Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
File:                     sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json)
Hash identifier:          0OFctNKRhVmok+9dIZLRuJ6t4RLKQOE+PuII4ciVzE8=
Subject key identifier:   98:60:6E:80:78:61:50:CF:02:20:DC:5C:09:2A:68:66:B9:6C:11:CC
Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6
Certificate issuer:       /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6
Certificate serial:       A9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
Manifest number:          A8
Signing time:             Mon 09 Jun 2025 05:05:00 +0000
Manifest this update:     Mon 09 Jun 2025 05:04:59 +0000
Manifest next update:     Mon 16 Jun 2025 05:04:59 +0000
Files and hashes:         1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: bu1YEFXB+ZfFmF40p+EoBGr4vmcje4Yz3DM3ynOF8mw=)
                          2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: SLWE2DPVkEquMfz8hHroSU4zXY18AR0tkk1tXcWxdMg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl
                          rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 05:04:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 169 (0xa9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913A748, serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6
        Validity
            Not Before: Jun  9 05:04:59 2025 GMT
            Not After : Jun 16 05:04:59 2025 GMT
        Subject: CN=68466b7c-5b35
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:47:75:7b:4f:6f:9e:bf:0f:54:80:fa:79:7a:
                    bc:48:90:f3:29:85:73:3d:4c:b1:9c:b1:d0:aa:18:
                    56:c9:db:61:95:e7:94:11:9e:f6:f3:4a:02:c2:01:
                    9e:53:73:9d:40:5c:d9:9b:2c:2e:82:41:56:34:9e:
                    55:26:d2:f5:f7:b0:1a:a9:1e:de:d9:28:06:0e:06:
                    d6:9e:10:a5:fa:2f:7d:95:5c:5a:3f:1a:5f:3f:ba:
                    49:7f:15:1d:e4:a2:30:c6:76:49:69:41:cd:35:9a:
                    cb:56:dc:7a:93:8c:e8:ec:16:65:b0:28:35:f1:97:
                    d5:e0:48:af:b3:18:26:c8:cc:8a:4e:d6:eb:5e:db:
                    a2:44:5e:42:1e:35:29:70:43:53:1f:87:ce:3a:d5:
                    95:43:dc:97:23:dd:ff:ad:7b:2b:91:9c:3d:56:5c:
                    74:b4:ad:22:ed:79:50:5f:e1:73:cc:74:e6:08:8d:
                    ba:7a:36:9a:0f:b9:74:16:08:c3:09:85:82:ff:e8:
                    a3:54:e5:4c:e4:f4:ed:13:50:e5:1f:35:9f:d1:d8:
                    90:10:46:d9:c9:b1:9b:64:da:4f:ca:af:11:5d:ee:
                    e9:7e:83:e9:4c:68:a2:f9:b8:46:19:0b:96:68:e6:
                    7d:72:28:da:d6:e6:89:3c:1c:a5:2f:f3:d8:a0:5a:
                    e3:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:60:6E:80:78:61:50:CF:02:20:DC:5C:09:2A:68:66:B9:6C:11:CC
            X509v3 Authority Key Identifier:
                keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:5d:a5:3d:93:37:4e:f4:65:1e:27:3e:54:17:28:6a:b5:6a:
         52:8c:a2:d4:0a:6c:b1:c6:83:73:86:5a:6c:42:0f:ee:ad:6f:
         16:10:c7:02:9f:68:e6:96:26:2f:2c:57:0f:1d:8e:59:0a:e7:
         4c:f1:23:f9:3d:98:47:1e:75:14:b4:23:af:78:0d:ae:95:f3:
         f3:e6:ec:b6:6d:75:c0:67:ed:32:ae:2f:0d:bf:7c:e1:5f:de:
         d5:cf:97:92:59:1d:f4:bf:23:32:b4:97:02:3c:8f:e4:bf:29:
         2f:46:34:27:c1:d3:32:78:c8:15:3e:1e:88:76:12:be:bb:b8:
         97:4c:5d:86:e7:69:e9:13:b2:85:18:af:8f:1f:ee:15:7b:c6:
         e1:af:69:f2:ab:26:1f:58:86:e4:06:81:87:0a:0d:f6:c1:bd:
         ea:6d:7e:65:5d:5a:44:cd:3f:4e:e6:7e:05:5e:44:8f:5e:62:
         b5:6c:6a:ac:50:6d:1c:01:ab:8f:e2:10:bc:47:60:fe:43:b2:
         c9:5e:ac:c5:6b:57:6f:80:f2:f9:f1:da:35:cd:a4:52:a9:4c:
         4b:7c:ad:3f:71:48:d0:31:ac:fb:01:f9:2a:96:10:6e:b8:58:
         2a:14:84:06:1e:b3:1a:40:11:e3:13:e8:30:b5:27:14:f7:d9:
         28:3f:5b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 18:51:43 2025 by rpki-client