Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft
File:                     OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json)
Hash identifier:          +uEGoNvVF1PxxYgKL/pylQ5AlPvLmqUa/d/+l8uqGXs=
Subject key identifier:   27:5B:6D:FF:BA:D9:53:13:E4:52:CD:AE:31:C0:12:52:F0:9B:54:78
Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2
Certificate issuer:       /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2
Certificate serial:       083A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft
Manifest number:          0833
Signing time:             Fri 22 Aug 2025 20:55:50 +0000
Manifest this update:     Fri 22 Aug 2025 20:55:50 +0000
Manifest next update:     Fri 29 Aug 2025 20:55:50 +0000
Files and hashes:         1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: O3TiIh/mqF9YB/ckF+pRHxB7flQswpeIumAuWu1umno=)
                          2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: OwVRnVKX5TIRRxRa7tYPZCkquxRI/+jnc5rYmXmYkKM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl
                          rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Aug 2025 20:55:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2106 (0x83a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2
        Validity
            Not Before: Aug 22 20:55:50 2025 GMT
            Not After : Aug 29 20:55:50 2025 GMT
        Subject: CN=68a8d956-a693
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:2c:2c:90:94:c0:b4:4e:d2:ca:d8:fc:b7:8b:
                    99:b6:d7:9a:0e:76:c7:45:9c:d1:f7:af:cc:33:de:
                    40:28:80:26:71:aa:72:5a:f3:43:6c:69:68:ce:5d:
                    a2:fa:ae:0e:27:d3:cd:26:5d:6f:b8:1e:d8:cb:7b:
                    dd:b6:a8:f8:ad:b6:56:0e:f7:79:07:10:87:93:0f:
                    11:f5:b4:3d:1b:68:15:f5:44:4a:cc:83:9d:b2:ec:
                    f9:6a:a8:78:41:22:04:f7:c9:56:4f:4b:b2:88:eb:
                    96:95:83:be:8d:d9:5a:b3:02:bf:11:f9:86:ef:d0:
                    16:40:e9:88:8d:2a:ea:1d:fc:0c:6b:51:98:a3:43:
                    59:f3:c1:c0:85:21:cb:26:5d:26:37:18:77:1e:39:
                    21:0f:96:3f:46:07:d8:56:00:16:6f:2f:e9:64:5d:
                    31:cd:dd:fd:03:e6:67:6c:cc:fa:c3:49:a9:25:1f:
                    61:6e:27:ee:2b:48:98:28:a6:6c:48:48:17:9d:1e:
                    1f:6b:d5:d2:8b:a1:f0:34:bf:3f:2e:55:f4:21:1e:
                    39:92:78:0e:35:51:97:a9:34:14:69:ba:ca:fa:4a:
                    51:0f:46:e8:35:d4:71:e8:28:55:8f:08:5f:1b:fc:
                    b8:15:b1:65:e0:cc:d7:6f:93:ba:3f:2f:00:36:03:
                    43:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:5B:6D:FF:BA:D9:53:13:E4:52:CD:AE:31:C0:12:52:F0:9B:54:78
            X509v3 Authority Key Identifier:
                keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:66:70:79:c6:f5:ce:ba:cc:88:cc:0d:6d:65:5b:23:08:60:
         91:1f:23:d4:96:ab:a8:4d:72:d2:0d:57:95:55:75:4a:f4:36:
         d4:64:d6:dd:8e:fe:85:ee:fc:2a:c6:18:22:d0:b7:ff:ec:84:
         18:9e:6b:d8:4f:57:5c:ab:01:3c:c6:47:1a:2c:d2:a4:01:30:
         5c:86:27:55:6a:ed:51:2f:c0:4d:de:00:aa:14:3c:a5:1a:d7:
         8c:53:6a:31:39:56:05:7a:f2:66:30:5f:9a:b2:dc:74:a6:d4:
         9a:25:64:08:3f:10:e4:8d:10:ec:db:cb:89:b2:a1:19:d4:c5:
         f5:5f:dd:b9:90:1b:ec:69:cf:1a:36:ce:0e:52:a0:78:58:0d:
         48:50:85:58:cd:91:28:f9:a1:60:93:9d:d5:67:5e:2b:c0:89:
         6b:de:6c:d7:a3:08:7e:77:d7:da:8f:11:9f:47:4e:23:6a:a5:
         6e:80:6e:40:ac:89:a9:42:28:15:39:14:43:f2:f2:69:6f:d6:
         d2:5c:89:a6:1b:12:53:50:27:54:6e:46:b1:80:85:c2:06:9f:
         55:b3:95:8d:e7:33:07:a0:4b:e1:ab:85:7b:f5:8e:3f:eb:f7:
         bd:16:1c:a9:4a:0a:cf:f6:19:46:d3:37:8e:9c:1f:8e:6e:e7:
         47:d3:6b:c0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE
QzlEMTRDQTIwHhcNMjUwODIyMjA1NTUwWhcNMjUwODI5MjA1NTUwWjAYMRYwFAYD
VQQDEw02OGE4ZDk1Ni1hNjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzCwskJTAtE7Sytj8t4uZtteaDnbHRZzR96/MM95AKIAmcapyWvNDbGlozl2i
+q4OJ9PNJl1vuB7Yy3vdtqj4rbZWDvd5BxCHkw8R9bQ9G2gV9URKzIOdsuz5aqh4
QSIE98lWT0uyiOuWlYO+jdlaswK/EfmG79AWQOmIjSrqHfwMa1GYo0NZ88HAhSHL
Jl0mNxh3HjkhD5Y/RgfYVgAWby/pZF0xzd39A+ZnbMz6w0mpJR9hbifuK0iYKKZs
SEgXnR4fa9XSi6HwNL8/LlX0IR45kngONVGXqTQUabrK+kpRD0boNdRx6ChVjwhf
G/y4FbFl4MzXb5O6Py8ANgNDDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdbbf+6
2VMT5FLNrjHAElLwm1R4MB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw
MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU
S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF
Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAFZnB5xvXOusyIzA1tZVsjCGCRHyPUlquoTXLSDVeVVXVK9DbUZNbd
jv6F7vwqxhgi0Lf/7IQYnmvYT1dcqwE8xkcaLNKkATBchidVau1RL8BN3gCqFDyl
GteMU2oxOVYFevJmMF+astx0ptSaJWQIPxDkjRDs28uJsqEZ1MX1X925kBvsac8a
Ns4OUqB4WA1IUIVYzZEo+aFgk53VZ14rwIlr3mzXowh+d9fajxGfR04jaqVugG5A
rImpQigVORRD8vJpb9bSXImmGxJTUCdUbkaxgIXCBp9Vs5WN5zMHoEvhq4V79Y4/
6/e9FhypSgrP9hlG0zeOnB+ObudH02vA
-----END CERTIFICATE-----
Generated at Sat Aug 23 20:25:31 2025 by rpki-client