Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft
File:                     VngmFidUtGDLWGbawxSIDHA1Rh0.mft (raw, json)
Hash identifier:          cupLM2e9fLsl1MU/s18u5tuv8Uc18iN5ky6R+S0ez6w=
Subject key identifier:   E8:C0:48:74:78:AD:96:CE:79:FE:05:C0:1A:F6:2C:1D:84:34:85:84
Authority key identifier: 56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D
Certificate issuer:       /CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D
Certificate serial:       D6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft
Manifest number:          D3
Signing time:             Wed 11 Jun 2025 05:01:34 +0000
Manifest this update:     Wed 11 Jun 2025 05:01:33 +0000
Manifest next update:     Wed 18 Jun 2025 05:01:33 +0000
Files and hashes:         1: VngmFidUtGDLWGbawxSIDHA1Rh0.crl (hash: tUXRtI7D0tpqAHY07RUdfMOZiidR7pU2cKJrixDqPyk=)
                          2: DFDEC4D007A411EFAB20A473C4F9AE02.roa (hash: hQsClVPo6k6KSQkrPXRux2ZE6YMvDs1XKFlnN0n+rhg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl
                          rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 05:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 214 (0xd6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917D9B8, serialNumber=567826162754B460CB5866DAC314880C7035461D
        Validity
            Not Before: Jun 11 05:01:33 2025 GMT
            Not After : Jun 18 05:01:33 2025 GMT
        Subject: CN=68490dad-7f1c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:34:0e:ae:3d:27:21:56:d6:08:43:a9:72:73:
                    1e:1b:f0:6c:b8:9d:e5:16:e8:f0:9a:a4:6e:10:58:
                    68:a9:8d:8e:e3:d2:b6:01:6c:26:c4:3e:d6:64:c0:
                    9f:6e:43:95:ba:d5:d7:f5:d8:27:12:6e:aa:b4:9d:
                    37:e4:0d:03:35:bb:cd:62:7f:3e:69:1a:6d:3b:79:
                    f7:a9:76:f3:02:b8:74:77:dc:92:6a:d7:22:a9:29:
                    5c:69:7a:36:98:c1:b9:5d:08:a2:83:c2:9c:31:65:
                    c9:fc:bb:fd:3b:e0:55:c7:7c:a3:2c:79:b5:3b:5a:
                    71:b8:21:b2:9e:a9:41:28:3f:4f:e6:80:0e:33:a1:
                    b3:d2:d1:2b:e9:49:84:75:98:f5:e8:9f:0e:08:3d:
                    a4:0e:f8:83:68:4b:58:6f:2d:10:b0:38:96:97:2d:
                    63:4f:1c:1a:74:90:f5:35:d8:11:4a:d3:ed:ca:ff:
                    5e:a4:bc:b3:5c:bf:59:14:f9:d6:e4:fd:22:52:01:
                    77:9b:68:ae:2c:ca:91:6a:e6:fa:21:1c:1c:40:47:
                    66:76:a9:ba:84:18:a1:e8:42:74:e1:62:38:d0:66:
                    f0:33:b5:31:66:a1:1f:d2:c8:ed:f0:8b:0b:85:dc:
                    86:7d:99:a4:d0:f4:0f:43:b6:01:9e:fb:12:16:48:
                    64:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:C0:48:74:78:AD:96:CE:79:FE:05:C0:1A:F6:2C:1D:84:34:85:84
            X509v3 Authority Key Identifier:
                keyid:56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:26:4c:1f:1b:34:70:18:d9:88:e2:66:34:7e:63:1f:c3:31:
         8c:f9:05:ba:e1:56:3c:b0:23:62:57:c5:52:5e:f1:eb:c5:4d:
         06:cb:45:bc:3d:8a:34:71:c9:c2:27:3b:d3:5d:b3:78:4f:ef:
         c3:9e:89:0d:fc:85:f1:6e:2d:43:ea:92:3c:e6:ae:e4:23:73:
         1f:ad:ff:21:9b:af:15:f3:61:92:10:89:79:b5:7e:62:24:21:
         63:f4:c6:d6:46:39:ed:89:11:78:ed:69:32:c0:8e:15:cd:41:
         d3:9d:db:86:ad:6e:26:88:b5:a6:2a:79:dd:f6:ec:0e:1e:f1:
         4a:16:5e:5d:29:6a:af:54:9e:8d:96:02:a6:a8:67:75:ce:48:
         a2:a0:4f:07:31:01:21:96:a6:75:09:d6:aa:37:ac:eb:e3:4f:
         61:c8:47:7f:dd:3a:b3:a3:31:fb:ab:35:d4:28:f4:f0:49:a6:
         ea:c8:fe:c1:bd:e2:47:39:d9:13:2e:f6:2b:a1:50:86:78:87:
         5e:f7:d9:26:9d:60:62:64:b9:94:62:6d:18:aa:dd:30:f2:39:
         d0:ad:9f:e8:d5:78:4f:f6:6c:a1:02:4b:39:ae:43:41:33:47:
         0d:0e:92:52:58:d7:99:5c:41:3b:a9:18:2b:42:d0:f5:b3:06:
         9a:bb:a5:c3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0Q5QjgxMTAvBgNVBAUTKDU2NzgyNjE2Mjc1NEI0NjBDQjU4NjZEQUMzMTQ4ODBD
NzAzNTQ2MUQwHhcNMjUwNjExMDUwMTMzWhcNMjUwNjE4MDUwMTMzWjAYMRYwFAYD
VQQDEw02ODQ5MGRhZC03ZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuDQOrj0nIVbWCEOpcnMeG/BsuJ3lFujwmqRuEFhoqY2O49K2AWwmxD7WZMCf
bkOVutXX9dgnEm6qtJ035A0DNbvNYn8+aRptO3n3qXbzArh0d9ySatciqSlcaXo2
mMG5XQiig8KcMWXJ/Lv9O+BVx3yjLHm1O1pxuCGynqlBKD9P5oAOM6Gz0tEr6UmE
dZj16J8OCD2kDviDaEtYby0QsDiWly1jTxwadJD1NdgRStPtyv9epLyzXL9ZFPnW
5P0iUgF3m2iuLMqRaub6IRwcQEdmdqm6hBih6EJ04WI40GbwM7UxZqEf0sjt8IsL
hdyGfZmk0PQPQ7YBnvsSFkhkvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjASHR4
rZbOef4FwBr2LB2ENIWEMB8GA1UdIwQYMBaAFFZ4JhYnVLRgy1hm2sMUiAxwNUYd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlCOC9DOEIxRDQ0RTA3
QTExMUVGODRGM0QyNkFDNEY5QUUwMi9WbmdtRmlkVXRHRExXR2Jhd3hTSURIQTFS
aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1ZuZ21GaWRVdEdETFdHYmF3eFNJREhBMVJoMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
RDlCOC9DOEIxRDQ0RTA3QTExMUVGODRGM0QyNkFDNEY5QUUwMi9WbmdtRmlkVXRH
RExXR2Jhd3hTSURIQTFSaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQChJkwfGzRwGNmI4mY0fmMfwzGM+QW64VY8sCNiV8VSXvHrxU0Gy0W8
PYo0ccnCJzvTXbN4T+/DnokN/IXxbi1D6pI85q7kI3Mfrf8hm68V82GSEIl5tX5i
JCFj9MbWRjntiRF47WkywI4VzUHTnduGrW4miLWmKnnd9uwOHvFKFl5dKWqvVJ6N
lgKmqGd1zkiioE8HMQEhlqZ1CdaqN6zr409hyEd/3TqzozH7qzXUKPTwSabqyP7B
veJHOdkTLvYroVCGeIde99kmnWBiZLmUYm0Yqt0w8jnQrZ/o1XhP9myhAks5rkNB
M0cNDpJSWNeZXEE7qRgrQtD1swaau6XD
-----END CERTIFICATE-----
Generated at Thu Jun 12 05:25:30 2025 by rpki-client