Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
File:                     s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json)
Hash identifier:          Xc7D4KayMsUbAnii0YBUwnbFTUt4/stzvpIuF5kf0QI=
Subject key identifier:   5A:5B:A8:43:8D:4B:D7:F9:74:A1:88:AD:4B:7F:F9:9F:A8:92:8C:53
Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC
Certificate issuer:       /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC
Certificate serial:       0110
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
Manifest number:          010E
Signing time:             Mon 21 Jul 2025 05:02:53 +0000
Manifest this update:     Mon 21 Jul 2025 05:02:53 +0000
Manifest next update:     Mon 28 Jul 2025 05:02:53 +0000
Files and hashes:         1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: A2c/iL3wRtbQ/2T3sKA592UhqfEsKE0LIonwDBBQGhE=)
                          2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl
                          rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 05:02:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 272 (0x110)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC
        Validity
            Not Before: Jul 21 05:02:53 2025 GMT
            Not After : Jul 28 05:02:53 2025 GMT
        Subject: CN=687dc9fd-8ce2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:01:36:b0:46:70:a5:54:97:2a:bc:ad:93:e9:
                    27:63:25:a3:ba:99:42:5a:32:01:e8:e2:7b:48:32:
                    c8:5c:fb:14:b1:6e:a4:57:c5:c8:7f:af:a2:2b:52:
                    82:08:e9:dc:d5:0c:44:31:01:a7:df:3e:57:28:83:
                    a0:21:b8:bf:ab:78:13:6d:58:7a:ee:16:cb:b9:15:
                    da:4a:c6:81:1d:30:3e:0d:01:05:48:08:53:3d:b6:
                    52:17:b2:3a:3b:79:44:f8:9e:36:94:16:da:a5:ac:
                    e4:2a:5a:b3:fa:ef:77:0b:e2:6f:55:ca:b5:16:d8:
                    a1:ca:4c:4d:b9:de:7b:d9:95:6b:08:55:57:65:27:
                    de:65:00:a5:f3:a9:86:5c:ad:d0:75:97:c6:d9:e9:
                    95:e5:18:78:a7:e1:47:44:eb:aa:fa:c6:29:30:09:
                    78:04:5e:85:cc:f8:c2:be:13:72:02:70:1d:ef:f2:
                    e8:ac:23:4f:42:2a:9e:4e:cd:4f:4e:d7:06:aa:93:
                    3f:01:34:40:96:f2:d0:52:11:a7:81:01:10:fa:68:
                    c3:20:6d:12:97:92:4e:62:3b:b5:1f:7e:29:f5:d1:
                    c7:18:97:2c:18:1a:9d:a1:50:63:59:72:cc:f2:75:
                    f9:c8:9b:ee:55:c7:46:88:b9:d1:a9:94:15:bf:1e:
                    ae:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:5B:A8:43:8D:4B:D7:F9:74:A1:88:AD:4B:7F:F9:9F:A8:92:8C:53
            X509v3 Authority Key Identifier:
                keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:16:db:56:46:1d:00:12:8a:d1:c1:25:5c:a6:29:fe:c0:ee:
         7f:42:5e:c5:c7:15:fe:63:7e:51:4c:ee:3a:d1:de:7a:eb:4f:
         d6:44:89:a9:df:04:51:89:76:c9:33:ab:51:fe:90:fe:d0:fd:
         ca:2d:7e:9a:28:6c:c8:0b:6b:26:3b:13:77:d9:6c:7d:87:e5:
         30:c1:26:cf:92:9b:4f:7b:c6:52:36:6e:b4:76:aa:f1:d8:40:
         62:71:09:f2:eb:4a:22:92:48:ac:6d:09:5d:4b:95:ec:0b:9b:
         f8:54:c0:d2:c7:80:bd:85:3b:f6:63:59:21:41:ad:ee:c9:fb:
         24:2a:7a:4d:78:ad:be:74:78:90:16:a9:0f:bb:f8:31:c9:f3:
         2f:6e:d7:1d:72:7f:87:03:8f:5a:b4:7b:82:fe:a3:e2:a7:81:
         66:82:93:5f:21:62:11:82:58:63:04:ed:d8:5e:81:88:01:68:
         52:07:37:1f:ff:c5:de:d3:04:08:a3:4a:a9:1c:83:9a:93:93:
         ea:3a:ca:58:8f:94:a0:b4:5f:a4:5b:5e:db:20:0b:fe:71:97:
         6f:14:7f:c6:3b:f9:2b:47:05:81:88:9b:a9:e9:20:1e:97:9d:
         c1:30:a3:8a:12:8d:12:a8:a5:e2:92:04:65:10:02:fe:93:42:
         14:8a:88:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 13:24:33 2025 by rpki-client