Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
File:                     OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json)
Hash identifier:          k5KnAH8YFNbPt9esJVdULe5VWQkdvWVkSoF0j9AK4/U=
Subject key identifier:   A2:A4:2B:5B:4A:4A:FC:43:C3:23:C5:2E:5F:4D:FD:92:88:71:FC:9F
Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A
Certificate issuer:       /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A
Certificate serial:       0A7F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
Manifest number:          0A78
Signing time:             Sun 08 Jun 2025 19:21:24 +0000
Manifest this update:     Sun 08 Jun 2025 19:21:24 +0000
Manifest next update:     Sun 15 Jun 2025 19:21:24 +0000
Files and hashes:         1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: 8786Fv7j1cYJ9UVzUNRYhbLbo6CKDVCJIuk78X5Vl5c=)
                          2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl
                          rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 19:21:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2687 (0xa7f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A
        Validity
            Not Before: Jun  8 19:21:24 2025 GMT
            Not After : Jun 15 19:21:24 2025 GMT
        Subject: CN=6845e2b4-983e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:cd:48:09:c5:b8:74:36:94:87:b4:17:e7:32:
                    91:58:f1:ed:8c:66:d8:26:4f:82:d2:e4:0b:7c:0e:
                    66:b2:79:68:46:15:75:80:98:e0:a2:46:c9:26:ca:
                    71:b9:7a:ba:f0:79:3a:3d:ed:d6:88:f8:9f:03:87:
                    6b:5c:87:5f:54:1c:88:01:7e:ed:3c:ef:aa:a8:dc:
                    a6:7b:bc:27:54:44:61:83:af:ac:f9:25:3f:7f:de:
                    10:60:c7:5e:10:35:e5:aa:78:55:1c:02:e1:3a:2e:
                    90:37:da:8c:d2:9a:2c:9c:ed:b6:67:2b:63:f1:b6:
                    cb:11:95:a6:c8:9f:a7:0b:7c:a0:07:50:a9:cc:5f:
                    34:8d:80:4b:fc:fe:55:1e:17:33:bd:66:c1:43:34:
                    d3:10:6c:0b:25:ce:f2:7c:7f:2f:df:0a:7b:ca:68:
                    4b:e7:cc:cc:d8:8d:bc:43:48:6d:e8:3b:87:47:e3:
                    e0:bf:5a:4a:bc:93:12:1f:f0:11:39:e0:39:86:5d:
                    aa:55:3f:e2:a8:0a:9a:e2:c3:08:08:ef:93:00:5e:
                    b4:0f:3e:1c:f2:10:8f:50:9d:02:00:e2:8f:31:6d:
                    62:9e:a6:b4:f0:f3:ac:cd:91:4c:be:ec:ea:67:3c:
                    a7:c7:c0:34:50:b1:65:64:e9:32:2e:b2:f7:e8:68:
                    de:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:A4:2B:5B:4A:4A:FC:43:C3:23:C5:2E:5F:4D:FD:92:88:71:FC:9F
            X509v3 Authority Key Identifier:
                keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:23:0b:ea:d5:35:ef:5c:a8:4d:4b:a5:53:04:f2:1f:ad:88:
         bd:3b:46:82:d6:b9:36:b3:61:73:44:84:d2:18:9c:2b:a2:d8:
         5f:cc:c9:61:7c:4d:d3:22:94:01:a3:ca:80:e1:c4:83:fd:b3:
         68:3c:88:d3:02:2e:13:d9:68:2a:76:54:0c:fc:95:77:10:01:
         07:67:c0:a3:65:85:8d:08:d6:aa:ce:9e:8d:8c:ac:a2:bf:ff:
         21:86:0b:15:c0:b9:e8:ed:1a:ef:e6:91:bf:6c:cb:a7:b9:19:
         ac:18:9a:7b:e4:ce:5e:bf:2a:b4:5a:63:d6:83:44:7b:97:21:
         41:a1:c7:e1:ea:f7:8e:78:06:6d:0c:b0:97:53:53:61:2d:b9:
         de:32:a4:7b:db:85:8b:56:42:12:11:c3:fc:9c:fa:bc:d4:5a:
         ce:5d:47:eb:ee:42:e1:ed:79:3f:ba:7e:ce:0a:aa:69:c1:ee:
         16:98:6c:61:06:dc:4d:34:db:c9:77:86:aa:4d:60:3d:00:da:
         13:3c:2f:14:07:c7:8d:c4:ca:77:86:ec:25:2f:ec:db:50:de:
         d0:51:26:6e:48:c8:71:d1:c6:bc:d3:a1:ce:7f:3f:dd:b7:52:
         9b:c1:20:5a:1f:2f:67:17:ee:2d:27:27:18:06:cf:93:55:d2:
         f9:e9:19:f6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE
QUY4RDc4MUEwHhcNMjUwNjA4MTkyMTI0WhcNMjUwNjE1MTkyMTI0WjAYMRYwFAYD
VQQDEw02ODQ1ZTJiNC05ODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0s1ICcW4dDaUh7QX5zKRWPHtjGbYJk+C0uQLfA5msnloRhV1gJjgokbJJspx
uXq68Hk6Pe3WiPifA4drXIdfVByIAX7tPO+qqNyme7wnVERhg6+s+SU/f94QYMde
EDXlqnhVHALhOi6QN9qM0posnO22Zytj8bbLEZWmyJ+nC3ygB1CpzF80jYBL/P5V
HhczvWbBQzTTEGwLJc7yfH8v3wp7ymhL58zM2I28Q0ht6DuHR+Pgv1pKvJMSH/AR
OeA5hl2qVT/iqAqa4sMICO+TAF60Dz4c8hCPUJ0CAOKPMW1inqa08POszZFMvuzq
Zzynx8A0ULFlZOkyLrL36GjeMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKkK1tK
SvxDwyPFLl9N/ZKIcfyfMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG
NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l
Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6
QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAyIwvq1TXvXKhNS6VTBPIfrYi9O0aC1rk2s2FzRITSGJwrothfzMlh
fE3TIpQBo8qA4cSD/bNoPIjTAi4T2WgqdlQM/JV3EAEHZ8CjZYWNCNaqzp6NjKyi
v/8hhgsVwLno7Rrv5pG/bMunuRmsGJp75M5evyq0WmPWg0R7lyFBocfh6veOeAZt
DLCXU1NhLbneMqR724WLVkISEcP8nPq81FrOXUfr7kLh7Xk/un7OCqppwe4WmGxh
BtxNNNvJd4aqTWA9ANoTPC8UB8eNxMp3huwlL+zbUN7QUSZuSMhx0ca806HOfz/d
t1KbwSBaHy9nF+4tJycYBs+TVdL56Rn2
-----END CERTIFICATE-----
Generated at Tue Jun 10 14:49:12 2025 by rpki-client