Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
File:                     2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json)
Hash identifier:          pwhLD9CRzoPe27ELj3/4BL+1xjoQMGcwYGMf3cQazxs=
Subject key identifier:   E6:13:12:61:6C:1C:E5:AF:5E:42:73:FB:5B:6D:25:FD:CF:1C:4C:FC
Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3
Certificate issuer:       /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3
Certificate serial:       0271
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
Manifest number:          026C
Signing time:             Sat 23 Aug 2025 01:59:15 +0000
Manifest this update:     Sat 23 Aug 2025 01:59:15 +0000
Manifest next update:     Sat 30 Aug 2025 01:59:15 +0000
Files and hashes:         1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: i5EIAQuU3cX/SI8IAY0wH+6GD5GgrFqd4Z5Zqbtqh6c=)
                          2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: ULGKwEOFyOrsmtR9RLcNHZ1T/UHrIBp7ZTGPrjal32s=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl
                          rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Aug 2025 01:59:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 625 (0x271)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3
        Validity
            Not Before: Aug 23 01:59:15 2025 GMT
            Not After : Aug 30 01:59:15 2025 GMT
        Subject: CN=68a92073-c8fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:7e:31:60:b2:38:5f:ff:39:dc:e8:5e:1e:6c:
                    c8:6b:ad:33:b8:27:f8:b3:e1:bd:c1:91:91:7e:0d:
                    5c:ce:37:90:a5:45:2b:1d:b7:c8:58:db:33:f8:70:
                    fb:5a:89:3c:ad:ee:35:59:63:e7:d2:b9:36:9a:e8:
                    40:fd:c7:07:35:a0:4f:13:87:70:0a:1d:8a:98:e3:
                    3e:4c:b1:93:5f:31:b7:6a:96:c4:7e:e8:eb:82:1b:
                    02:6e:f3:8f:9a:ef:d4:0f:80:45:0b:7b:eb:70:7c:
                    c1:28:55:90:12:06:a8:c9:fb:23:23:ad:63:7d:f5:
                    6c:0e:68:25:02:22:68:33:a0:37:32:72:53:73:56:
                    57:08:21:7a:68:ae:f1:0d:b8:8b:40:07:9a:27:c3:
                    5f:da:cf:7c:bf:04:c5:08:bd:16:07:a0:33:22:57:
                    76:6f:a7:f6:e9:21:bc:2c:96:74:8f:0a:33:6a:28:
                    6a:6b:30:6d:8e:a2:e0:b3:a2:c4:ee:10:68:61:5f:
                    98:8d:d2:11:70:9a:56:b0:14:4b:6d:bd:2d:ef:68:
                    82:cd:26:c9:1d:82:67:74:ee:66:d2:61:5d:dc:a4:
                    45:f4:86:85:55:8a:dc:a4:59:e7:bc:d6:c1:3c:3b:
                    3e:3a:48:c8:dc:39:95:da:3b:9a:4a:2d:e4:7f:60:
                    06:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:13:12:61:6C:1C:E5:AF:5E:42:73:FB:5B:6D:25:FD:CF:1C:4C:FC
            X509v3 Authority Key Identifier:
                keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:91:89:5b:39:c1:84:15:d5:46:a9:cc:49:52:db:67:ae:83:
         30:6f:b3:92:ff:19:ea:80:f3:ba:10:19:33:91:70:0f:0c:80:
         2c:cf:21:15:36:cf:cc:bd:28:52:8b:60:16:4d:09:24:67:fa:
         42:26:d3:3d:40:e3:86:01:9c:a6:51:63:3f:63:58:57:80:da:
         ea:67:05:53:76:b9:15:71:2d:01:07:ab:b0:a2:a5:ff:f0:53:
         8a:06:d8:16:b2:38:da:d1:8b:5e:07:4f:88:e8:a3:d9:45:2a:
         16:25:5f:f1:9a:f5:88:b5:d9:d1:c4:35:ba:d2:f4:f5:09:b4:
         c0:88:87:3b:8e:ca:e5:aa:83:55:3d:82:fd:03:a3:58:ec:e2:
         b4:95:66:ac:da:04:d6:27:37:9a:7e:61:1e:06:ec:76:b0:98:
         1e:da:6c:85:bd:ad:ed:35:46:10:40:e9:30:8b:cd:06:7c:83:
         85:fb:10:8a:3b:00:c9:35:cf:2e:30:1e:80:31:7b:74:dd:3b:
         a0:28:1c:c4:cf:81:16:a1:06:df:a1:6c:ed:01:a3:ca:52:b9:
         cc:d8:45:2e:4e:8c:0d:94:c5:2c:e9:14:80:80:07:26:8b:df:
         e0:a6:26:e6:62:6a:81:a2:ce:47:d9:37:73:6c:86:db:f4:eb:
         c9:96:67:45
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5
QTgxNEZDQzMwHhcNMjUwODIzMDE1OTE1WhcNMjUwODMwMDE1OTE1WjAYMRYwFAYD
VQQDEw02OGE5MjA3My1jOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAm34xYLI4X/853OheHmzIa60zuCf4s+G9wZGRfg1czjeQpUUrHbfIWNsz+HD7
Wok8re41WWPn0rk2muhA/ccHNaBPE4dwCh2KmOM+TLGTXzG3apbEfujrghsCbvOP
mu/UD4BFC3vrcHzBKFWQEgaoyfsjI61jffVsDmglAiJoM6A3MnJTc1ZXCCF6aK7x
DbiLQAeaJ8Nf2s98vwTFCL0WB6AzIld2b6f26SG8LJZ0jwozaihqazBtjqLgs6LE
7hBoYV+YjdIRcJpWsBRLbb0t72iCzSbJHYJndO5m0mFd3KRF9IaFVYrcpFnnvNbB
PDs+OkjI3DmV2juaSi3kf2AG/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYTEmFs
HOWvXkJz+1ttJf3PHEz8MB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0
NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf
TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5
YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBfkYlbOcGEFdVGqcxJUttnroMwb7OS/xnqgPO6EBkzkXAPDIAszyEV
Ns/MvShSi2AWTQkkZ/pCJtM9QOOGAZymUWM/Y1hXgNrqZwVTdrkVcS0BB6uwoqX/
8FOKBtgWsjja0YteB0+I6KPZRSoWJV/xmvWItdnRxDW60vT1CbTAiIc7jsrlqoNV
PYL9A6NY7OK0lWas2gTWJzeafmEeBux2sJge2myFva3tNUYQQOkwi80GfIOF+xCK
OwDJNc8uMB6AMXt03TugKBzEz4EWoQbfoWztAaPKUrnM2EUuTowNlMUs6RSAgAcm
i9/gpibmYmqBos5H2TdzbIbb9OvJlmdF
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:58:18 2025 by rpki-client