Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft
File:                     W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft (raw, json)
Hash identifier:          fndwZ+n5H6NLDL6AQBtk+eHSnRsTQcXsrh+rLnB/x5A=
Subject key identifier:   98:8E:55:72:17:BB:D6:E1:6C:F0:72:A6:F8:50:AD:7E:3C:3D:FD:66
Authority key identifier: 5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C
Certificate issuer:       /CN=A91D1E29/serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C
Certificate serial:       08D2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft
Manifest number:          08CC
Signing time:             Sun 08 Jun 2025 20:10:29 +0000
Manifest this update:     Sun 08 Jun 2025 20:10:29 +0000
Manifest next update:     Sun 15 Jun 2025 20:10:29 +0000
Files and hashes:         1: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl (hash: ag3fmWR088qXhdv2sV22X0TkBswbkrNCf9t0uypyUfk=)
                          2: 108B7DAAB2A711EAABBE8663C4F9AE02.roa (hash: qTuGE1JcRtd/cW9n5J8BXF2j1PTZne38og2GGYl8DqM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl
                          rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 20:10:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2258 (0x8d2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D1E29, serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C
        Validity
            Not Before: Jun  8 20:10:29 2025 GMT
            Not After : Jun 15 20:10:29 2025 GMT
        Subject: CN=6845ee35-d0bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:df:af:3f:3b:c0:86:2b:01:71:73:3f:94:a7:
                    34:a7:02:44:c5:8c:ca:22:cf:45:e5:cf:3b:c0:e5:
                    14:e3:cc:30:3a:07:f3:43:61:6d:2c:b3:25:1b:f6:
                    bb:48:5d:4a:c3:06:03:29:68:c4:a9:10:57:e4:ab:
                    3f:80:fe:a4:45:01:2a:d8:83:8b:aa:7b:6c:4c:a1:
                    b3:ec:66:2a:6e:ac:80:58:93:6d:18:c1:58:34:0d:
                    7e:a3:d3:43:2f:bd:a1:ab:18:e5:bd:d7:d2:0e:63:
                    51:e1:11:29:b0:f1:84:74:9c:e0:76:5b:a2:97:35:
                    32:aa:98:78:fc:7f:f4:d5:06:0f:f6:68:b3:7a:65:
                    4b:56:43:65:bd:3e:f6:20:b0:5f:51:44:9d:c8:fb:
                    cc:aa:c3:19:f9:ed:27:00:24:a5:c5:fe:55:00:f3:
                    aa:aa:75:40:28:c2:62:d8:d7:47:4e:41:3b:1b:c6:
                    75:51:8d:35:88:14:95:8d:ad:90:f3:fd:e6:61:95:
                    c6:ad:18:2c:56:d3:4c:b0:8e:67:d8:36:c2:e7:b8:
                    cc:25:d0:da:6f:70:e1:ad:ea:1f:77:5a:af:0e:54:
                    c3:08:85:b4:52:2f:7a:81:0e:f2:5d:27:fc:a8:57:
                    a4:06:10:e0:fc:f3:8f:b9:d8:d1:5e:a5:38:3c:8f:
                    69:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:8E:55:72:17:BB:D6:E1:6C:F0:72:A6:F8:50:AD:7E:3C:3D:FD:66
            X509v3 Authority Key Identifier:
                keyid:5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:04:26:d7:5e:9a:94:03:77:01:66:5b:fe:62:d3:7b:bf:cd:
         99:f4:8f:a2:03:0b:ac:45:6e:df:5b:56:ec:b4:c9:bb:03:c5:
         f5:a5:51:0e:22:5d:55:ad:c0:e3:87:86:17:68:ee:18:9d:d6:
         ac:6c:63:47:f2:04:0f:1b:c8:7b:17:4d:1e:e8:b4:ef:55:b0:
         bc:b4:f5:32:68:7f:85:18:58:b9:46:44:10:be:77:5e:fe:a1:
         ec:f9:d5:e5:44:b0:56:b1:01:37:b3:87:51:aa:ad:9d:fa:1f:
         a7:17:83:e2:a5:d0:b8:45:68:c0:6e:82:0e:5f:62:bb:e3:94:
         0c:bf:f5:28:03:f5:b1:68:37:90:13:52:16:11:a5:5d:24:0d:
         6d:ca:83:8f:82:77:c4:7a:0f:4c:28:5d:77:17:8b:45:0f:96:
         98:cf:40:84:bf:f9:52:1e:4d:c8:15:c8:04:d8:5a:43:f8:96:
         17:d8:c1:e8:30:75:cc:17:10:bf:0f:ba:c9:13:c4:f8:b4:ea:
         3c:35:ca:92:41:46:f0:c2:1b:ef:ab:12:79:62:52:6d:9a:bc:
         72:be:34:0c:8e:a0:64:21:81:0c:cc:19:54:14:77:09:1a:f9:
         14:f9:4b:8b:47:35:c1:94:d8:e3:4c:a6:d6:85:76:72:a5:36:
         35:e3:54:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDFFMjkxMTAvBgNVBAUTKDVCRjYyNDM5OTBBOTQ2NEM4NUI3ODIzREI0MjZFMkFC
OTY3MjBBM0MwHhcNMjUwNjA4MjAxMDI5WhcNMjUwNjE1MjAxMDI5WjAYMRYwFAYD
VQQDEw02ODQ1ZWUzNS1kMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2t+vPzvAhisBcXM/lKc0pwJExYzKIs9F5c87wOUU48wwOgfzQ2FtLLMlG/a7
SF1KwwYDKWjEqRBX5Ks/gP6kRQEq2IOLqntsTKGz7GYqbqyAWJNtGMFYNA1+o9ND
L72hqxjlvdfSDmNR4REpsPGEdJzgdluilzUyqph4/H/01QYP9mizemVLVkNlvT72
ILBfUUSdyPvMqsMZ+e0nACSlxf5VAPOqqnVAKMJi2NdHTkE7G8Z1UY01iBSVja2Q
8/3mYZXGrRgsVtNMsI5n2DbC57jMJdDab3Dhreofd1qvDlTDCIW0Ui96gQ7yXSf8
qFekBhDg/POPudjRXqU4PI9pxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiOVXIX
u9bhbPBypvhQrX48Pf1mMB8GA1UdIwQYMBaAFFv2JDmQqUZMhbeCPbQm4quWcgo8
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUyOS9ERDEzRjhGMEIy
OUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJreUZ0NEk5dENiaXE1WnlD
ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1dfWWtPWkNwUmt5RnQ0STl0Q2JpcTVaeUNqdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MUUyOS9ERDEzRjhGMEIyOUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJr
eUZ0NEk5dENiaXE1WnlDancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQASBCbXXpqUA3cBZlv+YtN7v82Z9I+iAwusRW7fW1bstMm7A8X1pVEO
Il1VrcDjh4YXaO4YndasbGNH8gQPG8h7F00e6LTvVbC8tPUyaH+FGFi5RkQQvnde
/qHs+dXlRLBWsQE3s4dRqq2d+h+nF4PipdC4RWjAboIOX2K745QMv/UoA/WxaDeQ
E1IWEaVdJA1tyoOPgnfEeg9MKF13F4tFD5aYz0CEv/lSHk3IFcgE2FpD+JYX2MHo
MHXMFxC/D7rJE8T4tOo8NcqSQUbwwhvvqxJ5YlJtmrxyvjQMjqBkIYEMzBlUFHcJ
GvkU+UuLRzXBlNjjTKbWhXZypTY141T+
-----END CERTIFICATE-----
Generated at Tue Jun 10 22:17:23 2025 by rpki-client