Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
File:                     OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json)
Hash identifier:          9BG2Sp/OjyueOM2/94oUnQGB0iZ1eDuaBWjw002bqyQ=
Subject key identifier:   B3:B9:FE:83:B0:9D:11:17:F8:9E:D6:42:AD:BB:45:CC:B8:86:F5:7C
Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A
Certificate issuer:       /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A
Certificate serial:       0A80
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
Manifest number:          0A79
Signing time:             Tue 10 Jun 2025 19:30:29 +0000
Manifest this update:     Tue 10 Jun 2025 19:30:28 +0000
Manifest next update:     Tue 17 Jun 2025 19:30:28 +0000
Files and hashes:         1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: DJU6fAFtw9kLjeRcmGNuF7V7qrv41wvK0A7fLH24poc=)
                          2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl
                          rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 19:30:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2688 (0xa80)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A
        Validity
            Not Before: Jun 10 19:30:28 2025 GMT
            Not After : Jun 17 19:30:28 2025 GMT
        Subject: CN=684887d4-d3b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:e6:48:c4:da:4e:bd:68:62:9b:58:6d:76:e4:
                    81:af:c3:90:90:c6:22:50:41:5d:e2:9d:c5:4f:db:
                    67:ef:e5:c3:19:3b:e2:1b:82:ba:9f:98:68:b0:ab:
                    dc:ed:60:39:5a:d8:af:3f:a8:0e:b4:c4:e9:6f:50:
                    4b:af:73:d4:bd:71:63:62:2e:8a:c2:80:77:00:d1:
                    10:a1:44:00:8d:67:a0:cc:03:7a:32:5b:d2:f5:0a:
                    a6:de:ad:d0:91:db:01:01:b5:fd:8b:9c:66:4b:06:
                    f7:07:1f:47:c9:3b:44:0d:7f:d6:a9:b3:de:6c:9a:
                    11:89:35:79:b2:9a:fe:8d:c0:99:d4:15:36:3b:36:
                    8f:dc:05:45:20:b5:a9:bb:44:b1:76:3e:f9:b9:ec:
                    e6:4c:4c:83:b3:24:a8:10:5e:fa:3b:ac:a6:2b:65:
                    ed:a5:36:30:d6:11:1d:e5:76:38:58:64:53:0e:77:
                    9d:80:89:24:a1:9a:d5:c1:69:2f:40:ff:a4:10:a2:
                    ea:ed:9e:0a:c6:16:71:bf:f8:5c:02:d2:50:0d:c7:
                    38:3d:22:2c:8b:7c:a3:f9:e9:cb:3e:da:c6:d5:38:
                    88:1a:34:e7:f6:b8:1d:4e:e6:3c:ec:c5:28:23:c0:
                    8c:67:1e:8e:e4:08:09:d5:05:52:b1:2f:dd:11:d1:
                    58:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:B9:FE:83:B0:9D:11:17:F8:9E:D6:42:AD:BB:45:CC:B8:86:F5:7C
            X509v3 Authority Key Identifier:
                keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:52:30:f4:dd:ce:f7:c1:2d:a4:f7:97:cb:c2:30:51:ee:95:
         9b:a8:ce:c4:ce:2a:8d:c2:bd:47:31:27:05:ec:8f:aa:7d:72:
         e0:ee:b7:3f:4f:70:a2:0a:eb:30:1c:b5:a9:24:46:ea:9f:df:
         9c:61:1d:79:5f:db:09:81:5f:67:71:76:b5:69:19:76:aa:50:
         4f:d4:a0:0b:1a:26:d2:76:7f:94:23:79:d9:1b:57:d7:f5:47:
         7c:56:98:f7:c1:4e:da:24:62:0d:9b:56:2a:41:1f:51:8a:89:
         28:42:f1:c9:dd:8a:42:55:05:77:50:09:23:11:67:9c:1c:c4:
         26:a6:c1:2d:31:e9:1a:d8:f9:a1:39:82:fd:a9:8b:71:6c:a2:
         54:27:8f:f6:fa:bc:79:33:a9:b4:8c:7b:ad:d5:04:67:5d:16:
         e5:fb:a3:cf:5e:4c:87:89:2c:f3:3b:97:7b:da:7c:de:7e:9d:
         2e:11:ef:94:63:2a:f9:fb:46:e5:0b:8c:67:fa:f1:6b:ec:2b:
         22:56:2d:27:49:82:03:60:e6:93:ce:4a:d1:c5:ea:b6:50:1c:
         2d:64:cb:4d:ab:a8:22:68:5f:75:2f:c4:4c:27:0a:e4:ae:87:
         ca:8e:c3:41:02:07:4c:aa:40:a4:9e:b5:c9:0b:6a:cb:10:30:
         7b:b3:10:3e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE
QUY4RDc4MUEwHhcNMjUwNjEwMTkzMDI4WhcNMjUwNjE3MTkzMDI4WjAYMRYwFAYD
VQQDEw02ODQ4ODdkNC1kM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuOZIxNpOvWhim1htduSBr8OQkMYiUEFd4p3FT9tn7+XDGTviG4K6n5hosKvc
7WA5WtivP6gOtMTpb1BLr3PUvXFjYi6KwoB3ANEQoUQAjWegzAN6MlvS9Qqm3q3Q
kdsBAbX9i5xmSwb3Bx9HyTtEDX/WqbPebJoRiTV5spr+jcCZ1BU2OzaP3AVFILWp
u0Sxdj75uezmTEyDsySoEF76O6ymK2XtpTYw1hEd5XY4WGRTDnedgIkkoZrVwWkv
QP+kEKLq7Z4KxhZxv/hcAtJQDcc4PSIsi3yj+enLPtrG1TiIGjTn9rgdTuY87MUo
I8CMZx6O5AgJ1QVSsS/dEdFYEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLO5/oOw
nREX+J7WQq27Rcy4hvV8MB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG
NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l
Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6
QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQADUjD03c73wS2k95fLwjBR7pWbqM7EziqNwr1HMScF7I+qfXLg7rc/
T3CiCuswHLWpJEbqn9+cYR15X9sJgV9ncXa1aRl2qlBP1KALGibSdn+UI3nZG1fX
9Ud8Vpj3wU7aJGINm1YqQR9RiokoQvHJ3YpCVQV3UAkjEWecHMQmpsEtMeka2Pmh
OYL9qYtxbKJUJ4/2+rx5M6m0jHut1QRnXRbl+6PPXkyHiSzzO5d72nzefp0uEe+U
Yyr5+0blC4xn+vFr7CsiVi0nSYIDYOaTzkrRxeq2UBwtZMtNq6giaF91L8RMJwrk
rofKjsNBAgdMqkCknrXJC2rLEDB7sxA+
-----END CERTIFICATE-----
Generated at Wed Jun 11 12:08:21 2025 by rpki-client