Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft
File:                     bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json)
Hash identifier:          T3bYKGid7C+G/37zpjGKIlVYlHqZgNTRFM71k1bd/rU=
Subject key identifier:   86:00:EC:DE:59:04:90:37:E4:CD:10:E9:6B:56:6E:5B:62:76:51:7B
Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2
Certificate issuer:       /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2
Certificate serial:       0584
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft
Manifest number:          0580
Signing time:             Sun 08 Jun 2025 22:54:28 +0000
Manifest this update:     Sun 08 Jun 2025 22:54:28 +0000
Manifest next update:     Sun 15 Jun 2025 22:54:28 +0000
Files and hashes:         1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: d7TsJRIu/5LvFI3FHX1fgpBZvKVw20fPkKDyeZVcG30=)
                          2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: iBf35JbhfXTByYtXYWLsbRPZqGHn3gi9s/hG2voZLCk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl
                          rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 22:54:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1412 (0x584)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2
        Validity
            Not Before: Jun  8 22:54:28 2025 GMT
            Not After : Jun 15 22:54:28 2025 GMT
        Subject: CN=684614a4-32cd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:81:d2:52:58:e6:5a:71:83:88:95:61:20:57:
                    9c:be:55:1a:69:bc:3c:c9:3e:e8:cb:e5:4b:68:36:
                    53:5b:57:7a:7a:b7:34:0b:5a:0e:df:66:84:64:02:
                    56:83:7e:84:e2:4d:d1:15:8b:76:95:dd:aa:39:e0:
                    4a:0d:32:c8:9f:08:9c:7b:37:3f:35:2b:43:7a:c9:
                    b1:4d:d4:44:6e:b0:65:b3:62:6d:1c:9e:2d:8b:11:
                    b1:62:9a:d7:9d:dd:c9:c2:0b:cc:27:a4:81:5f:ed:
                    af:61:3c:d5:60:9f:27:77:2a:c7:a1:01:1c:94:bb:
                    ab:25:50:1b:02:4f:ad:19:7d:6c:ad:62:7f:2d:ad:
                    93:f2:4e:a5:09:85:16:46:60:7c:34:e2:d5:74:64:
                    a5:29:b5:43:ca:e6:e3:aa:f9:f7:1c:5d:c7:40:fd:
                    37:33:b1:20:a7:52:54:b2:03:6a:00:c3:42:53:6a:
                    23:80:a2:2a:d5:c3:ea:b2:14:01:e4:95:e9:34:76:
                    62:64:cb:43:24:b2:7e:ce:a9:ab:c8:08:13:0f:41:
                    46:89:01:a9:70:e4:85:b5:09:c3:dd:1f:4f:80:68:
                    f4:32:50:e2:0a:da:cf:46:aa:33:a6:cb:69:db:ca:
                    81:fe:b9:cc:54:01:e3:34:8d:e8:0c:67:b8:d3:c1:
                    9a:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:00:EC:DE:59:04:90:37:E4:CD:10:E9:6B:56:6E:5B:62:76:51:7B
            X509v3 Authority Key Identifier:
                keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:15:d9:d4:90:b3:e6:20:74:7b:e9:b8:c6:2d:7a:e8:f3:98:
         43:99:fc:75:7e:89:3c:be:4a:dc:11:34:11:4f:42:01:4f:24:
         72:2c:c5:bc:22:d0:23:36:ce:b3:ad:fd:44:00:f5:ed:1f:58:
         ef:fa:94:49:bc:69:af:57:c7:19:81:92:eb:42:6e:d0:9b:30:
         2a:50:60:62:c6:36:dc:08:46:ec:37:11:9a:45:db:04:1e:b5:
         29:d6:73:2b:b1:9a:c8:fd:a2:88:a1:3f:c4:f7:22:25:0b:ad:
         b1:c7:45:67:27:29:e7:93:08:c3:99:08:9b:97:25:92:49:b3:
         3b:76:3d:bd:19:e4:6b:d8:81:c1:25:2c:cc:5c:98:c6:51:dc:
         8b:ea:5b:8f:46:62:ce:c4:a5:dc:3c:69:90:6b:12:e0:07:80:
         11:a8:29:4b:c5:c4:3b:85:38:e3:fb:fd:39:74:37:8d:d1:cd:
         75:44:f9:e5:56:23:d8:b7:1f:d0:fb:93:c1:4b:f0:0b:5a:8b:
         f2:30:08:6f:1d:5b:12:82:e9:15:e9:82:89:d1:c5:8a:97:2b:
         c3:6d:b9:8a:af:55:96:ce:01:0f:96:d4:48:bd:76:15:35:5d:
         25:dc:18:f7:26:f2:cd:a5:1f:54:71:67:da:d6:02:7b:dc:37:
         fa:12:44:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 15:46:07 2025 by rpki-client