Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft
File:                     b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json)
Hash identifier:          HfSRRqRYuFDxrTCoZE8DhONBs9z+a5OKkIeCZ7FhiGk=
Subject key identifier:   9C:0E:C3:09:F3:CC:40:99:B3:C2:3D:0A:E1:B2:B4:02:20:07:BD:FB
Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07
Certificate issuer:       /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07
Certificate serial:       78
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft
Manifest number:          73
Signing time:             Sat 19 Jul 2025 07:10:00 +0000
Manifest this update:     Sat 19 Jul 2025 07:10:00 +0000
Manifest next update:     Sat 26 Jul 2025 07:10:00 +0000
Files and hashes:         1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: PyP+RV+L7vPKVV3QgRfdM/c7T2cQ1vjxofkU6c3d5ZA=)
                          2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl
                          rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 07:09:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 120 (0x78)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07
        Validity
            Not Before: Jul 19 07:10:00 2025 GMT
            Not After : Jul 26 07:10:00 2025 GMT
        Subject: CN=687b44c8-4591
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:19:59:7d:4d:32:78:2f:06:8f:4b:bb:ee:66:
                    aa:00:25:dc:4c:eb:5f:a1:89:f7:ba:2e:c3:a1:2a:
                    10:3a:8a:15:e0:3f:09:b4:91:c0:65:5e:5a:b3:09:
                    1f:76:58:de:d9:fa:b4:92:48:ca:bd:d2:73:10:b1:
                    91:4b:76:2e:ad:fc:85:a6:55:d0:bd:2c:f7:d4:5f:
                    10:87:a9:5d:fd:b4:8f:a7:93:0a:20:6f:34:bf:79:
                    d0:4d:72:02:70:3f:67:bf:8c:99:42:4c:90:0a:eb:
                    0d:cc:13:a9:bd:f3:de:30:33:6b:07:ec:da:ab:11:
                    d9:64:78:0a:e5:9c:4c:9a:fe:8e:4b:b7:bd:1c:40:
                    e1:24:2f:32:9f:bc:8c:30:b5:17:49:c3:05:c9:7f:
                    88:5e:aa:9d:7e:ac:8f:d3:58:74:15:0e:5c:e2:04:
                    00:bf:26:9c:a9:ca:61:62:0e:e3:fb:92:e9:e7:2c:
                    4a:29:68:bb:9f:ab:45:91:9e:70:00:19:de:52:4c:
                    89:ba:16:92:7d:cd:c8:63:5f:06:b6:02:71:a4:87:
                    38:ee:bc:9f:b4:90:17:6e:e4:e1:36:58:b1:7a:8b:
                    76:d2:26:34:8a:98:48:91:cb:13:4f:8c:99:7d:b3:
                    63:29:26:63:7c:fc:99:73:92:c9:c4:88:19:88:d6:
                    a6:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:0E:C3:09:F3:CC:40:99:B3:C2:3D:0A:E1:B2:B4:02:20:07:BD:FB
            X509v3 Authority Key Identifier:
                keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:74:90:ff:01:9b:a1:bd:35:57:c5:67:bd:91:34:1e:4b:60:
         00:fb:97:b2:b7:d5:73:4d:d5:ad:b5:55:d5:73:f0:56:46:ac:
         55:cd:70:44:06:d5:d6:a3:d3:d7:1e:61:a1:a4:c1:08:10:e1:
         82:c1:7b:2c:4b:d1:98:e1:de:af:e1:87:3f:44:5c:20:d7:c6:
         14:16:73:2e:66:1c:2a:e4:84:71:aa:aa:fe:ef:fe:71:dd:ff:
         c5:5d:10:5c:ff:dd:d0:c8:e6:f8:8c:86:f9:b0:8e:12:6c:7c:
         65:d6:da:7e:0e:25:7a:40:5d:30:32:3a:22:3c:d7:e9:ac:86:
         5c:f7:aa:98:1b:87:6c:3a:f4:89:31:03:97:c6:78:7a:1e:23:
         28:24:13:96:97:d3:e3:71:6b:82:17:d1:76:7f:36:44:15:cc:
         2e:4b:6f:5c:76:3b:9b:74:57:65:f9:df:dd:c2:6b:78:a7:fa:
         c6:89:8d:c6:53:ce:9e:04:40:b7:ab:53:f5:86:2a:de:64:82:
         8c:21:03:16:7c:d6:74:6e:58:79:5c:5c:c1:79:1f:97:f3:64:
         81:49:28:62:59:5e:e8:7f:98:f2:1c:a6:77:d3:98:25:92:5b:
         c1:50:0a:ff:eb:9c:ec:c1:05:2a:fb:39:f1:f5:d2:62:cc:ad:
         e5:29:87:24
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF
OEJFMzExMC8GA1UEBRMoNkZEMDg4N0EzOTAzRTNENkUxN0JCOUNGRDhFRjI2OTI3
MEJBQ0IwNzAeFw0yNTA3MTkwNzEwMDBaFw0yNTA3MjYwNzEwMDBaMBgxFjAUBgNV
BAMTDTY4N2I0NGM4LTQ1OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCpGVl9TTJ4LwaPS7vuZqoAJdxM61+hife6LsOhKhA6ihXgPwm0kcBlXlqzCR92
WN7Z+rSSSMq90nMQsZFLdi6t/IWmVdC9LPfUXxCHqV39tI+nkwogbzS/edBNcgJw
P2e/jJlCTJAK6w3ME6m9894wM2sH7NqrEdlkeArlnEya/o5Lt70cQOEkLzKfvIww
tRdJwwXJf4heqp1+rI/TWHQVDlziBAC/JpypymFiDuP7kunnLEopaLufq0WRnnAA
Gd5STIm6FpJ9zchjXwa2AnGkhzjuvJ+0kBdu5OE2WLF6i3bSJjSKmEiRyxNPjJl9
s2MpJmN8/JlzksnEiBmI1qb7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnA7DCfPM
QJmzwj0K4bK0AiAHvfswHwYDVR0jBBgwFoAUb9CIejkD49bhe7nP2O8mknC6ywcw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0U2RTZCRTQ0QkY5
QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3
Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvYjlDSWVqa0Q0OWJoZTduUDJPOG1rbkM2eXdjLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4
QkUzL0U2RTZCRTQ0QkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDli
aGU3blAyTzhta25DNnl3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBACh0kP8Bm6G9NVfFZ72RNB5LYAD7l7K31XNN1a21VdVz8FZGrFXNcEQG
1daj09ceYaGkwQgQ4YLBeyxL0Zjh3q/hhz9EXCDXxhQWcy5mHCrkhHGqqv7v/nHd
/8VdEFz/3dDI5viMhvmwjhJsfGXW2n4OJXpAXTAyOiI81+mshlz3qpgbh2w69Ikx
A5fGeHoeIygkE5aX0+Nxa4IX0XZ/NkQVzC5Lb1x2O5t0V2X5393Ca3in+saJjcZT
zp4EQLerU/WGKt5kgowhAxZ81nRuWHlcXMF5H5fzZIFJKGJZXuh/mPIcpnfTmCWS
W8FQCv/rnOzBBSr7OfH10mLMreUphyQ=
-----END CERTIFICATE-----
Generated at Sun Jul 20 21:56:48 2025 by rpki-client