Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft
File:                     YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json)
Hash identifier:          +v4KhSAU+mNLCL5y77ZVENglGAETiRsVSVDvbq8NKMA=
Subject key identifier:   F0:E1:F8:DA:79:53:4E:44:48:05:70:9B:0F:F1:A3:A1:C9:3D:BE:B0
Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD
Certificate issuer:       /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD
Certificate serial:       AB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft
Manifest number:          A8
Signing time:             Thu 03 Jul 2025 06:20:24 +0000
Manifest this update:     Thu 03 Jul 2025 06:20:24 +0000
Manifest next update:     Thu 10 Jul 2025 06:20:24 +0000
Files and hashes:         1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: Abni/ZU3RV3WBc3Ij6Oh8WcFmlG4w/OQDl2HWCNClgU=)
                          2: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: tP/YOIdnoY7zTO5p4ZVWJihHDwAVW3mBLrg6H6OaTlM=)
                          3: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: AbR4JwNeIxvK28YKeU+rC69Mel7G0dy68L3LDpPyx/4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl
                          rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 171 (0xab)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD
        Validity
            Not Before: Jul  3 06:20:24 2025 GMT
            Not After : Jul 10 06:20:24 2025 GMT
        Subject: CN=68662128-fc9c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:d4:b9:5b:53:d8:fa:29:64:e5:58:be:e6:00:
                    60:79:56:5d:4e:27:ef:db:25:98:0a:6f:31:ba:b6:
                    c7:01:1e:03:aa:0c:b0:9f:39:04:bd:2d:42:d6:78:
                    39:24:88:e9:15:bd:1a:af:99:3a:ae:f0:7a:aa:26:
                    e9:c8:b0:48:45:88:29:16:69:c0:c7:af:d8:68:41:
                    4d:03:d5:28:58:eb:14:9c:b6:1f:13:50:15:db:1d:
                    ab:7a:d8:4e:cf:7d:df:8d:76:9d:27:8b:cf:aa:87:
                    5c:b4:a4:ac:fc:fe:b8:7a:77:86:11:99:dc:f1:c6:
                    19:f7:d3:88:d9:e9:96:69:cf:67:30:bb:92:e5:c8:
                    cc:8e:42:67:be:fc:a4:59:10:2b:71:eb:4a:2a:a4:
                    cd:01:d6:f3:27:01:d9:bb:b9:be:b3:89:06:ec:18:
                    dc:2f:d4:c4:91:e2:23:cd:4e:c0:5b:8d:c0:ee:be:
                    1c:0c:15:23:76:21:ba:15:b5:01:96:09:fc:02:8e:
                    58:60:53:b3:3d:9a:07:75:92:a7:7d:b5:58:d7:f0:
                    38:c6:36:a3:04:be:64:6a:e5:8d:8c:3a:ff:58:d9:
                    65:d7:61:e2:ea:54:68:36:2c:f9:69:4a:fb:cb:e7:
                    df:b9:ca:65:3a:a0:9e:80:cb:ca:a8:9e:d2:4f:f0:
                    03:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:E1:F8:DA:79:53:4E:44:48:05:70:9B:0F:F1:A3:A1:C9:3D:BE:B0
            X509v3 Authority Key Identifier:
                keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:0c:03:ce:c6:c3:f6:79:c2:ba:d0:f1:7e:4f:5a:3f:c3:d5:
         b5:b8:d9:3f:e9:6d:08:20:50:a1:1d:12:4f:97:fe:46:e3:b5:
         29:1c:93:74:f8:74:2b:8c:c5:cf:fe:9a:50:6f:25:84:92:b7:
         ae:f2:ad:cc:53:f0:61:7a:5f:62:00:f6:cf:0e:d4:46:ff:10:
         7c:55:08:3e:e2:0b:eb:43:78:db:df:bb:1c:be:44:04:ff:7e:
         00:43:b1:f3:c6:1f:08:3b:4c:46:69:d1:ef:be:3a:1c:23:08:
         a1:4d:36:ce:da:cb:98:99:bd:75:96:c3:c2:3b:a2:de:88:f6:
         43:f1:e1:0e:69:a7:8c:bf:ab:96:79:93:e1:e4:c3:07:32:5e:
         cc:b4:33:a1:dc:ab:1e:ad:11:b1:aa:3c:b0:80:9c:29:60:54:
         fc:a9:66:32:15:eb:f6:fa:c3:7a:2c:85:fb:8b:48:ce:39:da:
         db:64:1d:ef:f2:07:68:f1:e5:5b:4a:7b:27:9b:21:05:3b:6b:
         37:51:21:77:6e:4f:da:9e:f6:9f:14:7e:34:81:23:12:93:bf:
         d2:d9:da:e3:77:9f:b6:b5:16:b2:e4:13:da:e5:77:20:de:85:
         7d:fc:cd:a6:f4:b5:02:c3:35:e0:33:1b:66:bc:04:af:7c:bd:
         1e:63:f9:ab
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx
NTM0Nzg3RkQwHhcNMjUwNzAzMDYyMDI0WhcNMjUwNzEwMDYyMDI0WjAYMRYwFAYD
VQQDEw02ODY2MjEyOC1mYzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7NS5W1PY+ilk5Vi+5gBgeVZdTifv2yWYCm8xurbHAR4DqgywnzkEvS1C1ng5
JIjpFb0ar5k6rvB6qibpyLBIRYgpFmnAx6/YaEFNA9UoWOsUnLYfE1AV2x2rethO
z33fjXadJ4vPqodctKSs/P64eneGEZnc8cYZ99OI2emWac9nMLuS5cjMjkJnvvyk
WRArcetKKqTNAdbzJwHZu7m+s4kG7BjcL9TEkeIjzU7AW43A7r4cDBUjdiG6FbUB
lgn8Ao5YYFOzPZoHdZKnfbVY1/A4xjajBL5kauWNjDr/WNll12Hi6lRoNiz5aUr7
y+ffucplOqCegMvKqJ7ST/ADhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDh+Np5
U05ESAVwmw/xo6HJPb6wMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC
MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho
XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NS
bUJubnRyYnJMRFVWTkhoXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAdDAPOxsP2ecK60PF+T1o/w9W1uNk/6W0IIFChHRJPl/5G47UpHJN0
+HQrjMXP/ppQbyWEkreu8q3MU/Bhel9iAPbPDtRG/xB8VQg+4gvrQ3jb37scvkQE
/34AQ7Hzxh8IO0xGadHvvjocIwihTTbO2suYmb11lsPCO6LeiPZD8eEOaaeMv6uW
eZPh5MMHMl7MtDOh3KserRGxqjywgJwpYFT8qWYyFev2+sN6LIX7i0jOOdrbZB3v
8gdo8eVbSnsnmyEFO2s3USF3bk/anvafFH40gSMSk7/S2drjd5+2tRay5BPa5Xcg
3oV9/M2m9LUCwzXgMxtmvASvfL0eY/mr
-----END CERTIFICATE-----
Generated at Fri Jul 4 08:23:48 2025 by rpki-client