Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
File:                     s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json)
Hash identifier:          zpEx5NoKjVr76hIPIUKkZ6tX5H6m08/Psfp36x++/ys=
Subject key identifier:   A6:2E:F4:A6:F7:C6:A3:F9:D9:1F:73:79:D4:35:45:98:71:46:2F:16
Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC
Certificate issuer:       /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC
Certificate serial:       010A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
Manifest number:          0108
Signing time:             Wed 09 Jul 2025 05:46:38 +0000
Manifest this update:     Wed 09 Jul 2025 05:46:38 +0000
Manifest next update:     Wed 16 Jul 2025 05:46:37 +0000
Files and hashes:         1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: 6kAVL+U8N+FBsafN3wsA3wJri0N2eYjL9QwEi5vPLWI=)
                          2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl
                          rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 16 Jul 2025 05:46:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 266 (0x10a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC
        Validity
            Not Before: Jul  9 05:46:38 2025 GMT
            Not After : Jul 16 05:46:37 2025 GMT
        Subject: CN=686e023e-5dc1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:93:07:52:b6:ae:95:23:cf:60:74:2f:32:d5:
                    89:b4:ca:ac:e8:2e:3f:ad:33:a2:0a:5c:74:73:9c:
                    8e:11:13:10:49:f5:a6:07:96:3e:c7:6c:28:ae:1b:
                    8f:94:2d:76:fb:6d:68:08:b8:13:89:2b:f7:3d:fb:
                    55:ad:50:84:55:9f:00:ba:fc:43:86:f2:94:8c:38:
                    7e:e7:07:c3:6d:2a:e9:1a:d9:4a:58:8d:c8:74:2e:
                    ff:9c:88:e7:e9:ee:fa:25:9f:94:d7:09:90:f5:75:
                    3a:96:d5:2a:9e:de:ce:32:32:6b:3c:ec:b7:a7:07:
                    b6:14:bb:05:8c:e3:04:41:25:60:59:cb:00:c7:40:
                    ab:bb:03:d3:42:a7:5c:90:c2:58:aa:78:e1:97:d1:
                    a2:05:6e:7a:08:e1:73:95:f5:c8:34:1e:28:77:62:
                    40:76:fe:99:55:4b:12:c3:7c:a4:c9:32:4b:a9:43:
                    f2:5b:f1:0d:60:15:12:c7:08:f7:66:db:4b:b6:d0:
                    d2:63:e2:1b:7f:b1:85:e3:62:bb:89:cf:c7:e7:d3:
                    e0:99:b8:99:b9:0e:d2:96:95:e0:d3:1b:db:6c:63:
                    ea:7d:45:b2:17:ce:1c:22:05:c6:f3:d5:92:e2:b9:
                    77:7a:85:ce:f1:b7:0b:bf:92:f1:bb:98:79:a1:90:
                    87:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:2E:F4:A6:F7:C6:A3:F9:D9:1F:73:79:D4:35:45:98:71:46:2F:16
            X509v3 Authority Key Identifier:
                keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:6c:23:f9:10:4c:26:eb:74:0d:78:ca:45:4b:e2:fb:c1:03:
         70:5a:45:99:3f:75:30:0e:7b:1e:7c:b5:0d:60:a2:8c:9b:42:
         a2:6a:6b:c8:12:a1:7c:0c:c4:bb:2c:b5:2a:29:4a:b6:fb:42:
         cd:13:f7:f9:fe:a3:66:0a:85:be:40:87:d2:46:12:c6:f2:1d:
         47:d3:33:89:f4:8f:d8:1d:9e:e1:1c:34:10:6e:5f:1a:ae:e7:
         ee:f8:d0:63:6b:3a:4d:f2:11:5d:98:28:ee:0d:80:86:89:d6:
         57:40:e5:bf:5d:9e:53:4d:ba:3b:18:82:8b:d6:3f:eb:6e:8a:
         2b:90:70:a1:d5:ef:8d:ff:b7:3b:15:ae:96:f7:e2:00:49:0b:
         5f:d9:07:76:48:19:88:98:85:0b:41:9f:78:8f:4e:53:e2:e1:
         ce:b3:08:51:d2:ed:05:5d:fd:c2:45:2b:e3:d0:36:ef:c3:e2:
         52:e7:0e:21:12:7d:53:94:2d:4c:e6:e7:9d:7d:7a:e1:94:c5:
         dc:76:b8:bb:70:71:b3:0b:47:8a:88:61:bf:94:7d:1b:90:d5:
         5f:8a:3a:c4:c8:e9:ce:a8:64:68:48:a3:05:0d:03:de:39:32:
         b5:a8:2b:eb:eb:f5:78:1d:c3:4f:b2:b0:6d:96:76:09:c1:c8:
         6a:17:0b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 9 09:54:24 2025 by rpki-client