Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft
File:                     5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json)
Hash identifier:          k3BqZqAoxGTIfpYIeAq1sbnuSYYOr1pvQAp1j+fUoxs=
Subject key identifier:   33:44:75:7D:5B:78:14:47:4E:55:92:C2:6B:93:09:6D:C8:16:68:D5
Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31
Certificate issuer:       /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531
Certificate serial:       348D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft
Manifest number:          348D
Signing time:             Thu 12 Jun 2025 14:32:02 +0000
Manifest this update:     Thu 12 Jun 2025 14:32:01 +0000
Manifest next update:     Thu 19 Jun 2025 14:32:01 +0000
Files and hashes:         1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: 9g1cq7GEQCfYj/Xp6acKhRDLpmzAcENJJ+rA9JAW7pU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl
                          rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 14:32:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13453 (0x348d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A915F67F, serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531
        Validity
            Not Before: Jun 12 14:32:01 2025 GMT
            Not After : Jun 19 14:32:01 2025 GMT
        Subject: CN=684ae4e1-b7d3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:03:b6:27:8d:32:26:84:36:a2:83:54:f5:27:
                    b8:8d:cb:e1:d8:30:f0:91:f5:a5:f6:e1:5e:44:dc:
                    72:1c:da:31:e5:24:7e:02:ac:47:5f:45:1e:ad:34:
                    35:a9:e5:de:72:3f:7a:4d:00:65:71:4a:ab:04:d6:
                    d6:50:78:af:f6:14:b4:05:4f:e4:26:e8:91:cf:93:
                    44:af:7e:14:2f:bb:d4:d2:5f:f9:0d:20:30:75:42:
                    69:03:1f:49:94:34:8b:96:5e:ba:09:a8:87:de:56:
                    e2:cd:2d:d0:9a:cb:3a:95:a5:aa:e0:9e:8e:d6:1d:
                    16:43:0a:4b:81:56:e6:95:72:20:ad:57:2b:95:05:
                    05:53:da:4e:72:89:40:72:f1:55:f4:45:1f:3e:8f:
                    f9:c2:0a:4b:83:2b:d4:b5:9a:df:87:7a:82:00:c1:
                    14:75:fd:61:11:51:7a:53:a3:72:b6:2a:6b:40:ec:
                    2c:99:f3:55:ce:ab:0e:ff:1a:be:97:a0:62:5b:bf:
                    17:a6:16:bc:1d:af:ad:80:47:74:86:d7:e4:50:b7:
                    46:8b:28:72:82:55:e8:84:be:18:f8:6f:1d:80:4b:
                    bd:5e:81:22:4c:e6:12:17:df:8b:17:d6:58:5c:9d:
                    57:e1:bd:a3:7d:95:01:85:c5:3b:5d:57:37:6d:19:
                    af:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:44:75:7D:5B:78:14:47:4E:55:92:C2:6B:93:09:6D:C8:16:68:D5
            X509v3 Authority Key Identifier:
                keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:0d:63:70:da:15:c1:0c:47:94:72:14:e4:12:bc:8f:eb:41:
         85:e7:dd:99:77:9f:09:73:89:84:18:c7:14:71:f5:28:b9:25:
         57:34:4f:ef:a5:60:e6:72:92:7a:ac:4c:a5:3a:0a:f0:fb:b4:
         1a:eb:fc:83:7d:e1:4f:bd:ff:a2:a3:27:81:bf:38:07:6d:8e:
         7f:65:52:b0:b9:2a:47:95:41:fe:e2:32:10:e5:57:de:24:25:
         2d:de:78:fa:b8:5a:28:40:01:f2:1e:41:b8:de:a1:e3:93:0a:
         ed:33:cd:c6:c1:ef:8c:8b:98:15:b7:3f:dd:0b:99:02:25:17:
         b2:76:85:a3:64:88:30:a9:ed:65:18:b1:ba:16:e8:12:1f:b6:
         e4:55:03:3c:85:88:c2:2c:ce:24:2b:33:57:20:0d:a2:33:62:
         64:54:e3:bd:da:0b:bb:be:0f:ad:f3:67:90:8c:65:5f:96:04:
         bc:8d:9e:47:88:80:3c:7f:65:29:88:6c:62:35:57:02:b5:cc:
         9c:f2:96:9b:66:68:3e:31:8a:67:78:89:d7:ad:ec:64:a3:a6:
         42:4c:a4:c0:62:b1:30:61:f3:7f:1f:fc:92:1e:d4:6d:1d:10:
         52:ec:50:2a:f4:42:17:c1:4d:65:9c:36:49:fd:08:e9:c6:e1:
         3d:2d:f2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 08:26:33 2025 by rpki-client