Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft
File:                     vsKCSG834xbxe1ILRVKHvDB_ieg.mft (raw, json)
Hash identifier:          QnAeyWulB1lXPQrr1sqxF855slqsOEKvFXROSfoOruE=
Subject key identifier:   98:18:2B:79:FC:BD:B5:1C:26:FB:98:C2:4C:5B:34:72:E1:8D:1C:FC
Authority key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8
Certificate issuer:       /CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8
Certificate serial:       0100
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft
Manifest number:          FE
Signing time:             Sat 23 Aug 2025 05:16:01 +0000
Manifest this update:     Sat 23 Aug 2025 05:16:00 +0000
Manifest next update:     Sat 30 Aug 2025 05:16:00 +0000
Files and hashes:         1: vsKCSG834xbxe1ILRVKHvDB_ieg.crl (hash: IuaKbRhVWv+egXiwszqa3JNgz6iBfAOVihSbonloqPE=)
                          2: 71403B04F7E511EEBC67981CC4F9AE02.roa (hash: gx9z09oQ5hTA8YH4iSWgc7528eikGurKJ+1nJAQYPAQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl
                          rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Aug 2025 05:16:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 256 (0x100)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918A469, serialNumber=BEC282486F37E316F17B520B455287BC307F89E8
        Validity
            Not Before: Aug 23 05:16:00 2025 GMT
            Not After : Aug 30 05:16:00 2025 GMT
        Subject: CN=68a94e91-37af
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:4b:d8:51:80:b3:10:39:c2:eb:ef:1b:98:c3:
                    05:80:8a:6a:c4:5e:91:2c:27:00:6e:77:7f:50:6c:
                    9b:68:ed:0f:54:60:f1:a9:c8:22:65:e7:35:27:ef:
                    ff:f4:24:69:bc:6a:77:df:6f:b6:cd:72:ed:84:87:
                    b5:36:65:5f:b8:82:07:38:20:e6:f6:54:45:9d:af:
                    5d:91:22:2e:5c:a5:a8:1d:60:15:a0:89:a1:a9:bb:
                    f5:f3:a8:55:de:2b:b4:5f:fc:be:24:d3:67:a1:aa:
                    b9:85:fe:ad:ad:24:7b:01:fc:e7:c3:0e:83:3e:b8:
                    3b:4e:f8:e8:8e:6b:d9:d2:ee:3c:fa:92:83:1f:89:
                    10:e9:26:d6:63:25:72:6a:06:e0:67:2f:1d:7a:48:
                    f1:62:73:1e:1d:50:21:fc:c8:99:01:45:98:b9:4f:
                    6a:17:1e:05:55:b0:fb:d7:c8:35:18:56:9e:fc:83:
                    3b:dc:b9:f6:4b:f6:c9:4f:75:e5:95:ae:9f:27:d7:
                    cb:da:35:b4:23:fb:4d:8d:b9:18:01:97:4b:f7:69:
                    7f:dd:3b:da:59:96:13:41:4e:7b:02:96:07:8e:66:
                    f7:89:cc:f6:47:e5:46:2f:c8:71:d0:9a:ac:79:21:
                    16:76:f0:5f:ae:6d:91:3c:64:92:a2:66:b8:2d:06:
                    3d:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:18:2B:79:FC:BD:B5:1C:26:FB:98:C2:4C:5B:34:72:E1:8D:1C:FC
            X509v3 Authority Key Identifier:
                keyid:BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:5f:9f:15:c1:22:65:4e:b3:d4:98:b1:4e:d2:91:96:82:61:
         c9:4e:10:a0:32:e9:59:9b:13:4d:ef:4c:62:bb:5d:53:03:1d:
         47:f8:a7:35:f4:74:f4:fb:e6:35:f4:09:52:ba:22:96:66:2f:
         8f:70:76:d6:a5:33:2f:c2:f4:75:43:53:bd:69:a2:98:9f:04:
         a9:f8:93:65:f7:58:2a:7a:78:28:7b:d8:6d:a6:6b:33:a8:fa:
         93:98:79:30:fe:fb:93:80:f7:cf:26:ff:61:92:14:b8:d2:00:
         e9:00:40:0a:08:f5:6e:44:ec:bd:78:1e:67:b0:40:8c:4d:bc:
         6c:42:ff:3a:46:16:d9:c7:56:a5:0f:e4:36:2e:1c:96:3d:c5:
         e5:9f:6c:6d:f1:40:f9:31:97:67:89:c0:2e:c7:f5:c5:69:0a:
         d1:d3:fb:db:2b:6f:c2:dc:03:0a:c5:7f:90:6d:3a:8a:72:2b:
         da:f6:77:c2:b5:5c:3d:17:6e:cd:98:20:40:43:85:96:86:5e:
         d3:a5:9f:bc:92:62:27:7b:56:cc:25:20:ea:16:ca:b3:66:72:
         9e:54:cc:3e:73:3b:04:d0:c9:01:e8:71:66:d6:d3:ee:06:b6:
         1f:ca:a9:18:0d:a4:b9:78:90:30:de:1e:54:e0:dc:45:42:43:
         b5:10:46:de
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEE0NjkxMTAvBgNVBAUTKEJFQzI4MjQ4NkYzN0UzMTZGMTdCNTIwQjQ1NTI4N0JD
MzA3Rjg5RTgwHhcNMjUwODIzMDUxNjAwWhcNMjUwODMwMDUxNjAwWjAYMRYwFAYD
VQQDEw02OGE5NGU5MS0zN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4UvYUYCzEDnC6+8bmMMFgIpqxF6RLCcAbnd/UGybaO0PVGDxqcgiZec1J+//
9CRpvGp332+2zXLthIe1NmVfuIIHOCDm9lRFna9dkSIuXKWoHWAVoImhqbv186hV
3iu0X/y+JNNnoaq5hf6trSR7Afznww6DPrg7TvjojmvZ0u48+pKDH4kQ6SbWYyVy
agbgZy8dekjxYnMeHVAh/MiZAUWYuU9qFx4FVbD718g1GFae/IM73Ln2S/bJT3Xl
la6fJ9fL2jW0I/tNjbkYAZdL92l/3TvaWZYTQU57ApYHjmb3icz2R+VGL8hx0Jqs
eSEWdvBfrm2RPGSSoma4LQY9IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgYK3n8
vbUcJvuYwkxbNHLhjRz8MB8GA1UdIwQYMBaAFL7CgkhvN+MW8XtSC0VSh7wwf4no
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GNTg0MzhGRUY3
RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4YnhlMUlMUlZLSHZEQl9p
ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3ZzS0NTRzgzNHhieGUxSUxSVktIdkRCX2llZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
QTQ2OS9GNTg0MzhGRUY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4
YnhlMUlMUlZLSHZEQl9pZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBxX58VwSJlTrPUmLFO0pGWgmHJThCgMulZmxNN70xiu11TAx1H+Kc1
9HT0++Y19AlSuiKWZi+PcHbWpTMvwvR1Q1O9aaKYnwSp+JNl91gqengoe9htpmsz
qPqTmHkw/vuTgPfPJv9hkhS40gDpAEAKCPVuROy9eB5nsECMTbxsQv86RhbZx1al
D+Q2LhyWPcXln2xt8UD5MZdnicAux/XFaQrR0/vbK2/C3AMKxX+QbTqKciva9nfC
tVw9F27NmCBAQ4WWhl7TpZ+8kmIne1bMJSDqFsqzZnKeVMw+czsE0MkB6HFm1tPu
BrYfyqkYDaS5eJAw3h5U4NxFQkO1EEbe
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:57:10 2025 by rpki-client