Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft
File:                     5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json)
Hash identifier:          7Ht1oqgLpE3WZjaLLWgNboiwGOJZr3k7eoyCN4tB5Xs=
Subject key identifier:   EF:EC:2B:AA:40:D3:67:DF:DB:DC:7F:6C:77:92:72:D7:FF:BD:47:CC
Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31
Certificate issuer:       /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531
Certificate serial:       348C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft
Manifest number:          348C
Signing time:             Tue 10 Jun 2025 14:32:34 +0000
Manifest this update:     Tue 10 Jun 2025 14:32:33 +0000
Manifest next update:     Tue 17 Jun 2025 14:32:33 +0000
Files and hashes:         1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: rZXy3wB77oNiEJThKOiBng6QrL18HzneaDn400xMbmg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl
                          rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 14:32:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13452 (0x348c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A915F67F, serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531
        Validity
            Not Before: Jun 10 14:32:33 2025 GMT
            Not After : Jun 17 14:32:33 2025 GMT
        Subject: CN=68484202-1e73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:32:71:e0:1e:6f:7d:a6:e2:6d:e6:f4:94:81:
                    70:51:24:40:b5:5d:ab:ef:37:ad:d1:78:4e:f4:01:
                    65:1c:35:1a:12:fa:79:be:2a:d4:13:c4:3e:1b:16:
                    11:b3:82:37:9e:38:fb:1a:22:87:3f:b1:63:82:47:
                    60:a7:e5:af:b5:94:69:3d:66:6d:80:2e:e2:b0:57:
                    70:0e:0b:40:af:93:65:66:d5:c1:25:ca:90:5e:43:
                    1c:09:76:dd:fc:94:be:1b:da:fa:ee:79:4c:06:5b:
                    1b:6d:fb:96:c2:7c:01:44:45:35:41:cf:8d:36:b8:
                    94:51:d0:5f:80:2f:eb:95:93:dd:13:f5:7a:31:84:
                    48:5d:63:48:25:5a:ac:3c:9a:d2:0b:18:85:81:e6:
                    fe:73:a4:ef:6c:d3:fb:aa:26:9a:ec:be:bf:d2:a0:
                    b5:e0:07:89:37:92:27:ab:e5:e6:2e:63:e4:0e:9f:
                    ca:61:ed:1c:b6:8e:89:b2:0a:f5:33:b8:76:7a:12:
                    69:2a:c7:ce:9d:66:16:b7:43:b3:f4:7e:51:17:95:
                    e3:b0:98:f9:00:84:32:ce:4f:9a:34:d2:b5:25:79:
                    e8:f9:ef:bb:9a:97:e3:8a:5f:71:e4:d0:d0:60:0e:
                    9e:61:ef:e7:29:0a:a7:e1:76:81:d3:42:4a:67:b4:
                    7e:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:EC:2B:AA:40:D3:67:DF:DB:DC:7F:6C:77:92:72:D7:FF:BD:47:CC
            X509v3 Authority Key Identifier:
                keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:09:a9:68:ce:0e:5a:9c:5d:10:98:2b:95:41:66:5a:ff:e5:
         84:fe:ed:52:a7:e2:f4:ec:7f:6d:34:af:63:31:3c:5b:5b:f7:
         b4:16:67:22:dd:b3:c6:18:a1:44:99:65:db:79:59:fb:72:2d:
         80:5d:e4:74:df:ae:bb:3b:cb:63:bc:f5:19:b1:2b:0e:d1:b4:
         26:01:51:01:9c:48:92:17:80:f5:1f:9b:d7:7d:f3:1b:e7:d9:
         ab:b5:d7:dc:bf:04:10:ed:e6:21:7b:51:28:4d:25:bd:cc:f3:
         82:fb:13:98:1d:53:6f:4f:bd:02:f3:e2:17:32:aa:8b:23:c2:
         ba:ce:44:00:f5:07:72:4e:9e:32:27:44:c4:4f:c4:a3:dd:18:
         7a:44:4e:e0:84:4d:f6:8d:ca:e6:79:76:41:5c:95:ba:bf:43:
         ce:57:9e:c9:0d:33:28:17:06:d7:ba:f8:7d:51:e5:f4:ff:76:
         57:51:a6:a2:0f:25:f6:88:e4:28:11:3f:a1:3e:a5:ec:ef:6a:
         7d:87:af:f2:05:dd:f1:5e:63:ce:ef:6e:a3:75:2a:f8:fd:ec:
         24:25:e9:bb:25:b3:a8:fb:a7:29:f5:71:6f:b6:59:5f:29:7d:
         49:41:6d:aa:03:c2:3c:c4:4a:69:bf:f5:83:8e:21:b1:78:c8:
         54:ba:51:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 09:41:16 2025 by rpki-client