Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
File:                     k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft (raw, json)
Hash identifier:          RKJEeY0q81OYBjbr35DOVLCe0Ptm8u5rTyT6+64FNSA=
Subject key identifier:   2A:21:9E:4B:6C:31:41:40:FF:72:84:F8:7C:4E:6D:01:51:43:0B:D9
Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9
Certificate issuer:       /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9
Certificate serial:       13CB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
Manifest number:          13B0
Signing time:             Tue 10 Jun 2025 17:18:30 +0000
Manifest this update:     Tue 10 Jun 2025 17:18:30 +0000
Manifest next update:     Tue 17 Jun 2025 17:18:30 +0000
Files and hashes:         1: k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl (hash: fG5mfqc66xji8x0bOP5n0g19YyGzpuiAsbHMO/PZh80=)
                          2: A04E05E42CE911EC8F99F486C4F9AE02.roa (hash: bw4oyTaqoqfdp29e2lYAU370gy2twH+W8CpSCQrTXLg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl
                          rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 17:18:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5067 (0x13cb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E3D15, serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9
        Validity
            Not Before: Jun 10 17:18:30 2025 GMT
            Not After : Jun 17 17:18:30 2025 GMT
        Subject: CN=684868e6-a92f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:27:a8:27:02:aa:58:d9:8b:40:c7:92:2c:2c:
                    0a:35:4c:5f:6b:b8:a9:d1:00:78:b8:27:bd:2e:e1:
                    ee:8e:e4:cc:2d:76:90:d3:9a:ea:14:07:f0:7a:5c:
                    fc:81:6c:46:2e:62:86:12:c6:93:6f:15:18:ac:07:
                    6c:56:a4:df:ce:76:6b:35:57:7f:0e:55:2f:34:7f:
                    75:65:29:83:80:4c:d4:15:fc:20:6c:cc:31:28:2d:
                    cf:c5:0e:fa:92:8a:97:c5:b8:24:b9:46:0f:f1:e7:
                    24:e7:08:4f:d9:d3:15:b2:b8:a5:0a:60:09:70:1f:
                    bf:72:8b:8e:f9:2a:a9:c2:46:a0:c1:15:b1:a5:a8:
                    15:82:85:9f:5e:bd:ce:91:c1:70:c4:04:ba:9d:a8:
                    f0:53:5a:e4:6d:54:87:93:ff:8a:1f:1f:cf:d9:4e:
                    5a:e3:5a:5f:2e:d3:7d:3d:ed:a3:e3:9a:28:43:65:
                    5c:1b:30:6f:7a:aa:c0:f7:05:55:84:86:8a:a2:c7:
                    9c:c7:f8:2f:b1:84:66:2c:bf:25:cb:9b:9f:07:0d:
                    f9:c9:c2:53:44:25:0a:3d:0a:ea:92:d7:58:02:21:
                    01:7b:78:99:0f:90:75:44:8c:20:07:4d:74:65:48:
                    f7:d0:0d:db:bb:18:0f:d2:7e:24:74:f7:25:07:97:
                    08:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:21:9E:4B:6C:31:41:40:FF:72:84:F8:7C:4E:6D:01:51:43:0B:D9
            X509v3 Authority Key Identifier:
                keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:a6:2d:17:f0:df:ae:f5:c0:84:3a:7b:93:9a:45:0e:62:b3:
         50:51:bd:68:25:4f:cd:ad:0a:17:5e:d2:0b:46:6f:4c:93:81:
         37:a9:8c:2f:1c:72:fa:b6:72:47:7d:ee:a4:a9:12:5d:c1:97:
         38:bc:02:f1:e1:ae:d4:df:d8:51:af:76:a2:fd:cf:fa:3a:31:
         b3:c2:0a:07:b1:ab:11:e4:a1:52:8b:48:74:53:9e:2f:55:ad:
         ad:78:58:9a:a4:ef:ae:2d:f0:4a:28:b5:57:05:03:78:36:90:
         e7:60:3d:c8:b5:da:9c:9e:ce:7f:cf:dc:cf:2b:0a:b0:de:be:
         6c:f6:41:de:d0:a1:2b:25:7d:dd:70:d7:9e:6f:47:85:96:9c:
         73:71:29:25:e9:5a:9b:dc:3c:8b:d6:33:74:a3:d4:13:0f:11:
         45:f9:a7:9c:d0:17:d7:e4:aa:49:6f:93:e3:3a:28:b7:d8:7f:
         59:83:38:1c:65:25:61:bc:c7:3f:36:2a:87:9d:cd:20:c7:79:
         69:ae:2f:9b:44:69:84:ad:4f:db:8d:f7:ad:19:de:90:2a:b5:
         44:2d:ca:b5:bf:c8:47:e1:91:fa:0f:c5:52:6b:ce:68:92:b3:
         c3:81:10:05:cd:44:05:80:8c:01:cc:e5:8f:f1:ff:8c:2c:32:
         25:cd:5d:87
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICE8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTNEMTUxMTAvBgNVBAUTKDkzQzRENzREMThGNTJDRUE1ODUyODBCQjMzMTJGMzEw
RTEyMEMwRTkwHhcNMjUwNjEwMTcxODMwWhcNMjUwNjE3MTcxODMwWjAYMRYwFAYD
VQQDEw02ODQ4NjhlNi1hOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzyeoJwKqWNmLQMeSLCwKNUxfa7ip0QB4uCe9LuHujuTMLXaQ05rqFAfwelz8
gWxGLmKGEsaTbxUYrAdsVqTfznZrNVd/DlUvNH91ZSmDgEzUFfwgbMwxKC3PxQ76
koqXxbgkuUYP8eck5whP2dMVsrilCmAJcB+/couO+SqpwkagwRWxpagVgoWfXr3O
kcFwxAS6najwU1rkbVSHk/+KHx/P2U5a41pfLtN9Pe2j45ooQ2VcGzBveqrA9wVV
hIaKosecx/gvsYRmLL8ly5ufBw35ycJTRCUKPQrqktdYAiEBe3iZD5B1RIwgB010
ZUj30A3buxgP0n4kdPclB5cI3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCohnkts
MUFA/3KE+HxObQFRQwvZMB8GA1UdIwQYMBaAFJPE100Y9SzqWFKAuzMS8xDhIMDp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QxNS83QzY4NUE4Mjk1
QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxPcFlVb0M3TXhMekVPRWd3
T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2s4VFhUUmoxTE9wWVVvQzdNeEx6RU9FZ3dPay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
M0QxNS83QzY4NUE4Mjk1QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxP
cFlVb0M3TXhMekVPRWd3T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBSpi0X8N+u9cCEOnuTmkUOYrNQUb1oJU/NrQoXXtILRm9Mk4E3qYwv
HHL6tnJHfe6kqRJdwZc4vALx4a7U39hRr3ai/c/6OjGzwgoHsasR5KFSi0h0U54v
Va2teFiapO+uLfBKKLVXBQN4NpDnYD3Itdqcns5/z9zPKwqw3r5s9kHe0KErJX3d
cNeeb0eFlpxzcSkl6Vqb3DyL1jN0o9QTDxFF+aec0BfX5KpJb5PjOii32H9Zgzgc
ZSVhvMc/NiqHnc0gx3lpri+bRGmErU/bjfetGd6QKrVELcq1v8hH4ZH6D8VSa85o
krPDgRAFzUQFgIwBzOWP8f+MLDIlzV2H
-----END CERTIFICATE-----
Generated at Wed Jun 11 10:20:15 2025 by rpki-client