Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft
File:                     2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json)
Hash identifier:          0DL8lEyunH2hnfuUa/2vL0ZZw4ZFY1ZhxG379I0WGDg=
Subject key identifier:   FE:88:19:54:7F:63:CE:E5:86:3E:D0:A6:4C:6D:03:51:CC:C5:78:C2
Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45
Certificate issuer:       /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445
Certificate serial:       029A
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft
Manifest number:          029A
Signing time:             Thu 03 Jul 2025 01:59:10 +0000
Manifest this update:     Thu 03 Jul 2025 01:59:10 +0000
Manifest next update:     Thu 10 Jul 2025 01:59:10 +0000
Files and hashes:         1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: yRld90B4aHnZ3YvuDEQlZOfyFQp4S0pEgN7E7G4exZg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl
                          rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 01:59:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 666 (0x29a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445
        Validity
            Not Before: Jul  3 01:59:10 2025 GMT
            Not After : Jul 10 01:59:10 2025 GMT
        Subject: CN=6865e3ee-4308
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:0f:4b:f9:67:f2:7b:4b:67:84:a0:0b:5c:c4:
                    dd:d5:04:db:95:7b:87:51:98:14:46:63:76:f3:3f:
                    fb:e0:cb:62:ea:25:18:0c:50:87:d2:ea:11:e0:08:
                    e8:c5:8b:f1:d2:a3:c7:d7:9a:45:d5:38:1d:cb:bb:
                    58:f3:5b:8d:fe:3f:7a:e5:e9:57:66:fc:b6:52:e9:
                    50:00:64:cb:0e:a5:b2:d3:6e:81:18:8d:92:0f:9c:
                    15:f8:84:0f:dd:e0:74:0b:72:06:9b:ed:59:cf:dd:
                    db:bc:4c:2c:04:16:57:9f:fb:92:71:02:7d:a3:9a:
                    c8:cc:9b:35:f0:3f:9b:9b:2a:d5:0c:0d:ec:0c:00:
                    d1:e2:65:c1:b8:20:96:4b:05:25:29:97:6c:1d:f5:
                    25:91:be:f3:34:9c:7d:c5:b0:92:73:2f:eb:57:f9:
                    bc:2a:f9:47:35:4d:0b:79:9f:a1:76:bf:29:08:e4:
                    0f:dd:7e:03:25:bb:4c:02:5a:9c:9e:4c:fa:75:3f:
                    b2:be:67:f7:fd:47:00:d1:07:34:09:ad:29:02:7f:
                    e8:a1:b2:07:34:6d:08:6e:dd:6b:8e:d2:07:78:f3:
                    95:76:6a:15:93:46:bd:7b:dc:d9:d4:8a:d5:34:53:
                    da:8e:1b:9f:8a:58:cd:d6:21:0d:d6:9f:b6:4b:02:
                    2d:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:88:19:54:7F:63:CE:E5:86:3E:D0:A6:4C:6D:03:51:CC:C5:78:C2
            X509v3 Authority Key Identifier:
                keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:6b:2c:8c:b5:7a:a4:34:42:d0:64:a6:0c:9e:78:ff:9a:18:
         13:ad:18:11:3e:b3:18:02:3e:04:50:71:b0:4e:76:20:b0:dd:
         78:c7:eb:73:5c:20:d2:41:eb:0f:47:2e:78:2c:a1:7b:da:62:
         1a:ab:50:d3:d6:cb:8f:4d:22:6e:44:d8:9f:1a:85:b6:65:15:
         4c:be:b7:d2:13:58:f6:8f:0f:47:1d:4c:1f:a2:7f:4b:50:d9:
         4a:67:14:d3:2c:82:71:08:00:4d:37:94:a4:75:ce:e0:9a:9f:
         6d:a1:1d:38:24:85:61:f2:30:0b:8e:99:00:54:5e:35:76:92:
         a8:be:ba:4e:1d:6a:18:e1:65:da:17:97:14:93:2c:bd:ce:9b:
         d2:ac:bc:93:72:96:5f:06:96:9a:f8:10:ba:89:c8:ee:42:f3:
         13:67:e1:58:b7:1d:48:e9:dc:45:e0:45:e3:fc:71:f9:3d:0f:
         45:ff:42:cf:b6:73:42:a7:94:44:99:dd:53:17:53:63:b0:61:
         a5:a6:b3:fb:6f:21:70:0e:49:4f:e5:80:42:b9:1a:44:59:45:
         05:c3:62:cf:78:f6:d0:93:53:6a:ad:cc:56:2c:9b:f1:81:7c:
         33:27:bb:71:b4:28:2f:98:8a:ec:e8:5b:8f:a0:64:ba:b8:e7:
         64:51:3f:87
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw
RjBBN0I0NDUwHhcNMjUwNzAzMDE1OTEwWhcNMjUwNzEwMDE1OTEwWjAYMRYwFAYD
VQQDEw02ODY1ZTNlZS00MzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApw9L+Wfye0tnhKALXMTd1QTblXuHUZgURmN28z/74Mti6iUYDFCH0uoR4Ajo
xYvx0qPH15pF1Tgdy7tY81uN/j965elXZvy2UulQAGTLDqWy026BGI2SD5wV+IQP
3eB0C3IGm+1Zz93bvEwsBBZXn/uScQJ9o5rIzJs18D+bmyrVDA3sDADR4mXBuCCW
SwUlKZdsHfUlkb7zNJx9xbCScy/rV/m8KvlHNU0LeZ+hdr8pCOQP3X4DJbtMAlqc
nkz6dT+yvmf3/UcA0Qc0Ca0pAn/oobIHNG0Ibt1rjtIHePOVdmoVk0a9e9zZ1IrV
NFPajhufiljN1iEN1p+2SwIt+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6IGVR/
Y87lhj7QpkxtA1HMxXjCMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5
NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250
RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy
RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4
cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB8ayyMtXqkNELQZKYMnnj/mhgTrRgRPrMYAj4EUHGwTnYgsN14x+tz
XCDSQesPRy54LKF72mIaq1DT1suPTSJuRNifGoW2ZRVMvrfSE1j2jw9HHUwfon9L
UNlKZxTTLIJxCABNN5Skdc7gmp9toR04JIVh8jALjpkAVF41dpKovrpOHWoY4WXa
F5cUkyy9zpvSrLyTcpZfBpaa+BC6icjuQvMTZ+FYtx1I6dxF4EXj/HH5PQ9F/0LP
tnNCp5REmd1TF1NjsGGlprP7byFwDklP5YBCuRpEWUUFw2LPePbQk1NqrcxWLJvx
gXwzJ7txtCgvmIrs6FuPoGS6uOdkUT+H
-----END CERTIFICATE-----
Generated at Fri Jul 4 07:11:04 2025 by rpki-client