Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
File:                     kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json)
Hash identifier:          gYAZc/UgGG3DzrTzep/L1DFfYwtPnh/iEIWax8j4ZpM=
Subject key identifier:   33:4E:FC:A5:9E:A7:D8:BD:F8:80:7F:8F:9B:B6:73:91:65:6F:AD:1C
Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F
Certificate issuer:       /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F
Certificate serial:       01AA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
Manifest number:          019F
Signing time:             Mon 09 Jun 2025 02:33:11 +0000
Manifest this update:     Mon 09 Jun 2025 02:33:11 +0000
Manifest next update:     Mon 16 Jun 2025 02:33:11 +0000
Files and hashes:         1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: 0Rh8UGdI3VT2Fj4/9mesBG9kdlrhfNDpWaX0X2AGFH4=)
                          2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=)
                          3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=)
                          4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl
                          rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 02:33:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 426 (0x1aa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F
        Validity
            Not Before: Jun  9 02:33:11 2025 GMT
            Not After : Jun 16 02:33:11 2025 GMT
        Subject: CN=684647e7-3d33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:3e:5f:3f:4a:90:22:a8:b7:6c:70:6e:83:4b:
                    07:4d:3a:39:9c:73:53:1d:56:6d:46:da:43:05:e9:
                    07:81:2e:ff:6c:45:2b:4c:a0:27:5d:43:52:4e:cf:
                    f0:14:8d:a7:4f:da:63:67:05:d2:1a:0f:98:9b:a3:
                    30:29:65:4b:cf:12:ef:23:02:4b:71:05:58:b0:73:
                    28:a6:84:54:e2:32:74:2e:2f:83:15:aa:50:18:25:
                    ec:d1:ba:86:eb:b1:a9:4f:af:43:62:dc:b8:58:2b:
                    d5:81:7d:59:e3:b7:61:a8:33:07:c2:a1:f1:00:6e:
                    ad:2b:f1:7b:a5:05:92:04:c9:df:73:17:41:68:c6:
                    c7:bb:88:b0:de:44:3d:c3:0d:1b:c3:88:fd:5e:8c:
                    dd:fd:21:1a:f7:71:07:51:a3:cd:8e:7c:42:a9:92:
                    da:87:42:5a:4f:be:9f:3b:58:15:59:6d:88:01:e9:
                    53:20:04:a3:87:a2:e2:dc:52:7d:36:dc:24:96:d3:
                    0f:21:d6:88:43:b1:4f:2a:b0:3f:62:ca:19:02:b6:
                    cc:9c:c2:e6:59:df:40:41:50:70:e2:52:ea:c2:f5:
                    ee:4d:89:f5:32:ca:94:a9:10:ae:ca:f4:9d:dc:e2:
                    b1:d8:6b:ce:39:41:84:e3:1e:67:10:4c:b2:08:fc:
                    9c:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:4E:FC:A5:9E:A7:D8:BD:F8:80:7F:8F:9B:B6:73:91:65:6F:AD:1C
            X509v3 Authority Key Identifier:
                keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:4c:1e:b4:7a:96:b0:9c:1f:47:20:88:f8:61:fb:5d:22:35:
         d8:af:1c:f1:86:97:39:66:3b:b1:c3:1a:61:84:f0:7e:0d:e0:
         c4:58:ad:ed:1f:07:b7:9a:c8:c4:57:75:21:b9:60:88:1e:05:
         4e:df:09:26:18:48:20:55:5b:5a:07:2d:06:2d:32:a6:ad:57:
         19:4a:f6:9b:2c:f1:e6:27:5e:aa:41:db:5a:cb:97:d4:0c:14:
         ad:3b:b0:e1:29:63:c8:8f:ce:ed:e1:db:b7:96:77:b7:05:89:
         20:20:94:c0:c6:51:a4:5f:09:b8:f5:e1:ce:ac:0c:20:d6:c6:
         06:e0:b9:c8:ca:ac:b3:c1:08:88:d4:fe:7b:97:47:cb:5d:00:
         6d:d5:cf:10:e5:6c:e6:d2:2e:58:56:16:0a:08:c2:dd:13:33:
         07:bb:1b:c0:88:64:b1:8c:2a:18:dc:03:95:a1:19:79:aa:c4:
         6b:4c:37:37:23:62:89:05:32:ea:27:35:c4:51:8b:62:50:6b:
         87:67:91:d5:c6:8d:d0:30:ab:ce:cc:6f:58:15:6a:33:09:89:
         09:13:fc:fc:e5:14:91:11:e4:d6:48:59:f3:64:8a:7f:79:66:
         57:16:1a:80:17:0b:91:a7:a3:5f:79:7e:96:9a:56:e3:f2:78:
         32:1b:98:75
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB
RUFBOEU4OEYwHhcNMjUwNjA5MDIzMzExWhcNMjUwNjE2MDIzMzExWjAYMRYwFAYD
VQQDEw02ODQ2NDdlNy0zZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnz5fP0qQIqi3bHBug0sHTTo5nHNTHVZtRtpDBekHgS7/bEUrTKAnXUNSTs/w
FI2nT9pjZwXSGg+Ym6MwKWVLzxLvIwJLcQVYsHMopoRU4jJ0Li+DFapQGCXs0bqG
67GpT69DYty4WCvVgX1Z47dhqDMHwqHxAG6tK/F7pQWSBMnfcxdBaMbHu4iw3kQ9
ww0bw4j9Xozd/SEa93EHUaPNjnxCqZLah0JaT76fO1gVWW2IAelTIASjh6Li3FJ9
NtwkltMPIdaIQ7FPKrA/YsoZArbMnMLmWd9AQVBw4lLqwvXuTYn1MsqUqRCuyvSd
3OKx2GvOOUGE4x5nEEyyCPyczwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNO/KWe
p9i9+IB/j5u2c5Flb60cMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4
NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82
STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn
ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAUTB60epawnB9HIIj4YftdIjXYrxzxhpc5ZjuxwxphhPB+DeDEWK3t
Hwe3msjEV3UhuWCIHgVO3wkmGEggVVtaBy0GLTKmrVcZSvabLPHmJ16qQdtay5fU
DBStO7DhKWPIj87t4du3lne3BYkgIJTAxlGkXwm49eHOrAwg1sYG4LnIyqyzwQiI
1P57l0fLXQBt1c8Q5Wzm0i5YVhYKCMLdEzMHuxvAiGSxjCoY3AOVoRl5qsRrTDc3
I2KJBTLqJzXEUYtiUGuHZ5HVxo3QMKvOzG9YFWozCYkJE/z85RSREeTWSFnzZIp/
eWZXFhqAFwuRp6NfeX6Wmlbj8ngyG5h1
-----END CERTIFICATE-----
Generated at Tue Jun 10 08:26:19 2025 by rpki-client