Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft
File:                     Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft (raw, json)
Hash identifier:          Gn0LLzYocbYBkdYeiE4TjRFe+gGKSoN534k/TkyC0+4=
Subject key identifier:   B4:83:C2:B9:00:A9:FC:CE:7B:96:70:F1:6D:16:62:E8:0A:F9:B9:26
Authority key identifier: 63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81
Certificate issuer:       /CN=A9118689/serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881
Certificate serial:       0100
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft
Manifest number:          FE
Signing time:             Fri 13 Jun 2025 04:05:52 +0000
Manifest this update:     Fri 13 Jun 2025 04:05:52 +0000
Manifest next update:     Fri 20 Jun 2025 04:05:52 +0000
Files and hashes:         1: Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl (hash: cGAPCKF4gtfoOM9r5V5gn1G1yUyPkNdRBP/G3a5ab64=)
                          2: D1D880A6C4FB11EEA30ECF34C4F9AE02.roa (hash: HaM1uGW7CpLpf57Ix2SDrMkVRudstrm9oD5WtSudmS8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl
                          rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 04:05:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 256 (0x100)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9118689, serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881
        Validity
            Not Before: Jun 13 04:05:52 2025 GMT
            Not After : Jun 20 04:05:52 2025 GMT
        Subject: CN=684ba3a0-ec7e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:0f:46:d1:97:3c:96:97:03:93:4e:20:1a:4c:
                    05:e2:ea:6f:77:5f:bb:32:99:e1:62:1a:bf:ff:e9:
                    58:d3:67:85:30:35:09:a9:54:c5:1a:8d:6a:03:86:
                    c8:13:84:e0:ca:56:b1:a6:be:d0:6c:79:5b:7e:b3:
                    ed:c5:c2:cf:18:73:2a:45:cf:d4:ca:4f:01:92:da:
                    06:83:53:fe:28:f3:65:b9:5c:e5:89:b6:17:53:1a:
                    51:c3:76:a0:23:7d:e5:1d:a6:e7:d1:f8:d1:1d:12:
                    d6:31:78:79:a2:86:32:2c:ec:93:68:c5:5c:e2:08:
                    c4:9d:00:96:dd:ad:9e:f0:da:4c:80:cb:3e:dc:1e:
                    68:62:37:fe:e6:34:4d:b2:d1:18:e5:20:ea:e3:c5:
                    c7:95:b9:c8:ca:0a:af:8b:86:11:54:5f:aa:1a:01:
                    13:bf:8d:95:17:7c:4f:b4:67:7d:46:a8:1c:69:43:
                    2b:b1:c8:78:fa:6e:35:57:50:1d:d5:76:3a:66:97:
                    cb:ee:62:b4:66:99:34:47:f4:48:2c:01:26:fc:80:
                    6f:5f:b0:65:c0:ba:19:41:e6:b9:43:23:0a:89:53:
                    57:fc:8d:83:91:b2:4b:c4:f7:3d:e3:26:9c:8d:8e:
                    84:46:9d:94:7f:94:e1:10:ad:46:45:c1:3e:38:e8:
                    09:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:83:C2:B9:00:A9:FC:CE:7B:96:70:F1:6D:16:62:E8:0A:F9:B9:26
            X509v3 Authority Key Identifier:
                keyid:63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:7d:e0:fe:af:d3:05:06:d3:d9:1a:a1:60:be:74:0d:d4:06:
         50:a0:58:7d:13:bc:58:6c:71:ce:78:94:d0:86:41:b9:39:68:
         54:88:ee:aa:7c:07:bb:79:17:a0:76:7d:69:f4:04:5f:40:ba:
         56:9b:bd:49:72:50:06:fc:18:e5:e2:21:ba:7e:83:79:ea:4e:
         30:db:0b:f7:d2:a8:1f:9b:16:b4:cd:22:ce:6d:5f:48:81:50:
         85:47:d7:c7:09:b8:56:c2:e2:a3:53:36:64:ec:42:78:b6:fe:
         f3:90:5a:c9:77:71:84:aa:85:a9:be:c8:b1:7f:e2:db:bc:6f:
         9d:49:41:fb:4d:f7:3f:43:5f:1d:d0:eb:c7:ee:5e:f7:d9:d7:
         0c:f2:32:37:29:cf:63:cc:b3:e5:c7:5a:3f:9f:b6:40:87:ad:
         26:99:bf:f5:74:8e:be:d0:8c:d8:1d:30:09:63:b2:62:e7:3b:
         aa:3e:9f:03:8a:92:09:ca:2a:9a:3f:95:ab:c2:38:56:a8:00:
         91:8f:94:99:55:5d:59:de:c2:2f:bb:90:a6:d6:d3:a9:0f:27:
         1c:71:6a:de:16:c0:97:0a:51:7b:07:ec:70:51:31:74:77:f1:
         d4:3d:eb:75:f8:b3:01:a4:c7:ef:ca:a0:c6:51:ab:fe:45:bd:
         8b:63:8d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:51:34 2025 by rpki-client