Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft
File:                     -ty5VaOsFGWZfQjySL-GxDNE-3g.mft (raw, json)
Hash identifier:          SZj2zzlqdm/PijcIVrgsKbbLjneAWsA+cW74EtzYtc0=
Subject key identifier:   73:2F:94:41:27:DD:FE:C2:5F:1E:77:EF:62:C3:A8:8C:38:D7:CF:59
Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78
Certificate issuer:       /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78
Certificate serial:       05C6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft
Manifest number:          05C0
Signing time:             Tue 10 Jun 2025 23:01:42 +0000
Manifest this update:     Tue 10 Jun 2025 23:01:42 +0000
Manifest next update:     Tue 17 Jun 2025 23:01:42 +0000
Files and hashes:         1: -ty5VaOsFGWZfQjySL-GxDNE-3g.crl (hash: Ljz4QBj4/LTfxmPI0x0lfyP67lE0zvnJ00mGD0adcB4=)
                          2: 4D470362C55811EB981FA987C4F9AE02.roa (hash: wddyNGfZbP1BkMwAL9n/nAwszGpqRHSZopoWbtzoiYU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl
                          rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 23:01:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1478 (0x5c6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9148F32, serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78
        Validity
            Not Before: Jun 10 23:01:42 2025 GMT
            Not After : Jun 17 23:01:42 2025 GMT
        Subject: CN=6848b956-2d3c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:03:80:55:cf:d4:69:9c:98:d2:b9:c9:1f:f9:
                    13:f6:f9:89:a7:cf:e0:1f:4d:a0:b8:c0:a8:bb:09:
                    10:7d:7b:d5:84:50:e0:10:d4:5c:15:45:11:58:f5:
                    c5:a7:05:bf:dd:6d:a5:c1:04:ac:c0:c8:e2:2b:a1:
                    1c:fa:29:26:28:a5:44:b1:fe:38:c8:38:9c:93:cf:
                    b6:38:3c:2d:61:65:08:81:70:4a:91:2d:49:6c:88:
                    b7:62:f5:05:ec:40:22:99:71:90:07:9b:3a:72:7c:
                    3a:f0:d6:ef:52:32:b6:40:8f:eb:0c:ca:41:56:30:
                    e7:0f:5e:a5:f0:41:61:6a:5f:2c:fc:cc:6d:91:d0:
                    b3:46:13:4d:4d:23:c3:72:6e:83:28:a2:4d:42:3f:
                    8d:68:7f:9b:cb:9f:0c:00:d7:55:3a:6d:d1:4d:d6:
                    95:08:fa:e7:c9:ec:7b:88:63:bf:a4:62:ea:e3:17:
                    7c:90:9a:c6:37:3b:74:97:a8:dd:90:e9:d9:36:68:
                    93:fa:18:92:99:5a:15:59:2f:1a:5a:25:1b:5f:1c:
                    07:b7:61:34:74:eb:ce:ee:03:06:85:4c:5b:1f:1a:
                    8c:74:ae:fb:2d:3b:22:06:95:0e:6b:ba:1f:03:75:
                    90:a4:86:e6:cc:b4:ca:e2:55:09:96:0b:ae:95:72:
                    e9:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:2F:94:41:27:DD:FE:C2:5F:1E:77:EF:62:C3:A8:8C:38:D7:CF:59
            X509v3 Authority Key Identifier:
                keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:21:42:37:7f:08:7f:0a:e3:51:90:b0:75:af:e3:3c:94:f9:
         97:2f:41:5c:8a:ac:7e:e0:ba:48:c6:5e:b6:4b:37:86:80:1f:
         15:b5:f3:c8:7e:68:0f:ab:8d:fe:48:8f:04:56:5f:d7:ba:e0:
         8e:b2:4b:10:3d:6f:6f:c5:61:49:e4:51:b4:b6:82:e0:f9:bb:
         6a:bc:95:1a:8d:09:e7:b4:5e:3c:03:4b:be:cf:35:73:b8:d2:
         91:7e:1e:49:81:86:59:db:ac:9a:30:dd:63:4b:45:f5:c8:e5:
         c1:13:ef:85:04:28:59:6c:1e:3b:18:06:c9:b6:92:64:87:13:
         2f:30:a2:0e:0c:7f:8a:14:74:47:89:ff:23:8d:9e:84:9f:eb:
         a6:98:d7:2f:b6:b9:1b:09:f8:0c:10:03:d7:09:0a:88:1a:94:
         19:87:5a:a8:55:aa:85:34:4e:ee:f0:ee:ed:b9:03:d6:07:e2:
         74:6d:d9:08:f4:3a:63:d5:90:9b:9a:37:2e:23:05:39:33:7e:
         03:85:36:e8:65:ba:db:fd:73:4e:93:68:22:24:df:78:a4:b4:
         bd:7c:74:c3:28:01:e8:23:a8:8e:9c:74:74:65:a9:b7:62:73:
         3c:37:96:f7:90:b4:90:ad:17:c7:18:68:c9:ea:e3:78:5a:13:
         6e:9b:96:eb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDhGMzIxMTAvBgNVBAUTKEZBRENCOTU1QTNBQzE0NjU5OTdEMDhGMjQ4QkY4NkM0
MzM0NEZCNzgwHhcNMjUwNjEwMjMwMTQyWhcNMjUwNjE3MjMwMTQyWjAYMRYwFAYD
VQQDEw02ODQ4Yjk1Ni0yZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwQOAVc/UaZyY0rnJH/kT9vmJp8/gH02guMCouwkQfXvVhFDgENRcFUURWPXF
pwW/3W2lwQSswMjiK6Ec+ikmKKVEsf44yDick8+2ODwtYWUIgXBKkS1JbIi3YvUF
7EAimXGQB5s6cnw68NbvUjK2QI/rDMpBVjDnD16l8EFhal8s/MxtkdCzRhNNTSPD
cm6DKKJNQj+NaH+by58MANdVOm3RTdaVCPrnyex7iGO/pGLq4xd8kJrGNzt0l6jd
kOnZNmiT+hiSmVoVWS8aWiUbXxwHt2E0dOvO7gMGhUxbHxqMdK77LTsiBpUOa7of
A3WQpIbmzLTK4lUJlguulXLpywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMvlEEn
3f7CXx5372LDqIw4189ZMB8GA1UdIwQYMBaAFPrcuVWjrBRlmX0I8ki/hsQzRPt4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYzMi9FMDY0NzVDRUM1
NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZHV1pmUWp5U0wtR3hETkUt
M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLy10eTVWYU9zRkdXWmZRanlTTC1HeERORS0zZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
OEYzMi9FMDY0NzVDRUM1NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZH
V1pmUWp5U0wtR3hETkUtM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAOIUI3fwh/CuNRkLB1r+M8lPmXL0Fciqx+4LpIxl62SzeGgB8VtfPI
fmgPq43+SI8EVl/XuuCOsksQPW9vxWFJ5FG0toLg+btqvJUajQnntF48A0u+zzVz
uNKRfh5JgYZZ26yaMN1jS0X1yOXBE++FBChZbB47GAbJtpJkhxMvMKIODH+KFHRH
if8jjZ6En+ummNcvtrkbCfgMEAPXCQqIGpQZh1qoVaqFNE7u8O7tuQPWB+J0bdkI
9Dpj1ZCbmjcuIwU5M34DhTboZbrb/XNOk2giJN94pLS9fHTDKAHoI6iOnHR0Zam3
YnM8N5b3kLSQrRfHGGjJ6uN4WhNum5br
-----END CERTIFICATE-----
Generated at Wed Jun 11 06:26:31 2025 by rpki-client