Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
File:                     c0XTOFGViQaITYcWQKS-0shG0U4.mft (raw, json)
Hash identifier:          upMlczPkf3XTdyqtW6fB8adOyzwqniTevuxA6EBhWzI=
Subject key identifier:   75:DF:98:AF:0A:32:A2:19:FC:59:C0:4F:FF:F6:15:A6:BA:B2:3A:49
Authority key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E
Certificate issuer:       /CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E
Certificate serial:       A6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
Manifest number:          A6
Signing time:             Wed 11 Jun 2025 05:33:44 +0000
Manifest this update:     Wed 11 Jun 2025 05:33:43 +0000
Manifest next update:     Wed 18 Jun 2025 05:33:43 +0000
Files and hashes:         1: c0XTOFGViQaITYcWQKS-0shG0U4.crl (hash: y07zwLe8bPC5+J8Kwj9KBxz7moF/njjVlSW7+F/7yvk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl
                          rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 05:33:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 166 (0xa6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912F3B6, serialNumber=7345D33851958906884D871640A4BED2C846D14E
        Validity
            Not Before: Jun 11 05:33:43 2025 GMT
            Not After : Jun 18 05:33:43 2025 GMT
        Subject: CN=68491538-c8f4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:c3:52:99:d9:d9:e7:76:be:c3:13:ab:45:19:
                    ab:53:3b:c2:80:f7:75:9d:70:3c:9b:a0:4c:f5:a0:
                    1a:7c:59:57:1b:4f:6c:c2:12:21:d0:4b:8e:96:7b:
                    75:ca:a6:64:75:1c:f7:65:e5:b8:80:e2:38:a1:f7:
                    6b:8c:06:3b:34:e0:58:84:b1:c4:d8:42:af:ee:79:
                    1a:f1:03:4f:53:c6:87:44:26:91:b2:43:4f:7c:11:
                    bf:cb:52:b3:93:11:48:5d:c2:2b:ac:da:db:9f:80:
                    3d:44:a3:40:85:68:f7:cd:49:74:17:45:05:aa:f6:
                    8e:81:eb:a6:66:49:f7:a8:bc:85:36:ca:03:b4:7a:
                    87:e7:00:47:0c:18:d5:e3:f3:c1:4a:18:4a:59:c9:
                    73:6a:ac:f8:d8:c9:a7:97:9b:06:c5:49:9a:e6:f5:
                    e0:64:63:6f:02:82:76:3d:d1:7f:4e:82:ff:dd:e1:
                    c3:46:41:b5:4c:0b:ae:1e:9d:c9:9c:43:21:6c:66:
                    6a:b3:cd:10:c3:b3:25:52:ef:9f:b3:c9:a3:bb:30:
                    cf:ce:6b:e1:fd:7a:3e:95:2f:7c:78:28:9d:24:fa:
                    47:cb:ed:06:52:f8:54:00:52:15:63:2a:cb:94:89:
                    8b:28:87:aa:de:e3:0b:2a:ff:8f:50:0c:2d:17:b3:
                    08:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:DF:98:AF:0A:32:A2:19:FC:59:C0:4F:FF:F6:15:A6:BA:B2:3A:49
            X509v3 Authority Key Identifier:
                keyid:73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:7d:59:dd:d1:25:61:1e:ab:8f:cd:45:c8:a8:f3:cd:16:b9:
         1c:46:a9:5e:e2:13:df:9d:b7:54:86:90:03:c8:bd:2c:af:4a:
         4f:96:7c:1f:47:bc:b5:da:f4:6c:ce:54:1b:1f:a2:a0:bc:00:
         bf:9b:48:25:3c:40:0a:0c:dd:01:d3:04:d6:ab:76:45:72:22:
         a9:36:35:07:97:bf:ec:d0:72:20:f9:74:eb:45:ad:e7:6a:e7:
         1c:e7:e7:7c:00:94:12:04:47:25:3e:9e:a6:46:3f:55:0a:b0:
         00:47:d1:d0:1e:58:99:66:c8:64:e8:f2:27:7c:9c:bc:4f:ba:
         85:72:5c:7e:cc:dd:e3:fa:6a:2b:1e:69:9f:87:9e:0a:94:4c:
         c3:12:c2:eb:8b:6a:fa:85:6f:7a:ae:43:3c:c9:24:9c:12:f9:
         4c:22:82:e6:75:ac:94:7b:11:ad:c2:db:4c:ca:d6:98:36:fb:
         18:d0:fa:5e:e9:3b:dc:db:b7:75:da:e1:23:0c:2d:01:cb:97:
         ec:62:d7:27:65:ea:16:0f:a2:9f:98:38:95:e9:d3:5f:61:6d:
         2e:a2:b2:bd:46:9c:d1:2b:41:77:78:55:09:b5:b2:29:3f:cf:
         96:ff:c6:53:f9:05:36:b9:74:52:fe:5e:05:e1:6a:0b:9f:1e:
         1f:a8:1f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 21:06:53 2025 by rpki-client