Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft
File:                     bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft (raw, json)
Hash identifier:          QiWY/gCKeDsmVKROOhrPXdHAajtsP0a2XNsZRfUGT3U=
Subject key identifier:   70:5A:3E:35:00:49:3C:34:DF:35:B7:97:38:F7:68:2A:19:FC:CA:5B
Authority key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54
Certificate issuer:       /CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54
Certificate serial:       CB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft
Manifest number:          C9
Signing time:             Wed 11 Jun 2025 05:05:45 +0000
Manifest this update:     Wed 11 Jun 2025 05:05:45 +0000
Manifest next update:     Wed 18 Jun 2025 05:05:45 +0000
Files and hashes:         1: bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl (hash: 92/Xrff/EW67cdG60/xxNdLQCCzf/eVYbcCN7eILN9U=)
                          2: 8093CCBA13F611EF8ED7D71EC4F9AE02.roa (hash: J6cm0tDS7Sdy7/sJGsGgF8rSkOKz7v9OX913NFApE9A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl
                          rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 05:05:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 203 (0xcb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91626D2, serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54
        Validity
            Not Before: Jun 11 05:05:45 2025 GMT
            Not After : Jun 18 05:05:45 2025 GMT
        Subject: CN=68490ea9-afb5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:43:fc:08:65:6b:77:d7:aa:95:bc:a1:c5:80:
                    5b:18:4d:14:6d:7a:a7:c7:56:f1:4b:c9:8e:c7:1d:
                    b8:44:ba:5c:4f:51:73:f5:db:db:8c:65:1a:2a:77:
                    43:9a:8b:d7:35:e7:f0:8e:bb:5a:5c:a4:15:10:6e:
                    de:63:b6:b7:43:8d:cd:3a:5e:c2:0d:b8:c2:fc:93:
                    f4:7e:0d:e5:a1:57:eb:76:57:09:d1:3f:f7:86:dc:
                    4b:e9:7c:21:fb:26:c0:7c:9f:2d:46:68:13:71:0d:
                    b9:eb:68:16:fb:82:fe:de:47:e1:cf:e7:18:2f:05:
                    46:5c:e5:eb:56:a9:73:47:24:f2:56:b9:e2:7d:06:
                    38:09:dd:ef:1b:53:2f:59:35:5e:d4:cb:bc:06:ba:
                    3a:93:4f:02:0d:d4:4c:99:c9:cb:19:49:24:e1:aa:
                    f2:37:f4:99:47:ce:95:da:16:9c:f0:ef:9e:ae:06:
                    95:fb:75:17:b0:cd:b9:d5:b0:4e:21:d2:8a:79:3b:
                    b5:34:8c:8a:62:1b:8e:2a:5f:41:91:d0:a3:3b:8a:
                    50:64:7b:b1:5f:38:71:52:9f:4d:ca:92:67:8f:b1:
                    bc:51:27:d5:f4:ea:9a:a8:81:4f:a2:a2:fd:bd:03:
                    59:27:53:5b:52:59:c2:3e:89:c9:8f:92:97:a9:75:
                    fa:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:5A:3E:35:00:49:3C:34:DF:35:B7:97:38:F7:68:2A:19:FC:CA:5B
            X509v3 Authority Key Identifier:
                keyid:6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:91:bc:3c:f7:a2:a7:94:e5:23:a4:b5:30:26:45:41:23:50:
         7b:57:1a:ee:ad:81:e1:04:1b:30:cf:be:50:b4:6d:02:d5:35:
         40:75:fe:6a:11:15:86:8c:07:a6:b8:9e:4a:28:e8:fa:3e:ac:
         f6:cd:53:11:eb:a0:82:a4:da:53:b1:78:ee:68:0e:20:e7:db:
         bc:25:8e:ec:7f:a9:ef:f5:b9:10:7a:e3:fe:13:95:ae:34:7f:
         1a:e4:b3:1f:a1:ef:7a:ee:99:ad:29:06:48:83:65:ca:35:15:
         c8:26:43:db:7b:c7:1d:34:a2:81:8e:55:bb:b6:06:5f:38:5a:
         33:2c:ff:eb:bf:9e:31:f8:eb:7c:79:de:0a:eb:b3:55:b1:4f:
         bc:70:4d:01:d9:b0:0c:c8:7d:f7:1c:3f:ed:68:97:13:40:9b:
         2f:80:bb:33:3f:02:48:0a:6d:70:67:14:fa:3f:91:9f:70:a7:
         04:0d:a3:c5:a1:9a:4d:fd:bc:f8:31:18:a5:d5:de:8d:f8:c9:
         4a:d9:3c:e9:f4:68:a3:0c:fa:4b:7e:0f:10:85:4f:0e:15:c4:
         8e:55:80:35:be:09:93:50:e2:da:4d:d5:0b:e7:09:c5:cb:d3:
         23:ce:2b:ff:40:1c:91:49:36:0b:89:88:9b:4f:ef:c0:2c:e9:
         40:c0:17:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:36:41 2025 by rpki-client