Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
File:                     sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json)
Hash identifier:          ZprEkTzo97nUw83Nsw55Yn/KHxFEwwtZ6o89joaP5RI=
Subject key identifier:   2B:CF:3A:09:C6:AF:7D:06:C1:7D:F1:1C:4A:E4:4E:A4:56:7B:32:7F
Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6
Certificate issuer:       /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6
Certificate serial:       AB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
Manifest number:          AA
Signing time:             Fri 13 Jun 2025 05:01:09 +0000
Manifest this update:     Fri 13 Jun 2025 05:01:08 +0000
Manifest next update:     Fri 20 Jun 2025 05:01:08 +0000
Files and hashes:         1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: EwHGgfg9t6YrQJdu/XGwAl+fJZgfQqZBVgTk0bUVssM=)
                          2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: SLWE2DPVkEquMfz8hHroSU4zXY18AR0tkk1tXcWxdMg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl
                          rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 05:01:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 171 (0xab)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913A748, serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6
        Validity
            Not Before: Jun 13 05:01:08 2025 GMT
            Not After : Jun 20 05:01:08 2025 GMT
        Subject: CN=684bb095-440b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:5a:2d:17:06:51:1b:d9:dc:9d:ed:d2:8a:f8:
                    44:a8:12:9b:06:26:88:1b:c8:79:3d:29:3c:bb:14:
                    95:38:02:35:c5:be:15:87:f1:f5:44:fa:35:f9:7a:
                    eb:f2:ff:c8:ae:3c:db:86:68:7b:14:dc:30:db:36:
                    24:d9:9c:29:82:14:c6:b6:b8:92:8e:a0:61:79:56:
                    5c:dd:29:5d:65:e6:0d:b7:57:92:65:ca:1c:86:70:
                    35:22:a3:7e:a9:14:f0:c7:76:d0:aa:e9:d3:2f:82:
                    c7:1c:dc:08:2e:94:73:e3:67:ed:8d:2d:32:d8:1b:
                    a6:2f:d8:ab:b7:d9:d3:44:3c:95:db:d4:84:c3:ab:
                    b0:48:76:2e:82:44:7b:90:68:40:a0:76:8a:57:9d:
                    e4:67:8c:ec:98:0b:4a:cf:9a:23:e9:2b:45:45:89:
                    34:9d:16:40:37:c3:e4:bd:48:5d:77:92:db:9b:8e:
                    6b:d1:f5:b2:54:bf:c5:9e:a8:a3:1b:60:a2:d5:56:
                    e5:ad:db:b7:36:83:24:a0:95:c1:da:de:ef:f7:92:
                    bd:39:2f:6b:ad:c7:90:c5:34:12:98:33:93:bf:9d:
                    22:b5:cc:60:e5:69:5e:cf:b1:de:b1:af:2f:2e:37:
                    f7:6a:19:21:da:e8:46:63:fa:48:06:79:cf:5d:f1:
                    09:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:CF:3A:09:C6:AF:7D:06:C1:7D:F1:1C:4A:E4:4E:A4:56:7B:32:7F
            X509v3 Authority Key Identifier:
                keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ab:4f:78:89:c4:e3:38:b5:03:4e:51:d4:99:bf:c3:48:cb:ae:
         0d:66:65:ab:12:c8:2d:46:c0:ad:6c:e8:20:3e:0e:1a:2f:12:
         62:b0:4a:6b:c6:70:3a:a1:a9:35:73:b7:40:6b:ee:a5:da:2c:
         14:45:4e:28:20:25:a4:dc:7c:8f:09:58:dc:06:bc:5c:d6:72:
         08:d4:20:1b:c8:25:de:dc:1a:ad:c1:f9:83:be:02:40:3d:db:
         14:0f:b4:e5:2c:b8:04:1e:90:fc:ef:0a:4d:61:68:a4:f9:b7:
         b0:81:65:47:80:3d:de:d3:29:91:86:b7:9d:e1:46:f2:b1:22:
         8e:33:87:75:f2:cb:89:31:bf:0e:52:6d:ba:bf:2c:a0:6f:32:
         83:cf:0e:ff:c1:e2:8e:d8:d9:6e:3f:f8:96:21:ba:2e:c0:1d:
         c8:29:56:a3:d4:8a:8d:f3:8a:98:93:e7:95:96:75:9b:6c:54:
         11:77:14:1e:7b:63:39:da:ab:80:d9:32:dd:d3:a7:62:7f:d4:
         27:f2:08:26:77:28:3d:52:15:44:05:82:bf:39:c2:18:2f:4f:
         79:2f:f5:a7:3a:a5:b6:54:9e:5d:0c:eb:fb:0a:04:a7:64:69:
         77:0e:42:57:80:0d:94:e4:81:2d:94:3a:95:69:72:79:ce:9c:
         92:6f:65:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 08:50:10 2025 by rpki-client