Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft
File:                     -ty5VaOsFGWZfQjySL-GxDNE-3g.mft (raw, json)
Hash identifier:          P370QEOo5Y3qtpDseQj12TJbV6NaoH07bLQk2QIKkt8=
Subject key identifier:   B3:3C:CF:FE:B2:C0:37:7D:9F:15:56:CE:68:8A:52:F1:F9:CE:E5:7F
Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78
Certificate issuer:       /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78
Certificate serial:       05C7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft
Manifest number:          05C1
Signing time:             Thu 12 Jun 2025 22:42:53 +0000
Manifest this update:     Thu 12 Jun 2025 22:42:52 +0000
Manifest next update:     Thu 19 Jun 2025 22:42:52 +0000
Files and hashes:         1: -ty5VaOsFGWZfQjySL-GxDNE-3g.crl (hash: pLWmQuL2Zk0rJE5lFASM83tokkbfmEkMlR6FNdiGFyU=)
                          2: 4D470362C55811EB981FA987C4F9AE02.roa (hash: wddyNGfZbP1BkMwAL9n/nAwszGpqRHSZopoWbtzoiYU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl
                          rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 22:42:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1479 (0x5c7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9148F32, serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78
        Validity
            Not Before: Jun 12 22:42:52 2025 GMT
            Not After : Jun 19 22:42:52 2025 GMT
        Subject: CN=684b57ed-ba45
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:25:ae:17:29:c9:a9:01:81:cf:40:8a:f7:d0:
                    9d:c0:75:76:e0:46:e4:29:88:bd:df:96:16:67:9f:
                    f1:9b:07:5b:52:40:5c:29:b1:38:82:55:a0:d6:02:
                    1d:87:ac:aa:c9:74:e1:74:9d:b8:a3:c6:03:d6:49:
                    56:0c:c1:a7:70:14:18:bc:c9:6a:43:28:e9:eb:22:
                    9e:c0:0a:15:77:81:9d:3a:47:51:97:a6:ce:2d:e2:
                    3f:4e:ca:0c:df:ff:2a:a3:55:3f:11:9d:fd:9b:c2:
                    0d:08:18:71:85:d6:3e:2e:df:ad:bc:69:fd:19:8e:
                    60:e3:c9:a6:45:b8:df:27:6d:01:3a:28:97:26:16:
                    56:f2:17:6a:bb:7b:14:91:87:97:51:e2:fb:16:bc:
                    a4:83:6b:2a:4b:14:3b:0e:79:39:82:d2:eb:f3:26:
                    9e:10:c0:3e:dd:d0:41:52:a7:22:c8:d1:85:c5:6d:
                    23:f0:87:58:d4:47:33:e8:9e:74:0b:9b:f4:dd:63:
                    cc:02:6e:0f:35:85:34:bb:31:76:eb:d9:6b:86:0a:
                    6e:9b:ad:4d:5d:34:9d:43:90:a0:91:e1:39:c9:56:
                    49:9c:e6:64:83:3b:2e:57:a1:4a:cd:af:61:10:93:
                    6c:6d:91:29:bd:95:95:99:41:1a:38:66:21:89:e4:
                    0b:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:3C:CF:FE:B2:C0:37:7D:9F:15:56:CE:68:8A:52:F1:F9:CE:E5:7F
            X509v3 Authority Key Identifier:
                keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:61:eb:37:f2:3c:87:c2:ff:2f:be:cc:de:d0:c1:4b:33:43:
         95:d8:dc:e6:07:fb:55:e3:fa:2f:57:da:b5:23:9f:67:bf:74:
         85:6c:27:8a:41:91:53:19:da:f7:aa:b3:04:10:2b:df:c4:9a:
         eb:68:2b:a8:26:ef:0d:2a:d2:1e:90:ae:44:29:5b:80:d6:b8:
         55:4b:d4:6a:81:43:31:1d:63:61:d1:33:40:67:b2:2d:f2:6d:
         d8:09:08:18:02:e2:02:a3:ff:5f:79:df:83:d9:71:46:4d:bb:
         47:55:28:bc:9d:13:f2:c2:a1:a9:08:35:af:dc:cc:20:75:3e:
         03:e0:80:ba:7c:96:eb:87:34:a5:89:b4:9b:2a:a4:26:1b:6a:
         80:3d:ee:58:a7:d0:8b:f6:31:8f:aa:5c:67:23:ad:e4:1c:a1:
         92:ed:bd:94:c3:7a:18:2d:35:08:9e:65:a4:9c:7c:1d:27:2a:
         f3:b7:10:c2:76:c3:0e:49:e1:a0:4f:f7:6f:e3:4c:81:b0:4b:
         6e:c9:67:d4:ac:d6:12:e5:78:cb:96:8f:85:b4:5c:7d:d5:a6:
         df:6a:2f:41:35:fa:82:47:38:69:94:8c:5d:ef:29:e5:95:44:
         1e:8e:89:10:e9:b4:6d:7b:96:e2:cf:7a:55:df:4c:1c:49:9b:
         2a:95:96:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 02:20:50 2025 by rpki-client