Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft
File:                     Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft (raw, json)
Hash identifier:          6gdy9AdcH8VNyFKM1GZp+6SuD7rHC+1p/kjGDdlY72A=
Subject key identifier:   C1:64:96:7E:24:5D:EB:EF:D9:A2:59:95:96:62:0B:ED:13:C4:E8:43
Authority key identifier: 52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B
Certificate issuer:       /CN=A91F9C95/serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B
Certificate serial:       0BBB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft
Manifest number:          0BB5
Signing time:             Sat 14 Jun 2025 18:47:27 +0000
Manifest this update:     Sat 14 Jun 2025 18:47:26 +0000
Manifest next update:     Sat 21 Jun 2025 18:47:26 +0000
Files and hashes:         1: Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl (hash: 3ZlFGWeGIoYSbG+ciwkxzc+VYta7fE+IsyQwjqgrLZU=)
                          2: C7F8C83C217311EA93A29F82C4F9AE02.roa (hash: r5uWTU+sYs/vGgm5oMxXApeoTDyzrDhvLimJL0rhlzg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl
                          rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 21 Jun 2025 18:47:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3003 (0xbbb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F9C95, serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B
        Validity
            Not Before: Jun 14 18:47:26 2025 GMT
            Not After : Jun 21 18:47:26 2025 GMT
        Subject: CN=684dc3bf-61a7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:39:a2:49:60:f6:4b:89:93:79:ed:c6:23:96:
                    cf:48:be:df:ed:62:ca:0b:ef:27:3c:f7:8a:be:73:
                    eb:66:8a:14:bc:2d:1e:c9:d8:d4:a8:6c:69:9d:1f:
                    39:80:75:fd:f5:27:2a:6c:bc:03:ba:78:4d:2b:a2:
                    d7:f7:64:16:d3:fd:4c:3a:66:2c:8c:f5:1a:5f:11:
                    7c:f5:44:92:21:99:b0:87:04:89:aa:e4:8e:9c:c2:
                    83:87:9a:85:2a:00:04:4a:78:6e:fb:ec:9b:5e:8c:
                    44:b7:78:9c:c2:14:cb:66:1f:ed:8f:d1:fb:23:08:
                    34:55:e8:93:a6:43:13:10:85:77:13:e0:b4:ae:64:
                    79:c4:2d:b5:f6:0e:6a:79:4c:00:03:4a:5c:ad:80:
                    02:86:fa:9c:66:e2:03:8c:22:31:42:e6:c4:c8:f0:
                    4a:fb:86:42:3f:fe:dc:5f:c7:ff:67:54:a0:37:d8:
                    ec:9c:2d:4d:34:a9:a1:20:e4:cb:23:ff:e4:5a:2b:
                    04:bb:69:2a:e5:49:26:50:80:99:1e:32:79:d4:96:
                    89:6c:29:05:93:ed:ea:5e:bb:d7:f0:f1:cf:5b:b8:
                    c2:42:b9:1d:56:bc:d2:76:74:c0:5a:0f:54:e1:c3:
                    99:aa:cd:b6:ed:4a:c5:1d:37:6f:83:bc:1d:21:8c:
                    71:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:64:96:7E:24:5D:EB:EF:D9:A2:59:95:96:62:0B:ED:13:C4:E8:43
            X509v3 Authority Key Identifier:
                keyid:52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:e6:63:5f:65:07:7d:29:58:c0:aa:79:0e:ed:08:2b:07:b5:
         35:3c:af:23:f6:08:6d:7c:0f:6c:9a:89:3f:8c:a9:d3:ed:dc:
         1a:ba:0e:27:5c:3c:2a:80:01:a5:8c:24:12:bf:24:4a:79:c8:
         d0:07:67:5a:94:f3:07:65:9b:5a:9e:6a:11:1d:91:9a:b4:79:
         96:81:22:65:8d:74:c2:66:c7:12:dc:db:6a:cd:9a:6d:52:54:
         d9:44:05:57:10:79:dc:ba:53:7e:6f:68:fa:50:56:d4:8e:4a:
         76:d8:24:0d:27:10:93:8d:f3:54:62:4b:b6:d0:3d:c1:af:d0:
         4f:17:ca:f0:70:be:26:24:fd:1a:ad:e6:51:e8:90:72:7f:eb:
         1e:1f:a7:56:cd:65:af:a3:64:11:9a:38:7f:cb:15:85:46:8c:
         8d:50:3d:e1:3f:e7:b9:9c:2c:cb:7a:76:d6:82:de:8e:0a:5a:
         b8:7b:92:32:d6:0f:8f:3e:ec:b7:7b:a6:73:70:1a:4a:32:c0:
         7b:56:9c:ad:8b:f6:93:0b:b2:f6:5d:80:12:20:4d:2c:4a:94:
         ef:20:a4:cd:33:df:74:e4:59:4c:5d:9e:50:e8:9f:26:d4:52:
         8a:e3:90:29:87:67:97:73:99:14:da:70:59:7c:d2:16:0b:9c:
         a3:3f:5b:57
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICC7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjlDOTUxMTAvBgNVBAUTKDUyQkY2RjYyRUJDQTI2QjFEQzQyN0ZCRUFGRTcyMEZC
QjA5N0MyMUIwHhcNMjUwNjE0MTg0NzI2WhcNMjUwNjIxMTg0NzI2WjAYMRYwFAYD
VQQDEw02ODRkYzNiZi02MWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7TmiSWD2S4mTee3GI5bPSL7f7WLKC+8nPPeKvnPrZooUvC0eydjUqGxpnR85
gHX99ScqbLwDunhNK6LX92QW0/1MOmYsjPUaXxF89USSIZmwhwSJquSOnMKDh5qF
KgAESnhu++ybXoxEt3icwhTLZh/tj9H7Iwg0VeiTpkMTEIV3E+C0rmR5xC219g5q
eUwAA0pcrYAChvqcZuIDjCIxQubEyPBK+4ZCP/7cX8f/Z1SgN9jsnC1NNKmhIOTL
I//kWisEu2kq5UkmUICZHjJ51JaJbCkFk+3qXrvX8PHPW7jCQrkdVrzSdnTAWg9U
4cOZqs227UrFHTdvg7wdIYxxXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFkln4k
Xevv2aJZlZZiC+0TxOhDMB8GA1UdIwQYMBaAFFK/b2Lryiax3EJ/vq/nIPuwl8Ib
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM5NS9CQTNFQzg2RTIx
NzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0pySGNRbi0tci1jZy03Q1h3
aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VyOXZZdXZLSnJIY1FuLS1yLWNnLTdDWHdocy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
OUM5NS9CQTNFQzg2RTIxNzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0py
SGNRbi0tci1jZy03Q1h3aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCG5mNfZQd9KVjAqnkO7QgrB7U1PK8j9ghtfA9smok/jKnT7dwaug4n
XDwqgAGljCQSvyRKecjQB2dalPMHZZtanmoRHZGatHmWgSJljXTCZscS3NtqzZpt
UlTZRAVXEHnculN+b2j6UFbUjkp22CQNJxCTjfNUYku20D3Br9BPF8rwcL4mJP0a
reZR6JByf+seH6dWzWWvo2QRmjh/yxWFRoyNUD3hP+e5nCzLenbWgt6OClq4e5Iy
1g+PPuy3e6ZzcBpKMsB7Vpyti/aTC7L2XYASIE0sSpTvIKTNM9905FlMXZ5Q6J8m
1FKK45Aph2eXc5kU2nBZfNIWC5yjP1tX
-----END CERTIFICATE-----
Generated at Sun Jun 15 11:29:44 2025 by rpki-client