgIN91qi+XeBbwXumeNKD1Nb7IE/L
rRFym9Ae6vkRPRZ9DuMbI0xrcoakRRsBTqJPifEnHxZ3JCpd1Ocdh5lc13JCp4g0
Wm8zIW7S9WnEDN+FThnSqJdYhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrHMeZM
4oxA1c1eZY0cENDwm0+6MB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB
QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM
OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o
TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBu48FOBQR4maof8TaVaWzB2HZMY+/qZirb5AgI1XlPQ07nEz+ONWwF
pmXAx0KT/bivdbxsm8ZYP1EtCBC0ZvlmC88ny9q8vwjE6TEr/hVBxl0Z8X+UbTL+
BuNHc3rqvH271Qpohdy1LDy9jBhZsYMspySKlQxSvytGRBF/xSb16W1wJvuJhN95
hj1h/aQTwD4YelXcgmmNc+5LgZvs6wbz3x8DfMnnaE8oXnv6WbgFdQbXpCD90ba3
y3WZyxGF3xiFQUf1HeqkOr70P1nEC4waVrA38pcI8d7neLH2zcAu/l9bjDFbLRmY
vcXSOCl/+ZHq5RuMpFXaNGKFY25LxPfN
-----END CERTIFICATE-----
Generated at Tue Jun 10 19:26:25 2025 by rpki-client