Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
File:                     pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json)
Hash identifier:          jx/qyWU6Clwu2wzJKWqO5pb27GHLgHu4nuKdjXw0ASE=
Subject key identifier:   A0:B5:55:B6:16:DD:86:06:66:BB:A8:9B:E2:46:42:3E:7F:18:43:BD
Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA
Certificate issuer:       /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
Certificate serial:       0140
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
Manifest number:          013D
Signing time:             Thu 12 Jun 2025 19:06:11 +0000
Manifest this update:     Thu 12 Jun 2025 19:06:11 +0000
Manifest next update:     Thu 19 Jun 2025 19:06:11 +0000
Files and hashes:         1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: T2YG6d8U7G7n81T+mK/P3a+MZsFy51RJ416DiNaeCqA=)
                          2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl
                          rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 19:06:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 320 (0x140)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
        Validity
            Not Before: Jun 12 19:06:11 2025 GMT
            Not After : Jun 19 19:06:11 2025 GMT
        Subject: CN=684b2523-fa34
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:64:32:95:41:91:34:0d:ec:16:92:b6:0e:1d:
                    f7:55:3c:e4:05:19:9c:f9:3d:f5:ba:12:3b:54:65:
                    1a:de:9b:b4:9c:ad:52:2a:55:82:36:4c:5d:1b:63:
                    82:09:06:15:c9:99:32:bd:1c:ab:ae:63:3f:b4:fe:
                    dc:d2:f2:37:06:ce:9a:e5:26:68:ff:f7:23:1b:28:
                    ce:a0:25:e0:cd:57:57:f9:ed:b6:0b:fb:87:5a:f5:
                    77:d2:fd:1d:fd:de:a4:d5:0e:88:8f:15:53:1f:ff:
                    5d:5c:74:b3:25:b0:93:39:c6:5c:53:9d:9f:7f:95:
                    db:5e:40:38:3f:da:c7:4c:90:71:9a:c5:5b:29:82:
                    cd:33:4c:43:73:96:18:bc:19:53:19:56:3a:d4:e5:
                    98:ba:a7:01:06:9e:d8:c4:4e:cb:56:3d:f2:d6:ff:
                    bb:1c:71:9d:9d:68:e0:a2:22:df:66:88:38:12:c4:
                    a2:9a:1b:1a:91:f8:56:77:63:55:fb:3f:7d:da:7b:
                    55:84:0d:71:56:4d:9d:44:bc:db:fb:3f:12:b4:06:
                    a9:a5:fb:c3:a7:bb:d3:d9:11:17:46:d9:ff:be:1a:
                    e6:f2:46:f5:d6:f8:ef:c6:1b:26:89:bf:5b:9c:51:
                    91:4c:3d:a8:03:45:a2:e9:66:d0:8e:8b:b7:41:da:
                    96:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:B5:55:B6:16:DD:86:06:66:BB:A8:9B:E2:46:42:3E:7F:18:43:BD
            X509v3 Authority Key Identifier:
                keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:28:89:f8:e7:4e:e8:82:fe:a1:c0:98:7f:79:37:12:6a:a0:
         d9:4d:4a:16:f1:58:5e:de:19:a8:bc:04:59:6b:71:ec:9d:40:
         8d:0e:ac:b8:6b:58:3a:ff:dc:8b:7d:82:96:a6:a0:52:7f:3c:
         a4:88:b9:89:06:6f:df:c5:4a:7e:92:d3:7c:c9:c5:38:81:6b:
         be:91:04:32:13:bc:7d:f1:5c:b0:58:bf:8b:51:4c:da:aa:72:
         5b:23:cd:e2:6a:de:a2:61:ac:33:5f:9b:72:c7:9e:c3:69:a5:
         8c:46:c2:ab:39:c1:95:49:82:23:ff:15:5b:22:f4:09:ac:d7:
         03:2a:f0:c6:3b:0d:49:15:43:98:b2:3b:a3:dc:47:c7:a3:f8:
         2c:f3:02:7b:3c:d3:c2:8a:d5:6b:82:cb:3e:d0:e4:c1:42:85:
         fb:34:2a:66:b8:4e:44:74:a2:27:5e:c2:c1:d2:f9:65:aa:c7:
         29:e1:7c:8b:27:6d:fa:67:94:7e:4d:26:41:c9:5e:98:68:5d:
         d5:86:69:c7:d0:01:98:31:cd:ea:49:e3:0d:5f:0b:1a:c9:d4:
         0f:a8:7b:c4:12:43:85:e4:c9:fe:5e:f2:46:6a:5e:47:d7:dd:
         7d:7c:99:ae:b6:e9:36:2d:5a:fd:f8:b7:fe:1c:84:4f:6b:27:
         ea:81:8a:e8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG
NTE4NjY1Q0EwHhcNMjUwNjEyMTkwNjExWhcNMjUwNjE5MTkwNjExWjAYMRYwFAYD
VQQDEw02ODRiMjUyMy1mYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuWQylUGRNA3sFpK2Dh33VTzkBRmc+T31uhI7VGUa3pu0nK1SKlWCNkxdG2OC
CQYVyZkyvRyrrmM/tP7c0vI3Bs6a5SZo//cjGyjOoCXgzVdX+e22C/uHWvV30v0d
/d6k1Q6IjxVTH/9dXHSzJbCTOcZcU52ff5XbXkA4P9rHTJBxmsVbKYLNM0xDc5YY
vBlTGVY61OWYuqcBBp7YxE7LVj3y1v+7HHGdnWjgoiLfZog4EsSimhsakfhWd2NV
+z992ntVhA1xVk2dRLzb+z8StAappfvDp7vT2REXRtn/vhrm8kb11vjvxhsmib9b
nFGRTD2oA0Wi6WbQjou3QdqWBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKC1VbYW
3YYGZruom+JGQj5/GEO9MB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4
MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da
Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU
QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAVKIn4507ogv6hwJh/eTcSaqDZTUoW8Vhe3hmovARZa3HsnUCNDqy4
a1g6/9yLfYKWpqBSfzykiLmJBm/fxUp+ktN8ycU4gWu+kQQyE7x98VywWL+LUUza
qnJbI83iat6iYawzX5tyx57DaaWMRsKrOcGVSYIj/xVbIvQJrNcDKvDGOw1JFUOY
sjuj3EfHo/gs8wJ7PNPCitVrgss+0OTBQoX7NCpmuE5EdKInXsLB0vllqscp4XyL
J236Z5R+TSZByV6YaF3VhmnH0AGYMc3qSeMNXwsaydQPqHvEEkOF5Mn+XvJGal5H
1919fJmutuk2LVr9+Lf+HIRPayfqgYro
-----END CERTIFICATE-----
Generated at Fri Jun 13 07:32:31 2025 by rpki-client