Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
File:                     R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json)
Hash identifier:          ke/0tD7HJbiLFcDbDqUFrMSTuGZ+Fqj1P7LOfmMBhwc=
Subject key identifier:   2C:B5:62:04:7C:C5:98:BB:C3:25:11:37:7D:9B:C0:56:EB:69:55:F8
Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3
Certificate issuer:       /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
Certificate serial:       0D20
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
Manifest number:          0D12
Signing time:             Sun 08 Jun 2025 17:54:44 +0000
Manifest this update:     Sun 08 Jun 2025 17:54:44 +0000
Manifest next update:     Sun 15 Jun 2025 17:54:44 +0000
Files and hashes:         1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: eLWNh0gH8oVCe8TuK/3+5GB6I0GuihkiP3CogcHVKA8=)
                          2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl
                          rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 17:54:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3360 (0xd20)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
        Validity
            Not Before: Jun  8 17:54:44 2025 GMT
            Not After : Jun 15 17:54:44 2025 GMT
        Subject: CN=6845ce64-3deb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:6c:74:90:ef:4c:93:36:76:1c:8d:58:23:61:
                    11:1c:89:50:ed:40:d3:a4:ce:e0:c6:4b:af:a8:17:
                    ff:d4:48:d8:e0:86:60:6f:6d:64:1d:ce:c1:de:48:
                    63:a2:bc:47:b7:05:57:5f:a7:5f:7c:3f:83:7b:9c:
                    a3:c8:01:8b:e9:18:1a:3e:73:32:5f:b1:a7:ed:4b:
                    29:cc:4c:72:cc:1f:1b:eb:3e:be:39:74:58:68:02:
                    7d:2b:2b:f7:fe:71:24:9b:fb:93:2e:eb:50:2b:db:
                    4f:c8:a8:95:26:00:bd:ba:dc:d4:6c:ab:29:93:27:
                    25:66:9f:f2:57:2f:e7:fa:85:d5:7c:23:c4:a8:09:
                    c4:ed:ff:80:a3:84:5e:3f:be:df:2c:85:9d:2c:39:
                    2c:17:6f:a1:54:d0:f3:c3:05:52:8a:23:09:8e:6a:
                    f3:60:46:d4:74:ab:98:34:94:86:c4:d6:01:91:64:
                    3d:d0:2b:01:35:eb:97:f9:06:ac:c5:53:81:6c:a3:
                    c6:9d:8f:da:d3:38:87:a4:f5:2b:9d:bd:7b:3b:d4:
                    ab:96:cd:f8:40:61:f2:96:cf:74:29:43:b0:84:e1:
                    89:91:25:4a:73:77:ab:53:6b:e7:0a:91:91:4c:0f:
                    ec:9b:20:9a:cd:8c:54:75:49:69:e7:c6:1f:aa:24:
                    74:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:B5:62:04:7C:C5:98:BB:C3:25:11:37:7D:9B:C0:56:EB:69:55:F8
            X509v3 Authority Key Identifier:
                keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:46:6f:a7:ae:0b:7d:eb:0d:35:2f:b4:a6:b9:5e:5a:0f:33:
         83:49:f2:80:72:a0:c1:c7:30:b2:d1:13:a5:53:37:d9:91:f3:
         07:ff:cb:be:97:76:29:3e:cf:ae:c9:e4:a9:c8:d8:d9:1b:c4:
         c8:0f:14:76:9a:3f:52:fe:2b:89:08:fe:29:67:95:b0:9d:2d:
         73:1e:6a:a8:7c:90:ad:81:31:87:74:cc:0d:97:34:98:15:40:
         c8:b4:ec:60:bb:f2:e8:a5:46:92:ac:77:2e:78:88:17:c3:f4:
         e3:e3:27:f3:8e:3b:86:42:84:f5:d6:52:b4:c6:bf:28:76:f3:
         45:c5:3e:85:b4:fd:da:51:7a:d5:02:e8:c0:03:6a:50:82:81:
         f8:09:4c:36:fd:11:d6:42:8f:bd:66:55:ab:8b:94:e3:9f:5a:
         06:f4:3a:31:cc:10:86:fd:22:fa:0a:8d:a8:f5:7d:b0:bc:1f:
         46:4d:39:e6:84:93:85:cf:ad:74:8c:54:31:71:45:d1:23:9e:
         dc:2e:bc:f1:66:37:1d:c9:c7:dd:46:d9:0f:03:38:d6:d3:f4:
         73:10:15:b0:5c:85:80:80:50:bc:2f:9d:a6:70:48:76:93:37:
         10:c1:59:66:74:c0:c7:aa:ac:c8:45:53:5c:8d:28:40:a0:5a:
         b8:f7:5e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 16:32:20 2025 by rpki-client