Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
File:                     JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json)
Hash identifier:          +/lMvybZ4B1H2+lPz5TpRzEDbMNzU7l6hyNz6JEQs94=
Subject key identifier:   5B:22:4B:9B:0D:C2:21:D6:5C:2A:87:BA:84:4D:A7:E6:DA:69:6D:6A
Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28
Certificate issuer:       /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28
Certificate serial:       29DC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
Manifest number:          29D3
Signing time:             Sat 14 Jun 2025 15:34:29 +0000
Manifest this update:     Sat 14 Jun 2025 15:34:28 +0000
Manifest next update:     Sat 21 Jun 2025 15:34:28 +0000
Files and hashes:         1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: LWQ0UyMYhhhBlqxEN4aEjdR4ghUAqRj6xk4j0f1bRHc=)
                          2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl
                          rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 21 Jun 2025 15:34:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10716 (0x29dc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28
        Validity
            Not Before: Jun 14 15:34:28 2025 GMT
            Not After : Jun 21 15:34:28 2025 GMT
        Subject: CN=684d9685-3c4e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:42:85:e7:6c:42:39:25:ad:17:2d:75:48:97:
                    75:09:52:c5:74:53:c0:65:39:5a:a8:a9:26:1f:88:
                    e8:31:10:35:3c:60:2c:ef:bd:64:74:f3:59:12:c4:
                    95:3c:ec:82:ee:a2:95:fa:6f:4a:52:66:b9:29:df:
                    6f:19:e8:c6:04:5c:c6:12:4f:3b:46:66:6b:ad:78:
                    85:1f:15:43:7a:03:94:4f:3d:e4:14:2e:df:b5:38:
                    68:4e:09:b8:6c:97:39:05:bb:95:5f:7e:f2:9a:b8:
                    14:b8:7e:20:2a:76:21:ea:44:55:05:7f:71:c5:48:
                    16:a9:20:0b:78:c2:50:13:4f:f6:04:35:96:fc:fa:
                    1b:fc:27:0c:43:09:3c:a0:c4:24:ca:88:64:a0:b0:
                    26:07:66:25:ec:d9:15:55:f0:fe:3f:53:36:12:c5:
                    e1:a7:2b:15:5c:3f:20:04:bc:a8:c5:43:f4:f9:4d:
                    92:9b:40:78:b3:f5:e6:86:cd:ae:39:4f:ac:51:df:
                    72:a6:89:7d:1e:24:07:a5:c4:3f:f6:38:c1:2f:3a:
                    82:bf:cf:b8:0f:19:12:69:78:71:8d:06:da:68:24:
                    d2:01:07:85:11:77:6b:c0:b8:be:f8:0d:33:c2:00:
                    97:b6:c3:51:13:2f:14:a8:b7:56:0d:94:b0:c5:0b:
                    f9:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:22:4B:9B:0D:C2:21:D6:5C:2A:87:BA:84:4D:A7:E6:DA:69:6D:6A
            X509v3 Authority Key Identifier:
                keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:d5:df:c0:59:51:35:c9:c8:61:08:b0:dc:2b:6f:46:16:d6:
         aa:86:f8:fb:ea:0f:6d:2a:eb:16:6e:e2:93:8e:43:15:2b:00:
         5a:9c:0d:f1:b1:5e:1c:8c:99:8a:58:30:6a:e0:f8:97:2d:5c:
         b1:7f:57:36:e5:8e:cc:54:de:6d:5c:f0:8c:dd:55:72:2a:33:
         d9:bb:3f:42:81:c9:ac:bc:29:f8:fa:a1:0e:57:d7:6f:a4:ce:
         05:75:ff:4e:5f:c0:02:5b:ba:94:bc:ba:ce:e8:0f:27:34:7e:
         a1:f5:3e:80:4d:fe:26:d0:2d:b7:55:ee:55:81:b9:a1:bc:cf:
         bb:21:11:e6:ff:29:1a:e1:84:d2:36:ab:b1:85:51:92:ab:5b:
         00:b3:2e:c6:5a:4d:fa:78:f4:b2:76:25:c4:03:49:66:d9:6f:
         37:84:7b:a3:fb:49:11:4b:5d:c3:56:2b:d8:e8:ef:2e:94:07:
         10:15:19:b3:8f:0d:2e:e6:53:fe:8e:ef:f5:0d:e3:8f:90:3a:
         bb:c2:a1:2a:15:42:cc:8b:55:f1:1d:9e:dc:cd:3f:43:c1:07:
         ca:eb:62:b3:d4:95:25:8c:e7:00:88:69:54:cd:ce:12:f2:b1:
         3f:6c:5f:1c:d8:f2:49:68:a4:fa:da:0f:a0:66:f3:38:d8:85:
         aa:d1:80:6e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICKdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx
RDk4N0VCMjgwHhcNMjUwNjE0MTUzNDI4WhcNMjUwNjIxMTUzNDI4WjAYMRYwFAYD
VQQDEw02ODRkOTY4NS0zYzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqkKF52xCOSWtFy11SJd1CVLFdFPAZTlaqKkmH4joMRA1PGAs771kdPNZEsSV
POyC7qKV+m9KUma5Kd9vGejGBFzGEk87RmZrrXiFHxVDegOUTz3kFC7ftThoTgm4
bJc5BbuVX37ymrgUuH4gKnYh6kRVBX9xxUgWqSALeMJQE0/2BDWW/Pob/CcMQwk8
oMQkyohkoLAmB2Yl7NkVVfD+P1M2EsXhpysVXD8gBLyoxUP0+U2Sm0B4s/Xmhs2u
OU+sUd9ypol9HiQHpcQ/9jjBLzqCv8+4DxkSaXhxjQbaaCTSAQeFEXdrwLi++A0z
wgCXtsNREy8UqLdWDZSwxQv5XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsiS5sN
wiHWXCqHuoRNp+baaW1qMB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC
QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2
eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp
QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCM1d/AWVE1ychhCLDcK29GFtaqhvj76g9tKusWbuKTjkMVKwBanA3x
sV4cjJmKWDBq4PiXLVyxf1c25Y7MVN5tXPCM3VVyKjPZuz9CgcmsvCn4+qEOV9dv
pM4Fdf9OX8ACW7qUvLrO6A8nNH6h9T6ATf4m0C23Ve5VgbmhvM+7IRHm/yka4YTS
NquxhVGSq1sAsy7GWk36ePSydiXEA0lm2W83hHuj+0kRS13DVivY6O8ulAcQFRmz
jw0u5lP+ju/1DeOPkDq7wqEqFULMi1XxHZ7czT9DwQfK62Kz1JUljOcAiGlUzc4S
8rE/bF8c2PJJaKT62g+gZvM42IWq0YBu
-----END CERTIFICATE-----
Generated at Sat Jun 14 21:21:28 2025 by rpki-client