Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft
File:                     x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft (raw, json)
Hash identifier:          kobywTy4bEWJdZ9M6LvKSB/P/r52mlcppBlJ5lDhtSc=
Subject key identifier:   88:B4:62:35:99:A3:49:FF:AB:55:AF:43:3C:A5:1E:E6:08:AE:28:93
Authority key identifier: C7:F0:28:37:D2:45:CB:8F:AB:CD:47:41:CF:A2:B4:A5:A2:F7:3E:AD
Certificate issuer:       /CN=A91D8BB1/serialNumber=C7F02837D245CB8FABCD4741CFA2B4A5A2F73EAD
Certificate serial:       09
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x_AoN9JFy4-rzUdBz6K0paL3Pq0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft
Manifest number:          09
Signing time:             Wed 11 Jun 2025 07:31:44 +0000
Manifest this update:     Wed 11 Jun 2025 07:31:43 +0000
Manifest next update:     Wed 18 Jun 2025 07:31:43 +0000
Files and hashes:         1: x_AoN9JFy4-rzUdBz6K0paL3Pq0.crl (hash: 0jefp7fCW2S0uAdX/bnXjP+LFmJHyeAv+v1ALAgI7a0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.crl
                          rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x_AoN9JFy4-rzUdBz6K0paL3Pq0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 07:31:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9 (0x9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D8BB1, serialNumber=C7F02837D245CB8FABCD4741CFA2B4A5A2F73EAD
        Validity
            Not Before: Jun 11 07:31:43 2025 GMT
            Not After : Jun 18 07:31:43 2025 GMT
        Subject: CN=684930df-6a35
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:1e:37:72:26:c6:73:8d:c8:be:d3:4f:d0:0b:
                    d6:83:69:8b:60:99:a3:6f:dc:7f:96:71:5f:4f:5c:
                    45:a1:e1:ca:4f:6e:71:9f:b7:28:9d:1a:7f:3e:cb:
                    29:5c:14:a6:92:b6:5b:21:f7:ea:92:12:3c:7b:20:
                    cc:4d:ff:03:25:c2:f3:ca:b7:47:0f:d0:e3:ad:8b:
                    6d:32:3e:ff:a1:5e:e2:13:ed:97:20:1b:f9:3c:ed:
                    10:6d:77:e0:44:3e:09:d1:04:16:1f:f6:7e:e4:87:
                    89:5f:2d:74:09:c3:f4:3c:52:3f:68:39:6f:58:61:
                    af:35:9a:0e:bf:47:98:c6:06:6a:c0:d9:4b:8a:7a:
                    cf:da:8b:2f:5c:e4:2b:87:34:0f:2a:02:68:7d:2b:
                    0e:2a:f6:57:3d:57:fc:e9:21:e2:7a:b0:03:bb:55:
                    3e:a7:a2:17:df:b5:51:e7:a6:d1:07:f4:30:ca:2b:
                    07:ea:e4:42:55:be:e7:c0:10:d8:7c:92:e2:f4:f6:
                    99:f6:7e:d0:9e:ed:40:f6:1d:67:23:93:70:8e:47:
                    ce:16:ff:76:ae:a8:d5:56:02:af:5b:9a:6b:5b:8d:
                    ff:a4:41:35:b8:e5:d8:5d:2c:a3:ac:78:d9:59:c0:
                    c8:93:0e:0a:b2:a3:8d:14:da:a3:64:00:49:e5:26:
                    e7:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:B4:62:35:99:A3:49:FF:AB:55:AF:43:3C:A5:1E:E6:08:AE:28:93
            X509v3 Authority Key Identifier:
                keyid:C7:F0:28:37:D2:45:CB:8F:AB:CD:47:41:CF:A2:B4:A5:A2:F7:3E:AD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x_AoN9JFy4-rzUdBz6K0paL3Pq0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:12:6d:b4:11:41:d3:d0:b9:c4:58:78:90:0a:62:e9:d9:98:
         76:11:f6:b7:eb:aa:cc:5a:df:bf:26:d6:46:d1:c5:bd:b5:63:
         c0:f1:b3:82:e3:a6:51:36:e7:5f:c8:cc:af:db:6e:6a:a5:15:
         fc:4c:07:ba:fb:25:e4:ad:00:a0:69:0a:3d:7a:fc:32:cb:90:
         4b:b5:8f:5f:c1:9a:80:ab:31:9a:79:0e:9b:65:d3:c5:39:47:
         30:2b:bd:94:b5:eb:fc:82:cd:b6:1d:22:7c:8b:ed:51:70:36:
         b9:c8:09:ba:95:81:16:92:97:04:e9:ab:15:9d:57:a7:19:e4:
         4d:2d:01:20:76:f0:c9:a0:9e:0b:52:92:db:bd:14:91:9c:d5:
         79:2b:af:9f:48:d9:34:86:1b:7b:57:0b:e4:42:eb:94:c0:23:
         07:66:21:32:4f:03:31:55:e7:1e:d9:17:05:e7:0c:9d:b7:05:
         83:6f:39:04:f9:05:51:b2:a9:05:da:5a:f2:7a:96:94:d0:31:
         7e:1f:3a:71:03:8c:72:66:0e:03:5f:dc:30:d5:cf:18:73:1b:
         e1:88:aa:64:ca:d6:8f:de:b5:34:56:8c:4d:b6:8f:d1:46:96:
         4c:3f:5c:24:17:ed:b9:80:71:69:9d:45:b1:06:06:0a:fa:ea:
         8d:ae:80:15
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE
OEJCMTExMC8GA1UEBRMoQzdGMDI4MzdEMjQ1Q0I4RkFCQ0Q0NzQxQ0ZBMkI0QTVB
MkY3M0VBRDAeFw0yNTA2MTEwNzMxNDNaFw0yNTA2MTgwNzMxNDNaMBgxFjAUBgNV
BAMTDTY4NDkzMGRmLTZhMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCtHjdyJsZzjci+00/QC9aDaYtgmaNv3H+WcV9PXEWh4cpPbnGftyidGn8+yylc
FKaStlsh9+qSEjx7IMxN/wMlwvPKt0cP0OOti20yPv+hXuIT7ZcgG/k87RBtd+BE
PgnRBBYf9n7kh4lfLXQJw/Q8Uj9oOW9YYa81mg6/R5jGBmrA2UuKes/aiy9c5CuH
NA8qAmh9Kw4q9lc9V/zpIeJ6sAO7VT6nohfftVHnptEH9DDKKwfq5EJVvufAENh8
kuL09pn2ftCe7UD2HWcjk3COR84W/3auqNVWAq9bmmtbjf+kQTW45dhdLKOseNlZ
wMiTDgqyo40U2qNkAEnlJuclAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiLRiNZmj
Sf+rVa9DPKUe5giuKJMwHwYDVR0jBBgwFoAUx/AoN9JFy4+rzUdBz6K0paL3Pq0w
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4QkIxLzVBRDc2OUIwM0Qy
NTExRjA4MEM0ODk1NUM0RjlBRTAyL3hfQW9OOUpGeTQtcnpVZEJ6NkswcGFMM1Bx
MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIveF9Bb045SkZ5NC1yelVkQno2SzBwYUwzUHEwLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4
QkIxLzVBRDc2OUIwM0QyNTExRjA4MEM0ODk1NUM0RjlBRTAyL3hfQW9OOUpGeTQt
cnpVZEJ6NkswcGFMM1BxMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAD0SbbQRQdPQucRYeJAKYunZmHYR9rfrqsxa378m1kbRxb21Y8Dxs4Lj
plE251/IzK/bbmqlFfxMB7r7JeStAKBpCj16/DLLkEu1j1/BmoCrMZp5Dptl08U5
RzArvZS16/yCzbYdInyL7VFwNrnICbqVgRaSlwTpqxWdV6cZ5E0tASB28MmgngtS
ktu9FJGc1Xkrr59I2TSGG3tXC+RC65TAIwdmITJPAzFV5x7ZFwXnDJ23BYNvOQT5
BVGyqQXaWvJ6lpTQMX4fOnEDjHJmDgNf3DDVzxhzG+GIqmTK1o/etTRWjE22j9FG
lkw/XCQX7bmAcWmdRbEGBgr66o2ugBU=
-----END CERTIFICATE-----
Generated at Thu Jun 12 20:42:34 2025 by rpki-client