Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
File:                     JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json)
Hash identifier:          LVgwBlT/ytDcVQz05JNKqE4YR2LMV/GPHVMS0QSwPK4=
Subject key identifier:   A7:6D:BC:30:E3:62:29:BB:4F:33:54:50:C0:FB:4F:B6:0B:B5:30:44
Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28
Certificate issuer:       /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28
Certificate serial:       29DA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
Manifest number:          29D1
Signing time:             Tue 10 Jun 2025 15:36:56 +0000
Manifest this update:     Tue 10 Jun 2025 15:36:55 +0000
Manifest next update:     Tue 17 Jun 2025 15:36:55 +0000
Files and hashes:         1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: IHDbP0fuzRlFySjfwjT7JUXTsiZiHQX5MUMNNrcGXF8=)
                          2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl
                          rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 15:36:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10714 (0x29da)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28
        Validity
            Not Before: Jun 10 15:36:55 2025 GMT
            Not After : Jun 17 15:36:55 2025 GMT
        Subject: CN=68485117-da11
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:a3:10:02:dc:2e:94:ff:96:c2:e9:de:b6:42:
                    7f:26:a9:e2:b7:96:b4:87:18:33:a1:d0:0f:0d:97:
                    56:c6:50:a6:a0:47:3d:ea:69:5e:43:a1:5c:f0:d8:
                    92:4f:91:86:a8:dc:ce:5f:32:07:7e:f8:50:42:e4:
                    3c:ae:6a:36:cd:36:54:47:75:e7:46:03:41:21:3a:
                    71:48:0b:a2:9f:71:2a:31:bd:27:d4:3a:a7:13:af:
                    10:bb:e6:a6:11:73:9f:a2:73:5d:10:37:db:f3:bd:
                    ec:af:82:68:45:9f:d9:c1:b1:10:25:3b:bd:12:a3:
                    8c:f4:06:d8:3c:4e:43:e3:0c:8a:62:88:f7:16:6f:
                    da:88:e3:a1:35:60:a0:9f:ae:ac:6b:81:34:08:b8:
                    ec:1c:88:6d:83:1d:5a:52:48:42:28:49:3d:82:54:
                    8c:29:c2:d8:c6:9a:36:6e:ea:d1:c7:c4:16:af:bd:
                    c1:f1:1b:c0:f3:7f:63:f4:b5:e2:a9:48:12:2a:dc:
                    26:d0:e6:74:68:16:c6:0b:ff:f2:c5:ab:da:11:e6:
                    0a:e8:57:2e:c6:9a:0a:ac:da:4c:8f:4d:c8:ef:24:
                    8e:8d:6a:56:31:5e:6b:a7:1e:fc:58:02:da:f8:48:
                    6e:a1:8b:38:a9:e7:32:a5:82:22:ae:a3:6b:24:40:
                    1e:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:6D:BC:30:E3:62:29:BB:4F:33:54:50:C0:FB:4F:B6:0B:B5:30:44
            X509v3 Authority Key Identifier:
                keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:04:e3:bb:a0:a2:3c:2f:6d:d7:1c:5a:20:9b:99:c1:b7:44:
         4b:28:01:3d:8f:c1:e8:c8:64:09:52:8a:3f:2a:12:1c:fb:34:
         ba:82:36:8b:7b:3d:44:12:c3:d7:f2:17:69:6b:91:9b:eb:e7:
         f3:d2:85:63:27:f7:b0:25:e7:fb:8c:9f:2e:6f:6b:38:4f:64:
         db:86:13:8d:d2:41:c6:c2:9f:cb:e5:ef:e1:49:59:07:06:0a:
         a0:c7:52:9d:d0:f4:38:fd:01:9b:12:3f:b0:53:d2:ee:3e:3b:
         b0:c8:39:97:b9:37:5d:11:e7:7b:91:d1:68:54:5f:bd:f7:70:
         88:71:32:5f:c3:4e:9b:77:24:c1:06:dd:3e:e5:9f:ff:84:79:
         2a:d2:3c:1a:19:a4:6b:24:fb:a4:d2:13:25:4d:45:2f:87:69:
         8e:8c:e3:88:dd:b8:63:1d:63:7c:d6:ed:22:a8:88:dc:04:26:
         75:87:f2:dc:1f:b8:73:32:d9:23:98:e6:e6:12:86:74:0d:1e:
         2c:34:a7:f0:02:fc:c3:38:16:e1:7d:95:12:8d:65:71:8e:f8:
         05:9d:b5:5e:e3:f4:a0:02:4a:f1:bc:81:e4:29:92:49:2a:0c:
         e8:72:6f:e6:a1:73:4d:bd:de:02:2f:40:fa:32:11:a3:94:4a:
         50:7f:2b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 18:45:22 2025 by rpki-client