Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
File:                     kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json)
Hash identifier:          PE70thtVl7bZ03g+ji46HhxrRG6A1oRs+DJLupbRWY4=
Subject key identifier:   A5:0D:E1:50:71:7C:2D:E4:46:5A:25:64:51:C9:04:6D:A0:D1:F8:6C
Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03
Certificate issuer:       /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03
Certificate serial:       0571
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
Manifest number:          055F
Signing time:             Fri 22 Aug 2025 23:35:45 +0000
Manifest this update:     Fri 22 Aug 2025 23:35:45 +0000
Manifest next update:     Fri 29 Aug 2025 23:35:45 +0000
Files and hashes:         1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: rOWIKNOHKz+iZsh0/HaGxt00RVs7EWvMNy9q1NdPjUc=)
                          2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: M+wNfsm6YQmLCJcAzey1G7TcdY1od2Gihz4uSm0Idd0=)
                          3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: XeS+UNfddkVQ+DW6xIplHBmjPx6deLGv6cSwFbKYRAo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl
                          rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Aug 2025 23:35:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1393 (0x571)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03
        Validity
            Not Before: Aug 22 23:35:45 2025 GMT
            Not After : Aug 29 23:35:45 2025 GMT
        Subject: CN=68a8fed1-50ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:5a:e9:37:1f:ab:b9:6c:7c:12:ce:70:8d:2c:
                    49:10:fb:07:63:c1:dc:57:b8:0e:d6:99:31:25:a2:
                    78:83:4d:5d:7a:ea:ce:30:a8:55:58:c0:68:64:ed:
                    22:98:93:51:b7:ab:7e:3f:e0:ba:f7:81:d8:5f:b4:
                    7c:e9:8b:2d:ac:83:c2:fa:3d:32:75:17:af:1a:c6:
                    fa:81:6f:78:33:f1:52:47:b3:f9:e7:c6:f4:69:06:
                    99:24:00:d9:6b:27:00:4a:00:c7:1a:e4:af:e5:bf:
                    b7:83:e8:0e:bf:84:23:91:3e:d6:9c:50:0f:d8:f1:
                    d6:54:6b:b7:55:08:17:fd:0c:2d:3c:30:31:fb:f2:
                    bb:a1:da:60:ed:0b:64:f4:b0:0d:29:7b:a6:37:01:
                    4f:ea:01:07:aa:b6:6a:1c:d0:bc:19:f6:a1:5d:dd:
                    08:dc:d2:06:9d:a2:74:7b:41:08:a7:fc:6e:95:22:
                    b6:24:de:60:b1:03:91:d5:35:3d:24:ed:56:a6:d3:
                    2c:fa:17:bc:89:3a:7e:3b:a6:22:ab:d2:f4:86:66:
                    11:0d:19:7b:e7:14:5e:ca:42:d0:87:21:6b:a5:79:
                    63:f9:ce:3c:b3:32:d5:f9:8d:a6:36:36:22:43:ca:
                    3f:bd:8a:65:dc:dc:88:ce:03:e1:54:c0:3d:ae:51:
                    fa:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:0D:E1:50:71:7C:2D:E4:46:5A:25:64:51:C9:04:6D:A0:D1:F8:6C
            X509v3 Authority Key Identifier:
                keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:d4:10:2f:14:2b:79:2d:1a:ef:35:f3:e2:a7:0c:56:5e:fb:
         91:ea:f5:c7:92:36:ea:df:31:84:98:a3:06:38:83:ac:03:e8:
         1a:75:58:c0:27:ea:04:83:c7:7c:23:82:eb:9a:5a:39:93:15:
         de:4a:12:d5:9e:45:44:68:53:a9:7d:86:a5:88:2a:c7:25:3f:
         cc:df:d4:bc:c0:52:4f:e6:a6:88:fa:9c:41:5f:73:55:5f:c7:
         f4:ac:b8:d3:8e:2c:5a:5f:88:d2:ed:37:ce:99:0e:20:52:c0:
         c2:24:2d:0d:48:12:bc:30:59:c0:5e:5f:a9:dd:39:7b:e6:cb:
         eb:b5:24:b8:4b:a9:32:01:f3:dc:fe:ca:8b:ef:d1:d2:64:68:
         8d:df:8a:26:d6:a8:bc:a0:6f:38:1b:08:da:50:cd:33:8f:29:
         f2:8a:f2:14:1a:28:df:dc:7b:75:2e:40:19:f4:ee:a1:29:93:
         33:3f:31:27:aa:5b:d5:58:17:ac:30:2f:8c:bb:a8:55:9c:92:
         63:07:da:02:f0:de:a9:48:ce:43:04:44:c1:d2:56:4d:e3:3b:
         26:b2:15:60:7b:fc:53:54:da:b2:13:c1:e8:3e:80:40:53:ee:
         f6:25:e6:2f:1b:e9:89:c2:b1:9e:af:e0:82:fc:ca:5f:c0:6d:
         ef:8e:a8:24
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1
NDI2QTFBMDMwHhcNMjUwODIyMjMzNTQ1WhcNMjUwODI5MjMzNTQ1WjAYMRYwFAYD
VQQDEw02OGE4ZmVkMS01MGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAulrpNx+ruWx8Es5wjSxJEPsHY8HcV7gO1pkxJaJ4g01deurOMKhVWMBoZO0i
mJNRt6t+P+C694HYX7R86YstrIPC+j0ydRevGsb6gW94M/FSR7P558b0aQaZJADZ
aycASgDHGuSv5b+3g+gOv4QjkT7WnFAP2PHWVGu3VQgX/QwtPDAx+/K7odpg7Qtk
9LANKXumNwFP6gEHqrZqHNC8GfahXd0I3NIGnaJ0e0EIp/xulSK2JN5gsQOR1TU9
JO1WptMs+he8iTp+O6Yiq9L0hmYRDRl75xReykLQhyFrpXlj+c48szLV+Y2mNjYi
Q8o/vYpl3NyIzgPhVMA9rlH6nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUN4VBx
fC3kRlolZFHJBG2g0fhsMB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF
NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH
Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX
Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBc1BAvFCt5LRrvNfPipwxWXvuR6vXHkjbq3zGEmKMGOIOsA+gadVjA
J+oEg8d8I4Lrmlo5kxXeShLVnkVEaFOpfYaliCrHJT/M39S8wFJP5qaI+pxBX3NV
X8f0rLjTjixaX4jS7TfOmQ4gUsDCJC0NSBK8MFnAXl+p3Tl75svrtSS4S6kyAfPc
/sqL79HSZGiN34om1qi8oG84GwjaUM0zjynyivIUGijf3Ht1LkAZ9O6hKZMzPzEn
qlvVWBesMC+Mu6hVnJJjB9oC8N6pSM5DBETB0lZN4zsmshVge/xTVNqyE8HoPoBA
U+72JeYvG+mJwrGer+CC/MpfwG3vjqgk
-----END CERTIFICATE-----
Generated at Sun Aug 24 03:29:31 2025 by rpki-client