Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
File:                     NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json)
Hash identifier:          PxwOo5JINlnkFarel9slxJrxFIz16r5NRjhS8QmNNZk=
Subject key identifier:   BC:48:50:E4:C4:B2:91:39:2C:6C:52:14:D2:9B:9D:AD:59:A2:66:E1
Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D
Certificate issuer:       /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D
Certificate serial:       0126
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
Manifest number:          011F
Signing time:             Sat 19 Jul 2025 05:02:18 +0000
Manifest this update:     Sat 19 Jul 2025 05:02:18 +0000
Manifest next update:     Sat 26 Jul 2025 05:02:18 +0000
Files and hashes:         1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: jZrLWuAT+Zk+D01GGteK3dOvLStB0988HgtptI2PlO0=)
                          2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=)
                          3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl
                          rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 05:02:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 294 (0x126)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D
        Validity
            Not Before: Jul 19 05:02:18 2025 GMT
            Not After : Jul 26 05:02:18 2025 GMT
        Subject: CN=687b26da-5ccc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:3b:5d:9e:6e:8d:41:9b:fa:19:80:cc:33:04:
                    11:0b:7e:0d:22:9e:7f:c1:f8:26:82:b5:88:f2:80:
                    1a:12:7d:fb:e5:f2:e9:0f:f3:7d:83:a0:1c:26:39:
                    80:d5:5f:3b:20:58:d8:b0:13:46:2b:8c:d2:5d:01:
                    cc:0d:a7:91:7a:c2:e8:31:f9:2e:34:7a:9b:40:8a:
                    9d:b0:64:db:6e:12:92:33:7d:63:fb:a6:ce:25:7e:
                    70:f8:cb:6f:9f:07:a7:8d:b6:bf:9a:8d:68:bc:ce:
                    8c:3f:3b:9d:5a:63:73:dc:2c:b3:f9:f0:95:66:49:
                    ee:d5:ef:78:ed:87:5d:d6:76:cd:cd:5e:a6:e6:98:
                    a2:bc:a9:a9:02:0c:05:9e:13:8d:d5:92:96:b0:a2:
                    bb:73:a6:33:e4:36:7a:ae:46:06:28:4d:ea:5d:63:
                    28:9b:2d:a5:36:03:9d:3c:37:6c:49:33:e7:9d:0f:
                    cf:ca:76:0e:1d:b8:b3:bf:d1:f2:8a:e7:38:4a:cc:
                    b8:ba:ee:5f:06:21:be:81:a0:45:af:a7:05:cb:b3:
                    13:44:79:d1:fd:bc:dc:15:7c:1b:54:10:40:ae:15:
                    a8:96:8b:b6:a5:3b:50:89:70:f3:49:01:d1:71:a8:
                    32:02:1b:bf:75:d7:f1:f3:21:a7:a2:fe:b0:99:0c:
                    28:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:48:50:E4:C4:B2:91:39:2C:6C:52:14:D2:9B:9D:AD:59:A2:66:E1
            X509v3 Authority Key Identifier:
                keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:53:f4:1e:45:f3:cb:f9:cb:4d:4f:70:04:e7:8d:f6:48:06:
         33:0a:32:a2:a4:d0:1d:ac:3d:3a:62:80:6b:bd:ca:10:7c:a1:
         10:35:1c:d7:83:82:70:f1:46:f6:0d:6a:42:91:76:60:e7:f2:
         19:26:5b:c2:f0:ad:86:1e:52:bf:04:e2:8c:00:ab:03:60:6f:
         27:e7:4f:fc:a8:9e:ee:5b:61:fe:89:3b:7c:f8:88:34:71:cf:
         c0:7e:b6:34:9c:c4:8d:59:46:54:f6:0f:78:e6:fe:31:2b:b5:
         b9:0f:6c:4b:b3:1d:d4:b7:65:7f:e3:64:df:20:e1:bb:fe:a1:
         32:b4:e6:e2:18:56:09:95:1c:43:97:09:ff:5d:de:58:6d:00:
         54:64:fb:d9:1e:6a:85:81:c5:f7:ed:94:34:73:ea:57:bd:13:
         61:3d:fe:9c:d4:21:84:8f:00:74:95:40:38:13:24:72:f8:62:
         69:c7:4b:32:f1:ff:ec:b2:d1:8e:db:d1:61:59:d3:9a:ab:ac:
         9b:ba:8d:e9:3c:42:2c:62:1b:fc:0f:24:da:dd:70:4f:78:9f:
         9e:1e:4a:f1:3c:a9:fb:fb:83:ea:fd:58:56:32:79:ca:c2:00:
         46:26:62:17:c0:4a:0f:44:5e:82:e1:32:c8:b1:a1:26:48:da:
         c7:59:43:5a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy
NjRGOEVDN0QwHhcNMjUwNzE5MDUwMjE4WhcNMjUwNzI2MDUwMjE4WjAYMRYwFAYD
VQQDEw02ODdiMjZkYS01Y2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0Dtdnm6NQZv6GYDMMwQRC34NIp5/wfgmgrWI8oAaEn375fLpD/N9g6AcJjmA
1V87IFjYsBNGK4zSXQHMDaeResLoMfkuNHqbQIqdsGTbbhKSM31j+6bOJX5w+Mtv
nwenjba/mo1ovM6MPzudWmNz3Cyz+fCVZknu1e947Ydd1nbNzV6m5piivKmpAgwF
nhON1ZKWsKK7c6Yz5DZ6rkYGKE3qXWMomy2lNgOdPDdsSTPnnQ/PynYOHbizv9Hy
iuc4Ssy4uu5fBiG+gaBFr6cFy7MTRHnR/bzcFXwbVBBArhWolou2pTtQiXDzSQHR
cagyAhu/ddfx8yGnov6wmQwoIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxIUOTE
spE5LGxSFNKbna1ZombhMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2
QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3
SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB
cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDFU/QeRfPL+ctNT3AE5432SAYzCjKipNAdrD06YoBrvcoQfKEQNRzX
g4Jw8Ub2DWpCkXZg5/IZJlvC8K2GHlK/BOKMAKsDYG8n50/8qJ7uW2H+iTt8+Ig0
cc/AfrY0nMSNWUZU9g945v4xK7W5D2xLsx3Ut2V/42TfIOG7/qEytObiGFYJlRxD
lwn/Xd5YbQBUZPvZHmqFgcX37ZQ0c+pXvRNhPf6c1CGEjwB0lUA4EyRy+GJpx0sy
8f/sstGO29FhWdOaq6ybuo3pPEIsYhv8DyTa3XBPeJ+eHkrxPKn7+4Pq/VhWMnnK
wgBGJmIXwEoPRF6C4TLIsaEmSNrHWUNa
-----END CERTIFICATE-----
Generated at Sun Jul 20 21:56:46 2025 by rpki-client