Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
File:                     c0XTOFGViQaITYcWQKS-0shG0U4.mft (raw, json)
Hash identifier:          jt0gogA0C0eHjNyXAxiwTKWysd7AvhzhLQr5+6W79Qk=
Subject key identifier:   90:5F:4B:D7:CA:FD:34:38:AD:29:51:A8:AF:F3:5F:D8:06:4B:5B:8C
Authority key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E
Certificate issuer:       /CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E
Certificate serial:       A7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
Manifest number:          A7
Signing time:             Fri 13 Jun 2025 05:05:26 +0000
Manifest this update:     Fri 13 Jun 2025 05:05:26 +0000
Manifest next update:     Fri 20 Jun 2025 05:05:26 +0000
Files and hashes:         1: c0XTOFGViQaITYcWQKS-0shG0U4.crl (hash: ZsFa8dbKSZ0kJdcDX2y4C57UAb6ATSsv0J4vtZNLGPM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl
                          rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 05:05:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 167 (0xa7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912F3B6, serialNumber=7345D33851958906884D871640A4BED2C846D14E
        Validity
            Not Before: Jun 13 05:05:26 2025 GMT
            Not After : Jun 20 05:05:26 2025 GMT
        Subject: CN=684bb196-c7c3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:07:a9:18:38:85:65:92:3a:75:ff:33:f0:a8:
                    fd:06:c5:4c:99:8b:94:d6:a7:12:11:85:e3:05:65:
                    7d:cd:e4:02:a3:06:00:e8:db:db:26:6f:88:31:9d:
                    ef:e0:9d:77:76:09:66:a8:0a:a3:7d:7b:42:75:a5:
                    c8:bd:88:5a:9e:8b:7b:9e:48:36:98:92:d6:9e:ce:
                    93:ac:72:ed:ec:c1:a5:87:62:3c:a6:88:35:d0:ac:
                    86:ff:94:cc:f8:ca:a9:01:fa:f3:36:f0:a4:64:06:
                    c0:35:65:96:ed:de:c5:ed:13:91:73:7e:e3:8c:76:
                    3f:c2:db:1d:04:3c:79:41:06:ee:45:2c:63:8a:75:
                    77:f2:7e:e3:18:cb:fd:bf:40:bd:b6:64:85:e8:23:
                    3a:c3:b9:20:fe:90:31:af:8c:a5:40:e4:55:45:7e:
                    42:8d:46:c8:78:b7:96:78:71:6a:46:fc:fb:4a:ea:
                    99:9b:c6:ab:f8:77:d3:a6:0b:0e:f8:e6:0f:55:56:
                    a4:71:ae:4d:76:27:0f:f2:8e:a1:bc:c0:89:7e:be:
                    df:b8:a8:12:33:f8:33:e3:f4:2b:1e:32:f5:f7:f6:
                    06:1d:90:05:b7:40:3b:e4:8f:05:44:8b:c9:5a:39:
                    00:46:f8:68:f4:2e:d0:f0:fc:57:e5:7f:bb:88:59:
                    9b:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:5F:4B:D7:CA:FD:34:38:AD:29:51:A8:AF:F3:5F:D8:06:4B:5B:8C
            X509v3 Authority Key Identifier:
                keyid:73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:ec:e9:ed:d3:e3:55:66:36:00:67:f5:c2:91:4d:1e:fb:af:
         9f:ba:4c:32:21:95:46:01:d7:23:3c:13:22:ff:4d:b5:b0:6c:
         91:55:e3:d5:c9:29:1d:5b:51:19:4e:56:94:1d:b6:09:8b:4b:
         fb:03:11:68:47:ec:a7:28:dd:4c:41:16:1a:79:47:83:2a:00:
         79:ac:91:7a:45:a2:34:52:11:a1:a4:22:49:4d:66:96:ce:4e:
         dd:2b:75:14:cc:cb:c2:2a:6b:5b:86:96:af:0b:fc:45:17:36:
         6a:ac:95:5b:cc:40:1d:01:2d:0f:7a:be:40:3a:13:c0:e7:c9:
         f8:d8:09:0b:00:d0:35:1c:d7:57:29:40:ea:f9:3c:99:35:32:
         53:ae:ca:ff:27:c7:93:64:6e:03:f0:ec:4d:6b:b0:39:c1:1b:
         1a:e0:bc:0f:a3:7f:67:eb:9b:47:9c:14:20:98:da:43:4c:59:
         b1:8b:75:7d:f6:6b:0f:fd:70:3d:88:7b:42:9f:15:6e:99:9e:
         69:06:e5:33:1c:dc:29:e6:67:bf:15:03:18:27:dc:20:f2:80:
         11:87:35:1e:ae:1e:07:19:28:62:e6:39:23:fa:03:18:ec:78:
         4f:7b:46:c7:c8:99:99:4a:c1:c7:0f:40:23:0d:5a:fe:6c:1e:
         9a:68:35:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 10:47:52 2025 by rpki-client