Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
File:                     bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json)
Hash identifier:          UIJJLMcKlhdFQssvQmK8Him4MJE4PsSgbdGc7USWWlo=
Subject key identifier:   BA:6F:B6:29:81:E3:B0:53:A8:BB:2B:9E:FD:C3:0D:6C:D6:52:E1:52
Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38
Certificate issuer:       /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838
Certificate serial:       041D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
Manifest number:          0416
Signing time:             Sat 19 Jul 2025 00:47:31 +0000
Manifest this update:     Sat 19 Jul 2025 00:47:30 +0000
Manifest next update:     Sat 26 Jul 2025 00:47:30 +0000
Files and hashes:         1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: DCz2de3m+eWZGHYFOcjDUphubBpozpaECBvXcPTiVKM=)
                          2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl
                          rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 00:47:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1053 (0x41d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838
        Validity
            Not Before: Jul 19 00:47:30 2025 GMT
            Not After : Jul 26 00:47:30 2025 GMT
        Subject: CN=687aeb22-031e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:88:c1:89:e7:e4:b8:04:ac:16:2e:ad:49:e3:
                    90:16:93:59:ee:14:8f:e4:92:54:05:aa:1f:02:50:
                    51:33:98:08:5d:73:dd:62:85:55:4b:a6:dc:8d:e2:
                    74:bc:7b:f5:d1:37:75:b5:91:e6:30:95:05:75:d3:
                    34:e6:83:cc:fc:e8:5d:03:34:6c:5a:93:b7:be:b3:
                    d7:78:c8:6b:92:79:d7:f2:a5:a3:61:03:42:c6:d5:
                    88:62:15:27:52:85:fa:c8:70:ff:de:bf:08:e3:20:
                    9a:a2:ed:6e:d6:f7:0a:7b:17:5a:12:44:d6:f3:da:
                    8f:83:97:81:7a:f7:8b:ab:a9:86:b7:f8:5d:56:6a:
                    36:5d:67:2b:c8:41:2f:0f:d7:b2:cd:f9:a8:a9:0b:
                    9a:d3:c5:7c:80:ab:d2:78:0d:1b:46:a1:c1:8a:b6:
                    c3:76:04:c1:4d:7b:e9:38:bb:5e:56:68:da:19:1c:
                    55:d0:48:c0:78:93:1d:86:c4:83:2b:73:ea:e9:7c:
                    cf:5d:f1:f7:1f:b6:3d:0c:da:a3:70:fb:93:41:f4:
                    85:d6:65:2f:b8:a6:c4:0e:f1:13:30:b4:6e:b8:aa:
                    b3:78:1b:9f:d2:24:37:5c:7a:59:bc:59:b1:78:84:
                    2d:b0:bd:45:05:88:36:66:8d:f8:34:4d:aa:0f:f7:
                    99:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:6F:B6:29:81:E3:B0:53:A8:BB:2B:9E:FD:C3:0D:6C:D6:52:E1:52
            X509v3 Authority Key Identifier:
                keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:b2:84:a5:af:81:5b:87:fb:c0:82:76:fa:e9:b3:7e:31:76:
         69:3c:3b:27:37:46:c8:6a:16:a9:05:1c:61:2b:bd:2d:f4:59:
         2f:37:cd:63:c7:ee:37:8e:37:f0:82:04:60:3c:62:e7:96:72:
         f4:c0:f2:db:a6:55:55:c7:78:fe:6e:64:9e:a0:f4:85:58:f7:
         1e:9e:29:0a:34:0e:e5:d5:8b:2c:73:48:46:39:28:d6:df:1e:
         c3:a2:6c:69:cb:81:48:09:cb:67:46:62:5e:9f:a3:e6:e0:05:
         11:b2:24:79:7a:0a:ba:37:7a:e4:e6:6e:38:49:66:79:03:fc:
         59:c8:83:24:9d:0c:5a:30:04:ff:91:ba:31:c1:ac:8e:71:7e:
         1c:9a:61:8a:7f:b8:f9:b0:f3:12:2b:a5:d3:eb:78:f9:e1:27:
         50:2f:61:28:85:bd:ae:f2:36:8c:73:7e:3c:14:54:b5:4a:e2:
         25:a5:a1:82:2e:52:7e:9f:f6:66:fc:3b:f2:33:c5:16:bc:4e:
         ad:28:5e:da:0c:12:43:25:35:b6:50:51:c6:bb:6b:85:67:a5:
         26:78:ba:20:be:c1:c1:04:84:3e:1d:a1:b8:f2:35:ee:ec:49:
         ea:42:95:30:c2:50:44:b9:67:35:e1:e9:51:02:69:a1:8d:2a:
         e4:9a:05:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 22:28:24 2025 by rpki-client