Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
File:                     JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json)
Hash identifier:          bj8mPU1ZY/n+V8JaIzsGQDBuCjGWitE7GJSVVfvPpI4=
Subject key identifier:   6A:3F:B6:6F:C1:E0:1A:74:DC:E5:CC:28:8F:A8:D5:4B:19:54:45:A1
Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4
Certificate issuer:       /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4
Certificate serial:       16EB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
Manifest number:          16E1
Signing time:             Tue 10 Jun 2025 16:38:55 +0000
Manifest this update:     Tue 10 Jun 2025 16:38:55 +0000
Manifest next update:     Tue 17 Jun 2025 16:38:55 +0000
Files and hashes:         1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: UpjbDT6kghdq+OK1Bzmums9Y57zg2s4OlDydCmAKAXw=)
                          2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: 995PegsL3ZUwg9uvRMBU899Zay98EopTGO6qSEJefks=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl
                          rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 15:55:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5867 (0x16eb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4
        Validity
            Not Before: Jun 10 16:38:55 2025 GMT
            Not After : Jun 17 16:38:55 2025 GMT
        Subject: CN=68485f9f-8931
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:48:28:ba:1e:09:40:4b:90:bf:e7:f1:48:16:
                    31:a1:f6:23:d4:3d:93:1b:4c:5d:d1:44:b5:72:e1:
                    f1:a8:0c:8d:fd:79:26:1d:d9:be:5e:34:27:f4:c4:
                    16:3b:d7:7f:be:9f:5d:fd:46:ba:63:38:0c:55:1b:
                    f1:6d:cc:5f:e6:bd:6b:39:fb:e4:23:33:ad:2d:e8:
                    3d:8f:45:64:d4:54:21:bc:fc:39:2e:f2:45:75:72:
                    f9:d9:22:a2:39:41:7b:95:df:bc:2a:34:90:2b:f9:
                    09:ce:90:93:42:02:02:e2:78:09:d0:f6:15:4e:39:
                    09:cb:a9:01:d0:22:f6:d7:12:9b:e6:1f:56:70:69:
                    fd:94:5c:c0:d4:57:f8:32:08:8a:90:31:4c:01:83:
                    5a:f7:e7:d9:d0:3d:30:2e:78:ec:84:76:be:39:8e:
                    64:40:ba:d9:8b:6c:c7:71:a2:b2:4f:6f:62:af:f9:
                    13:8a:33:1f:08:73:d2:ea:b0:f0:4d:cb:7d:0c:50:
                    e7:21:5d:49:2a:c7:e3:38:6e:df:97:b4:47:f7:dc:
                    72:d4:c5:72:eb:93:5c:da:31:5d:cb:bb:f0:23:39:
                    53:31:6f:e7:bd:50:ef:76:f8:5a:75:c0:b9:07:e6:
                    c6:db:bd:b1:05:ac:ea:4d:df:22:2b:40:66:1e:e4:
                    06:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:3F:B6:6F:C1:E0:1A:74:DC:E5:CC:28:8F:A8:D5:4B:19:54:45:A1
            X509v3 Authority Key Identifier:
                keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:68:51:3a:a9:e7:6e:4f:9d:cc:09:59:7e:ed:8d:47:e3:c4:
         71:e8:fe:58:bc:50:1c:ea:95:24:d8:cf:39:d2:27:8c:93:a7:
         50:0b:28:fb:66:62:0b:81:e2:ef:93:53:2b:d0:3c:30:cb:0e:
         e6:5d:71:9e:30:d5:32:ec:82:c0:fe:b7:98:bd:80:a3:32:3c:
         1f:2e:14:58:ec:3e:80:5c:c1:02:88:7e:d4:d5:80:60:ba:32:
         37:37:c5:49:0c:73:48:bc:0f:d4:50:a8:71:32:d0:5a:90:42:
         8e:e2:ba:3b:d9:bf:c5:a5:62:1d:b8:0c:16:b8:1f:8c:d5:b0:
         b0:63:5a:30:d7:a0:db:3c:0f:18:34:84:18:d2:4b:93:45:75:
         4d:e1:ac:91:d7:1a:42:b4:2a:26:78:d3:93:97:56:89:a3:eb:
         5e:17:24:d3:e1:4d:99:b8:d4:b5:b2:ce:6d:5a:61:f3:7e:24:
         c4:5a:ba:59:03:c7:b4:2a:d2:7d:a1:f2:cc:f8:2b:b4:8c:ba:
         a3:5e:e3:e5:b6:10:f9:e2:29:3d:ce:ab:93:5a:50:d3:29:79:
         94:41:9a:14:09:32:d0:87:3a:b4:d1:1c:ca:68:e4:0d:d5:39:
         d2:9e:81:0a:af:b8:2a:04:27:47:8c:74:a6:cc:7d:bd:53:f1:
         54:b3:c2:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 18:20:47 2025 by rpki-client