Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
File:                     JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json)
Hash identifier:          0D43yBgKzRisquu75Q9vJqfEKZw5yOp6U5zhJ6mTUnI=
Subject key identifier:   1C:09:B3:0D:4E:F6:13:0F:46:7D:7D:95:2F:FE:55:0D:56:0E:D8:4F
Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28
Certificate issuer:       /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28
Certificate serial:       29D9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
Manifest number:          29D0
Signing time:             Sun 08 Jun 2025 15:32:54 +0000
Manifest this update:     Sun 08 Jun 2025 15:32:54 +0000
Manifest next update:     Sun 15 Jun 2025 15:32:54 +0000
Files and hashes:         1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: TEVfQexVFQ3SDpHVAOhrmaFEpoXyzYytMTGhmGYhb2k=)
                          2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl
                          rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 15:32:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10713 (0x29d9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28
        Validity
            Not Before: Jun  8 15:32:54 2025 GMT
            Not After : Jun 15 15:32:54 2025 GMT
        Subject: CN=6845ad26-a96b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:b3:bb:d1:9d:de:82:28:52:23:ce:bd:cc:63:
                    6f:7a:b2:aa:19:be:96:ac:da:09:42:5d:a7:9f:1c:
                    8d:f7:b1:05:9b:e5:0d:eb:c0:d5:66:66:a5:58:ff:
                    2b:c4:0e:35:d8:ef:a9:c3:a7:52:cf:03:5a:4d:1f:
                    9d:55:44:fa:f3:02:05:bd:60:27:ce:4a:df:ff:e2:
                    6f:b6:2d:0b:12:4c:93:78:ca:b1:d1:b3:e9:c7:51:
                    36:a0:92:91:e6:d6:df:b3:01:b5:7d:5c:e9:9e:52:
                    18:58:5e:f0:80:be:86:4c:5c:36:69:dd:ef:71:58:
                    1e:cf:dc:21:c5:c6:52:5e:52:56:68:19:ab:fe:66:
                    ef:0d:c5:41:cc:e3:58:e7:4f:95:ef:43:e2:ca:f0:
                    eb:2f:39:a6:3b:26:ba:1b:8b:e4:20:5b:a8:00:4b:
                    ff:f0:f5:32:99:a0:cc:0f:73:9a:f1:a2:b1:e2:71:
                    f1:4c:1c:51:29:ad:2a:94:4d:32:08:5b:6c:e7:5f:
                    4c:59:df:3e:5d:53:f8:cf:c1:d5:2a:8d:d7:af:90:
                    c8:db:17:2c:07:3f:ba:32:2d:d3:88:d9:c3:68:0e:
                    dd:1e:ba:30:16:fc:d6:07:b1:7d:ac:43:8b:22:df:
                    4d:0b:bc:b1:cf:1b:18:25:91:ea:06:2f:6c:92:0a:
                    11:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:09:B3:0D:4E:F6:13:0F:46:7D:7D:95:2F:FE:55:0D:56:0E:D8:4F
            X509v3 Authority Key Identifier:
                keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:9f:bf:d7:99:1e:32:78:65:55:39:e9:48:e6:da:b3:f7:f8:
         f8:d2:e7:00:79:42:12:b8:9e:22:66:86:aa:db:90:1f:ec:40:
         67:3d:8b:fc:39:11:55:84:87:c9:f8:83:9c:0a:c7:43:12:4d:
         3a:d8:05:af:c0:74:fb:8e:32:82:90:0b:dc:85:0f:74:ed:cf:
         bd:7f:a4:a7:22:35:af:e5:a8:5c:fe:42:2d:f0:3d:1c:e0:23:
         50:f2:72:7a:67:a3:d6:81:49:0d:ca:7c:8d:60:6c:ef:d8:cc:
         e2:19:a8:11:dc:87:6e:f7:94:a5:74:fb:41:39:59:2d:2a:a7:
         ff:ec:39:07:ae:ea:77:46:d5:4a:ee:56:8a:3d:a6:5b:bd:0a:
         81:32:28:1e:dd:09:f1:a8:f4:41:fa:66:1c:ef:89:0a:03:6b:
         f4:b2:5c:c7:26:95:49:7a:c0:54:ba:f6:31:1a:d2:b8:4c:e1:
         8a:be:be:cb:1c:d3:45:84:74:30:73:9c:61:7d:ed:67:3c:01:
         ea:a6:f9:da:75:fb:2c:01:06:5e:22:40:71:de:8b:e6:42:66:
         33:8b:41:29:ee:8e:1f:ff:95:0b:9f:2c:27:66:d1:83:ec:85:
         70:a1:03:15:f5:1c:8a:38:90:a6:b4:c8:1c:c9:83:79:c1:d7:
         de:01:1e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 12:54:05 2025 by rpki-client