Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft
File:                     5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft (raw, json)
Hash identifier:          nmtq/+sbOZpizeOiiHoUBUm/y+OHAK2I1aEdcUaMeyM=
Subject key identifier:   0C:86:7F:38:CF:FF:FF:A1:C8:92:77:D4:6E:FB:40:5B:43:23:E8:BC
Authority key identifier: E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46
Certificate issuer:       /CN=A9170533/serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246
Certificate serial:       039A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft
Manifest number:          0396
Signing time:             Fri 13 Jun 2025 00:21:50 +0000
Manifest this update:     Fri 13 Jun 2025 00:21:49 +0000
Manifest next update:     Fri 20 Jun 2025 00:21:49 +0000
Files and hashes:         1: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl (hash: RWTJipL7ymAIAtDhJMVFJw8LGN+cEFnXM2ZgGh5WCSs=)
                          2: 6664BEB29F8611ECBE806D30C4F9AE02.roa (hash: 3Zz0SoScV6fPNZfJ9ERkFkDBxGo2mzRnK0TlcOdgOTI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl
                          rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 00:21:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 922 (0x39a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170533, serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246
        Validity
            Not Before: Jun 13 00:21:49 2025 GMT
            Not After : Jun 20 00:21:49 2025 GMT
        Subject: CN=684b6f1e-e8a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:a1:b4:38:c9:5b:fc:8d:9d:d5:28:13:e2:80:
                    e4:f1:a1:d7:6b:c1:32:2f:05:83:d2:c8:22:f5:7d:
                    ed:36:75:2d:9d:88:88:19:5a:20:3e:ed:8a:63:2f:
                    c3:ba:25:e7:30:e0:f3:b2:e5:36:e0:c5:cc:ef:a2:
                    a3:f1:a7:ed:8d:d0:d0:4d:ac:e0:14:46:37:89:fc:
                    ab:27:c9:b2:ca:70:7a:56:ac:d9:e0:c5:02:60:49:
                    d9:af:bb:64:e8:5e:6b:2a:96:a7:90:32:9b:ec:97:
                    2a:2b:2b:36:48:f4:55:11:a5:d1:ef:8a:a2:97:da:
                    6c:6a:d0:ec:79:71:e9:05:b0:a7:43:f6:fa:64:8c:
                    6e:1c:14:80:79:30:ca:2b:0f:ca:2e:03:c4:1c:17:
                    bc:02:4d:cd:b8:1e:a9:10:f0:2c:94:99:d0:c6:38:
                    13:fb:a5:3f:36:4b:27:22:13:77:3a:af:84:d5:1e:
                    40:06:8d:dd:e6:33:0e:5e:c4:db:c6:a1:ff:7f:52:
                    00:e9:60:99:68:aa:66:26:c3:29:5f:fd:18:7d:b2:
                    00:f7:04:54:b7:e6:a6:37:21:53:2c:41:88:6c:50:
                    98:00:68:ce:f0:22:bc:11:f9:a0:9f:9d:f5:41:e6:
                    6e:5f:bb:9d:0e:08:e8:11:24:b4:ff:c0:13:2a:67:
                    ef:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:86:7F:38:CF:FF:FF:A1:C8:92:77:D4:6E:FB:40:5B:43:23:E8:BC
            X509v3 Authority Key Identifier:
                keyid:E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:b1:55:7c:f2:95:61:e9:e7:d7:f3:45:69:c4:09:9b:29:fe:
         e0:ad:5e:3d:f3:2c:e2:6a:60:36:e6:61:6d:92:b4:7f:e7:5f:
         6e:f3:84:2f:d8:91:4e:de:09:00:5e:f8:66:e5:9d:37:47:ca:
         46:2e:45:05:6e:9b:44:f5:82:89:a7:31:85:67:2c:1a:04:33:
         01:a6:8c:60:5b:8f:96:2f:c2:a0:5a:14:40:15:da:7c:d0:7a:
         66:14:09:59:0d:06:7b:0e:1c:64:f4:5e:f1:78:00:bd:a1:e0:
         1f:8e:d4:49:86:20:44:f8:75:0e:da:d1:d7:4a:6b:a2:64:12:
         d1:df:99:fc:48:7f:d1:ad:d5:b5:1d:07:f9:b7:aa:7d:e5:59:
         d4:aa:24:17:f8:72:3c:ff:c3:dd:3a:47:15:ce:a1:1e:83:e1:
         34:96:54:87:3c:e0:b0:94:81:3a:c6:bf:f9:ce:c2:78:25:61:
         02:2b:27:fa:38:1e:ce:ee:37:66:70:c4:9b:14:28:e2:a2:7c:
         9f:b7:f4:7d:54:9b:9d:94:7a:20:f2:8b:c5:41:c0:b6:84:e0:
         61:22:29:71:6a:f0:b4:c4:ea:2c:1f:81:3e:2b:7c:1b:05:b8:
         5e:59:9f:55:ad:21:4c:8a:0f:b6:a8:80:f4:07:cc:8d:aa:2e:
         18:77:e8:ff
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzA1MzMxMTAvBgNVBAUTKEU1OEY5OEUzQzYxNDIxNDY1NDUzQUM0MjU1RjBBRkIw
QUQ5NUQyNDYwHhcNMjUwNjEzMDAyMTQ5WhcNMjUwNjIwMDAyMTQ5WjAYMRYwFAYD
VQQDEw02ODRiNmYxZS1lOGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvqG0OMlb/I2d1SgT4oDk8aHXa8EyLwWD0sgi9X3tNnUtnYiIGVogPu2KYy/D
uiXnMODzsuU24MXM76Kj8aftjdDQTazgFEY3ifyrJ8myynB6VqzZ4MUCYEnZr7tk
6F5rKpankDKb7JcqKys2SPRVEaXR74qil9psatDseXHpBbCnQ/b6ZIxuHBSAeTDK
Kw/KLgPEHBe8Ak3NuB6pEPAslJnQxjgT+6U/NksnIhN3Oq+E1R5ABo3d5jMOXsTb
xqH/f1IA6WCZaKpmJsMpX/0YfbIA9wRUt+amNyFTLEGIbFCYAGjO8CK8Efmgn531
QeZuX7udDgjoESS0/8ATKmfvpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyGfzjP
//+hyJJ31G77QFtDI+i8MB8GA1UdIwQYMBaAFOWPmOPGFCFGVFOsQlXwr7CtldJG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDUzMy8yMkVEMkM5QTlG
ODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlVWlVVNnhDVmZDdnNLMlYw
a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzVZLVk0OFlVSVVaVVU2eENWZkN2c0syVjBrWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
MDUzMy8yMkVEMkM5QTlGODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlV
WlVVNnhDVmZDdnNLMlYwa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCAsVV88pVh6efX80VpxAmbKf7grV498yziamA25mFtkrR/519u84Qv
2JFO3gkAXvhm5Z03R8pGLkUFbptE9YKJpzGFZywaBDMBpoxgW4+WL8KgWhRAFdp8
0HpmFAlZDQZ7Dhxk9F7xeAC9oeAfjtRJhiBE+HUO2tHXSmuiZBLR35n8SH/RrdW1
HQf5t6p95VnUqiQX+HI8/8PdOkcVzqEeg+E0llSHPOCwlIE6xr/5zsJ4JWECKyf6
OB7O7jdmcMSbFCjionyft/R9VJudlHog8ovFQcC2hOBhIilxavC0xOosH4E+K3wb
BbheWZ9VrSFMig+2qID0B8yNqi4Yd+j/
-----END CERTIFICATE-----
Generated at Fri Jun 13 08:11:48 2025 by rpki-client