Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
File:                     punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json)
Hash identifier:          5rWNaSECCKBGepdzx6N5W66rRrXFkx1eOcpwVPN4cu8=
Subject key identifier:   BF:C3:7D:7D:0F:B8:AF:13:BA:E6:DE:92:4A:AC:63:13:D0:A1:40:98
Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B
Certificate issuer:       /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B
Certificate serial:       99
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
Manifest number:          98
Signing time:             Fri 13 Jun 2025 05:16:59 +0000
Manifest this update:     Fri 13 Jun 2025 05:16:58 +0000
Manifest next update:     Fri 20 Jun 2025 05:16:58 +0000
Files and hashes:         1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: CtcN14Wtx3IK2SjkIqduz0U5DVkAn2vDvxEP3+e5Xgw=)
                          2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: hIohGLAEr9r6SYuLg+aGzwQmujzK2d8ao66pEwxDxz4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl
                          rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 05:16:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 153 (0x99)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B
        Validity
            Not Before: Jun 13 05:16:58 2025 GMT
            Not After : Jun 20 05:16:58 2025 GMT
        Subject: CN=684bb44a-32c4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:8c:56:4c:ec:a9:14:94:3f:e4:d1:a5:ce:b0:
                    12:c0:fb:3b:52:a1:c4:24:af:c3:47:a1:9a:06:31:
                    96:26:3c:22:10:83:7d:f6:07:fb:d3:8c:9b:ee:1c:
                    0f:6e:33:e1:d6:fe:50:55:63:30:e2:70:e8:15:38:
                    92:40:d8:74:86:24:33:8c:64:bf:6d:01:6d:94:f2:
                    8b:20:3b:01:0c:b4:dc:0d:2c:f5:72:60:2d:7f:7a:
                    0d:a8:d3:7d:5f:17:c8:bc:28:10:c7:a9:7e:82:77:
                    27:86:9d:18:bf:38:90:69:37:f5:5e:ed:32:44:9a:
                    9f:3f:07:00:79:6a:5a:c7:04:f8:7c:6a:7a:7a:00:
                    16:ae:21:e4:5a:fd:f7:b6:67:0f:5a:80:c3:d1:3d:
                    57:fb:19:5a:fe:78:70:96:7f:e6:02:0d:5a:e9:a4:
                    31:b1:79:8f:5f:c0:98:9c:77:05:c3:fd:02:94:c4:
                    1e:6e:06:6c:37:86:2f:00:22:da:fb:7d:12:9c:6d:
                    b1:3c:7f:0d:b7:0b:c3:49:c1:85:07:3c:de:9f:20:
                    61:27:31:a5:64:55:8b:76:a0:5d:8e:25:54:31:05:
                    48:5d:eb:ea:56:ec:6d:1c:65:ad:f5:25:0e:4a:89:
                    90:51:56:cd:60:b6:7b:fc:51:8d:3a:3d:24:09:37:
                    01:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:C3:7D:7D:0F:B8:AF:13:BA:E6:DE:92:4A:AC:63:13:D0:A1:40:98
            X509v3 Authority Key Identifier:
                keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:7a:ad:7e:1a:5b:de:d4:02:5d:5c:19:b5:2d:2b:0a:51:47:
         bb:7f:15:f1:67:cc:01:6a:7d:f0:b1:5b:15:19:cd:a4:9d:bc:
         21:f0:50:e9:09:47:25:5b:16:46:16:67:a6:8b:e5:ce:bd:c3:
         94:a6:53:fa:cc:3c:64:0b:52:19:81:b8:87:01:8f:9b:21:3e:
         0e:ff:79:08:8b:81:c2:82:cc:c6:db:b6:26:2c:51:8b:87:9c:
         cd:bd:60:f3:28:07:9f:d7:d5:1d:f1:3a:66:d0:10:42:d6:92:
         7a:26:a0:31:f8:0e:2a:27:0e:8e:a8:d8:d4:7f:cb:b9:ac:e4:
         3d:9c:80:93:91:11:35:28:1b:76:64:6d:63:99:7f:4f:b1:9d:
         96:9d:c9:49:25:c0:2a:0e:a2:c5:2f:47:4c:03:e4:96:a3:23:
         20:f0:0f:8d:11:cf:85:6b:e9:e4:d2:a6:41:53:71:42:76:51:
         64:dc:b2:a4:55:63:84:72:bd:9c:2b:06:14:ea:42:67:57:13:
         6c:a8:8d:55:c5:6e:89:82:a6:28:5a:c7:74:63:68:1a:9e:6c:
         17:88:2c:15:19:f4:79:0a:f1:56:b4:89:47:9e:e3:3c:b5:21:
         9c:70:f4:c8:f9:50:ab:9f:51:5e:09:ff:6c:e2:90:8f:3b:e8:
         31:15:54:ad
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0
OTE3NThGMkIwHhcNMjUwNjEzMDUxNjU4WhcNMjUwNjIwMDUxNjU4WjAYMRYwFAYD
VQQDEw02ODRiYjQ0YS0zMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs4xWTOypFJQ/5NGlzrASwPs7UqHEJK/DR6GaBjGWJjwiEIN99gf704yb7hwP
bjPh1v5QVWMw4nDoFTiSQNh0hiQzjGS/bQFtlPKLIDsBDLTcDSz1cmAtf3oNqNN9
XxfIvCgQx6l+gncnhp0YvziQaTf1Xu0yRJqfPwcAeWpaxwT4fGp6egAWriHkWv33
tmcPWoDD0T1X+xla/nhwln/mAg1a6aQxsXmPX8CYnHcFw/0ClMQebgZsN4YvACLa
+30SnG2xPH8NtwvDScGFBzzenyBhJzGlZFWLdqBdjiVUMQVIXevqVuxtHGWt9SUO
SomQUVbNYLZ7/FGNOj0kCTcB+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/DfX0P
uK8TuubekkqsYxPQoUCYMB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw
NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq
eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw
WWt5bUExU0tQakZKRjFqeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAbeq1+Glve1AJdXBm1LSsKUUe7fxXxZ8wBan3wsVsVGc2knbwh8FDp
CUclWxZGFmemi+XOvcOUplP6zDxkC1IZgbiHAY+bIT4O/3kIi4HCgszG27YmLFGL
h5zNvWDzKAef19Ud8Tpm0BBC1pJ6JqAx+A4qJw6OqNjUf8u5rOQ9nICTkRE1KBt2
ZG1jmX9PsZ2WnclJJcAqDqLFL0dMA+SWoyMg8A+NEc+Fa+nk0qZBU3FCdlFk3LKk
VWOEcr2cKwYU6kJnVxNsqI1VxW6JgqYoWsd0Y2ganmwXiCwVGfR5CvFWtIlHnuM8
tSGccPTI+VCrn1FeCf9s4pCPO+gxFVSt
-----END CERTIFICATE-----
Generated at Fri Jun 13 15:31:48 2025 by rpki-client