Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
File:                     JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json)
Hash identifier:          xBQdt7rPhaXqsAe7BBkwNOukYs5ObYk+f0ghZK1Hjgw=
Subject key identifier:   D3:A8:4C:9C:90:EE:6C:2E:04:21:B4:3D:D9:3D:24:AF:13:81:7A:B8
Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28
Certificate issuer:       /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28
Certificate serial:       29DB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
Manifest number:          29D2
Signing time:             Thu 12 Jun 2025 15:35:09 +0000
Manifest this update:     Thu 12 Jun 2025 15:35:08 +0000
Manifest next update:     Thu 19 Jun 2025 15:35:08 +0000
Files and hashes:         1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: t5B4xhHuIdABsUYwBjvqBpt+RpCRvMBv37L3blwc7vA=)
                          2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl
                          rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 15:35:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10715 (0x29db)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28
        Validity
            Not Before: Jun 12 15:35:08 2025 GMT
            Not After : Jun 19 15:35:08 2025 GMT
        Subject: CN=684af3ad-a264
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:7a:e6:ea:e2:52:0e:46:4b:0d:a3:ce:30:66:
                    d7:4d:19:c6:02:5f:14:ec:93:e2:bf:5a:b7:a2:19:
                    80:5f:b1:32:31:e6:cb:e9:5a:fd:28:06:75:de:86:
                    51:d6:d5:77:36:a2:05:c5:8a:ac:0f:b2:29:48:0f:
                    d6:59:79:a4:cd:40:35:95:bc:f9:5f:c0:28:85:e0:
                    b1:1d:5a:08:50:4b:78:4c:fc:6d:f7:34:4e:12:0a:
                    d0:9a:d8:f1:37:29:20:2a:0b:e7:00:03:bd:ff:93:
                    d4:82:bc:84:12:20:d7:58:bb:2d:8d:7d:ee:c5:18:
                    cd:4d:c4:54:28:83:5e:67:b4:f2:09:f6:53:52:08:
                    b4:a9:bf:aa:96:7e:bd:a0:30:35:b0:13:c0:30:d7:
                    be:53:53:83:da:b0:bd:b1:23:b7:8b:69:8a:50:1f:
                    26:fd:a2:86:1d:bd:c1:63:32:3e:ec:14:d9:6d:9f:
                    fb:3d:8f:be:f1:b9:78:8d:3f:5f:af:bb:e9:93:0e:
                    5c:55:8a:fb:fe:2f:51:20:0f:d7:65:50:ad:57:fd:
                    c7:ad:3b:26:19:fe:ff:3b:1e:c9:ae:90:a6:23:36:
                    63:dc:1a:8b:e2:bd:09:84:77:4e:f4:71:d3:b3:d4:
                    1a:c7:da:2c:6a:43:13:f2:75:87:55:ec:ee:78:74:
                    06:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:A8:4C:9C:90:EE:6C:2E:04:21:B4:3D:D9:3D:24:AF:13:81:7A:B8
            X509v3 Authority Key Identifier:
                keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:72:1c:7d:e1:dd:26:b6:8f:89:89:e5:f6:c2:52:12:11:1c:
         45:3e:ec:f5:d4:17:06:06:5e:e2:65:07:c6:b6:1a:8e:65:89:
         4a:64:bc:3b:da:a3:74:e1:55:c0:41:c7:a6:c0:5d:f5:09:55:
         1a:c5:de:e7:b7:fc:7d:74:82:fe:60:5d:f8:c8:65:1c:76:26:
         9d:f9:7b:42:76:ad:45:25:d6:0a:33:7e:61:4b:b9:bd:49:72:
         e4:c2:d6:56:37:b2:ba:06:eb:bb:24:d9:6a:72:86:a2:6e:92:
         a4:7d:9e:12:93:6d:3a:1b:ac:7a:7b:c9:eb:d3:49:52:ed:c4:
         0e:d0:3a:9e:e0:71:f3:95:32:d6:5d:f6:a8:76:a2:74:d5:81:
         4c:57:29:72:d4:b9:b2:94:5b:37:1e:c1:96:9e:5d:4b:d6:d3:
         5d:5d:7a:6d:b9:58:79:48:5c:03:c9:8f:fc:53:4c:86:f2:fe:
         95:3b:13:3f:b4:75:b3:af:bf:88:89:da:ed:a7:09:81:ff:86:
         fc:ed:0d:27:13:b9:c0:cb:de:a7:32:bc:11:8d:bb:65:17:ef:
         ad:b2:f8:c5:5d:9e:cf:71:ce:a4:51:8d:7f:88:b4:28:12:09:
         33:45:fc:9c:c9:a1:d0:73:7e:13:6b:2a:48:03:65:a4:c0:c2:
         e7:12:3e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:14:51 2025 by rpki-client