Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft
File:                     8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json)
Hash identifier:          oP5kBeoVtWz219nh0beUyh/VeD9S5co0erWLlhdOcVw=
Subject key identifier:   CC:B3:C6:E9:B7:86:BC:05:EF:75:7D:8A:18:D5:8D:AF:95:5B:80:39
Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A
Certificate issuer:       /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A
Certificate serial:       F8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft
Manifest number:          F8
Signing time:             Fri 13 Jun 2025 04:08:12 +0000
Manifest this update:     Fri 13 Jun 2025 04:08:11 +0000
Manifest next update:     Fri 20 Jun 2025 04:08:11 +0000
Files and hashes:         1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: Y1YipzNNArppq8gOuhABYp7CuOlXE0Q3WuSeO6fiFZQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl
                          rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 04:08:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 248 (0xf8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A
        Validity
            Not Before: Jun 13 04:08:11 2025 GMT
            Not After : Jun 20 04:08:11 2025 GMT
        Subject: CN=684ba42c-021f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:c3:8d:29:5b:6c:af:28:a1:c0:07:9c:61:83:
                    b6:a2:90:20:a6:f1:2c:5e:0c:b7:41:e6:5c:7b:aa:
                    79:da:88:1d:69:d2:8b:4c:90:6a:ab:15:a2:51:5c:
                    cf:e9:c8:96:b5:8a:f9:2c:93:82:31:93:59:ed:00:
                    74:0d:30:fb:b5:40:2c:03:36:d5:91:69:e3:2e:88:
                    59:1a:32:f9:61:95:ac:06:dc:c1:15:21:93:f1:fa:
                    77:7b:78:10:3b:91:b0:fe:20:a0:62:cf:9f:44:d8:
                    94:82:57:19:61:fe:e7:3c:9e:fa:22:2a:af:a4:2d:
                    a4:e6:24:e4:b7:80:e5:5e:65:db:f6:f4:a0:c6:a6:
                    88:00:cf:cf:3a:1f:43:04:d8:76:17:1d:44:44:70:
                    f8:35:9a:af:94:45:8f:a8:13:5c:09:d1:d4:25:ab:
                    e2:b1:0c:ef:88:da:07:2b:46:83:7b:5c:1c:f0:88:
                    41:45:d8:f6:61:a3:78:83:ae:f5:7c:49:bb:89:6d:
                    6d:bb:6c:3d:26:ce:ae:23:ed:93:81:05:60:db:14:
                    6e:1f:80:6a:32:35:80:4c:fd:6b:4a:92:a6:9a:38:
                    0b:68:d8:f0:37:02:6e:14:40:29:c9:a0:af:31:5b:
                    69:d2:48:94:1a:c4:21:e3:81:9d:48:4a:a4:9d:72:
                    11:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:B3:C6:E9:B7:86:BC:05:EF:75:7D:8A:18:D5:8D:AF:95:5B:80:39
            X509v3 Authority Key Identifier:
                keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:99:12:f6:6f:25:a2:c2:88:92:d1:52:f4:29:7b:a9:2e:f4:
         ae:28:6d:08:02:5b:7a:32:56:e6:85:50:c6:cb:80:d5:f7:f5:
         26:ab:05:6f:62:fb:a7:c8:b4:0e:bb:41:fc:53:09:fa:e9:0e:
         b8:a1:5d:59:fa:d2:12:29:85:eb:bb:71:09:ca:88:53:cd:83:
         1f:87:c6:0c:ab:9f:07:90:5a:af:84:ac:c9:38:05:fb:31:44:
         84:84:68:05:79:8f:13:76:d5:20:87:51:6a:89:5b:65:08:fa:
         d6:bb:a1:b7:9b:9f:a4:d8:8c:a2:37:f8:59:a1:7e:b7:b7:ce:
         da:b0:c0:aa:83:88:bc:af:09:88:af:6d:9c:bc:9d:19:1b:2a:
         bd:15:0f:a3:76:0b:f6:58:b6:24:19:7b:b5:af:a1:d9:dd:de:
         e7:4d:ab:06:b8:e3:af:0a:14:4a:e6:1e:0f:39:70:ab:8d:b8:
         46:53:bc:6b:62:d6:c9:ff:86:3b:b4:8c:80:35:5d:a8:3f:2e:
         fb:97:f2:04:96:1b:0b:c1:48:c2:68:f3:e3:90:b7:18:5b:ec:
         44:7d:b0:93:b2:b3:16:51:fa:13:dc:27:d3:16:87:ce:41:bf:
         f9:6e:70:1f:e2:32:60:c4:63:5f:87:99:04:49:7e:35:23:83:
         de:15:57:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 14:30:08 2025 by rpki-client