Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft
File:                     ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json)
Hash identifier:          AWp0Un6bu9ufKRvzd4gd9cvpSg2+w3P4XwzM9ngN4yc=
Subject key identifier:   E6:41:BA:E1:07:39:A8:42:BB:C0:40:C0:D0:8B:1A:BD:12:6D:86:37
Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
Certificate issuer:       /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54
Certificate serial:       36F4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft
Manifest number:          357C
Signing time:             Sat 31 May 2025 14:46:43 +0000
Manifest this update:     Sat 31 May 2025 14:46:42 +0000
Manifest next update:     Sat 07 Jun 2025 14:46:42 +0000
Files and hashes:         1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: GLcluSrtNVFtz8mHIOgQ9kjlYQcytJoX+vQTW071d3E=)
                          2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: VYBHve/PNmOFeIWgiVN/Red7+4ngw1/OUZ+8fRDI5rI=)
                          3: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: VubRHHBc3Mp0miN/hmjpYpMhRr6R/fcT8ESI96i2bn0=)
                          4: 35575C68844811EAB301615FC4F9AE02.roa (hash: IpJzY/E3RfTD/Jty42OF5cBR7XD15VMXMCEpMRRL3LU=)
                          5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y=)
                          6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: JqpaA6uavzScEzQE05g7FN0bGDgZqNMIyby4mXtlKkU=)
                          7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: RZHpITklMqhnuO90bEeP3i7RWRtO5TJRoQwAU5BGgUs=)
                          8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: VrbZ7ZecbNcImk9iVkkzXLKwbDb+F2iSfzr14g+V7aQ=)
                          9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: C9sOI6EfTgRnMQGNjlrtl3KFe7JPwkVRiva430VVNhg=)
                          10: 35E95924844811EAB301615FC4F9AE02.roa (hash: LgoFbTvnCYGxtb9l3zKpoNxXJ+KSjB/JRV9oy3sEYvk=)
                          11: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: Tvw2f69b+5p+ID20B8iBZZ0yBfURv9eNZRD114TIL4I=)
                          12: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Pysow4ghhE6bNtWAkyi1inOqPNBVAlZxtG0k9FkRDpM=)
                          13: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: GJ+Ts94sVlUdI4E9xrQTvfVMrj+KCnN2xtF35+3yCvE=)
                          14: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: YIkgFm4YlQ3B4lEIbOf0SksB4/x97E+3vlPXwWTeW9Y=)
                          15: 150DA58AFF0D11EF8B23C73AC4F9AE02.roa (hash: idSl8lJvkqdSo60nq2wum68o9p4rKFmDbGlEVDUP4DE=)
                          16: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: 89eEUpRQHSJ8X1lImXGmURAImfIF1FtpfbrbpBLEmDo=)
                          17: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: ukv1HUDNVDJbCJlkSDyGbdgGzyB74+5Ji2qFWgrv0gw=)
                          18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: UStQZ3E5ENhOJAnKZAoPf8pnLHZK3+vt2+bwJ7bo508=)
                          19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: jV1pO0tJQkm8tDF//+xAb/Vr8QQlVyReb+p4WbFsB4g=)
                          20: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: vzBcTdf96+UTQqQZlkeYwtQci7kemGbUS01k0jfvWtI=)
                          21: 160E2D60FF0D11EF8B23C73AC4F9AE02.roa (hash: DUYEU2WPRgGRjSa+GBl8Qamn18toiw7tspgbnam3lYo=)
                          22: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: hFXanv2FdjB0oerr/Ni9RmWLKXd7bj75bYHKTp5JZ4U=)
                          23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: Qoz5g9368HMZWctAVVNXY9CZ9LyOlyI2/eGHTTT7kQw=)
                          24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: va72E7xgUhipybtVeUXFFu66WOtMudWBDnK3BZLcOzk=)
                          25: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (hash: /p/aYFDXmU+p5r2x/x59lnZ8e1gVGwdb3q9zI0rbkwk=)
                          26: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: EUm4AnmfuJxU75sTZEUXibkajEE5FVqoIFPKGh69ArU=)
                          27: F33CEFA6FF0C11EFAFAF7D3AC4F9AE02.roa (hash: hCAJoif7R0PdtafhhCqVg3AWh/fUgT/PZ22s2qQ33mA=)
                          28: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: jlbUlIXnT9veJGusBLS+x09R8IWreW5sDY2cRLkBosA=)
                          29: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: twGH4Ti0Hxo3XFvPXLG4LeJ5bIvmDJLFNJkw3EGUZio=)
                          30: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JRI97yoxRtupHfmn7kbQDCY5sz6BBIJOh/q9HLp8tPI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl
                          rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 07 Jun 2025 14:46:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 14068 (0x36f4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54
        Validity
            Not Before: May 31 14:46:42 2025 GMT
            Not After : Jun  7 14:46:42 2025 GMT
        Subject: CN=683b1652-a7c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:34:03:ca:6b:46:dc:ba:ab:0b:27:ef:c0:63:
                    d6:2d:f4:e1:35:89:2c:1f:38:61:52:45:af:d7:58:
                    c1:43:09:75:6c:bf:68:6c:b0:0c:ec:f1:63:d7:b6:
                    7c:d2:e0:fb:3c:33:97:c1:b7:cb:6c:28:de:92:77:
                    e3:a8:bf:c2:6a:41:d8:54:85:97:cb:94:b2:38:7d:
                    a3:7d:94:ec:d3:b0:c1:e8:63:29:5c:36:97:3c:44:
                    09:18:c3:8a:92:0d:a1:33:18:0f:96:05:a0:13:45:
                    c3:0f:d5:e0:88:ae:cf:87:5e:1d:dc:b9:e9:f7:b7:
                    26:97:a2:4f:d2:fe:27:57:6e:7f:ed:8b:ae:63:12:
                    8b:24:b1:26:08:d0:d5:04:47:cf:13:1a:12:46:b6:
                    97:f4:54:d2:fe:89:55:8d:d4:17:ea:ea:54:8c:52:
                    14:d0:79:a2:8f:9b:6a:dc:10:f3:8f:d9:ab:f3:d1:
                    a6:b1:38:7a:3b:dd:b9:da:99:8c:31:0c:d0:c9:53:
                    c1:c9:49:b9:2d:66:b1:c7:32:c8:5b:51:fe:f8:2e:
                    bf:d4:92:5e:d1:c0:f5:94:00:22:34:35:a7:b5:20:
                    d3:09:0b:6f:f7:e2:84:22:15:dc:aa:bc:5a:d4:6e:
                    4f:a2:66:7e:3e:67:c6:d8:ca:f1:0a:6b:fa:4a:55:
                    0f:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:41:BA:E1:07:39:A8:42:BB:C0:40:C0:D0:8B:1A:BD:12:6D:86:37
            X509v3 Authority Key Identifier:
                keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:52:7e:d3:bb:0d:ef:3b:9c:a0:a7:20:22:f9:a7:d6:49:1e:
         ee:e7:15:e4:de:38:e0:e8:41:3a:3d:d7:fb:77:62:2e:e4:2c:
         50:6b:25:da:32:3b:31:f8:50:16:2c:b1:73:8a:76:0d:5c:9b:
         28:fb:ad:6e:8d:42:1b:b4:8f:86:f6:61:8c:ba:c1:51:40:7c:
         9b:3f:95:20:cc:d2:de:e9:c6:98:09:aa:73:95:2f:45:cd:bf:
         14:80:20:45:fb:f3:fc:97:7d:fb:b5:17:8f:50:d3:a1:14:62:
         b9:c5:78:22:e2:2b:20:da:13:f6:86:e2:df:35:55:23:e4:34:
         5d:49:f0:1d:f9:90:35:41:84:05:a2:14:52:93:e8:e3:aa:fc:
         2c:39:56:b8:73:6a:80:ac:79:d8:3c:62:2a:e4:ba:fa:c3:01:
         08:4d:db:dd:1d:60:c1:65:06:c5:d6:05:b3:17:73:67:e7:19:
         dd:cb:5b:62:14:73:34:a7:f9:9c:fa:e1:ae:71:03:52:52:2d:
         0b:91:a7:32:c6:8e:5d:d9:68:e5:ad:1c:c4:03:19:da:1f:fb:
         09:b7:a0:c5:ae:c7:bb:86:90:60:46:7c:36:c4:39:f7:22:35:
         50:7a:03:ab:71:5d:f6:c3:ce:18:bd:03:cf:37:62:35:15:a1:
         0b:be:8d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 31 17:44:02 2025 by rpki-client