Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
File:                     9HpCypKdg34XkyvKB9ZfgiyWRMs.mft (raw, json)
Hash identifier:          1r1jWhVrt6Jwy/mi58Mb/6VDUrRM1D76Biqndh+2Nvs=
Subject key identifier:   FD:02:97:EA:20:34:86:E4:F2:22:01:04:48:92:6F:2F:A0:87:D8:90
Authority key identifier: F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB
Certificate issuer:       /CN=A9169A9C/serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB
Certificate serial:       0106
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
Manifest number:          0104
Signing time:             Wed 11 Jun 2025 03:32:01 +0000
Manifest this update:     Wed 11 Jun 2025 03:32:01 +0000
Manifest next update:     Wed 18 Jun 2025 03:32:01 +0000
Files and hashes:         1: 9HpCypKdg34XkyvKB9ZfgiyWRMs.crl (hash: gxDgyIpA2hYNKMh/NeUv7+vP1weVdl9WZqVGIGGvwdI=)
                          2: 79A50468BCA911EE8F42E684C4F9AE02.roa (hash: WCxfAGIVMH/a++ZJ4jx3iPBs/9NLSjs9q4Xkq6Czo34=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl
                          rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 03:32:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 262 (0x106)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9169A9C, serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB
        Validity
            Not Before: Jun 11 03:32:01 2025 GMT
            Not After : Jun 18 03:32:01 2025 GMT
        Subject: CN=6848f8b1-bf97
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:98:7a:0e:5d:f5:09:76:45:c9:f5:fb:bf:5d:
                    f0:37:49:84:d0:84:77:56:99:fb:9b:0e:a3:ef:38:
                    b4:45:04:db:bf:0d:eb:f1:08:e8:a8:79:56:eb:da:
                    fa:88:c7:64:81:fd:ca:b6:bf:e2:d7:e8:b1:a6:87:
                    ce:aa:99:e3:51:3a:33:0e:54:90:34:5d:3e:96:a8:
                    7e:6f:ab:0c:ff:45:17:5c:15:d5:4b:44:93:fe:39:
                    f9:ef:64:86:94:4e:cd:75:46:19:b5:14:b1:cb:a9:
                    5f:63:c2:0c:bb:57:59:26:d0:21:55:f4:b7:cb:4f:
                    2a:15:fe:91:1d:66:08:ce:e6:7d:33:1f:32:52:eb:
                    01:9e:1e:d4:28:4b:97:d7:a7:27:3f:ce:2d:d9:50:
                    18:5e:89:2a:05:e2:69:5f:fc:d3:43:d4:38:5d:63:
                    6d:65:6e:0c:31:e2:45:a2:b3:3b:56:56:42:cb:46:
                    b0:88:d2:76:4b:76:be:f5:56:c5:83:a5:a5:83:20:
                    8f:ce:c7:75:5c:14:4d:7e:83:db:13:8f:3e:9e:6a:
                    1f:61:ad:af:86:b4:34:12:b0:e3:f3:70:51:a4:9f:
                    ff:b1:97:4a:ee:27:c8:a6:a2:40:c3:d1:d1:15:b9:
                    94:3a:4a:ba:1e:ba:e1:fe:88:f8:d0:63:23:1f:be:
                    68:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:02:97:EA:20:34:86:E4:F2:22:01:04:48:92:6F:2F:A0:87:D8:90
            X509v3 Authority Key Identifier:
                keyid:F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:94:f8:a7:2f:8f:9e:c6:a1:a6:fd:77:54:9c:c8:8a:d1:77:
         d5:46:b5:a4:64:77:86:1a:ac:d0:7f:d5:85:b8:a3:ff:f8:93:
         45:57:9a:fd:67:46:9f:90:97:4a:f4:66:c2:9a:cf:37:c6:9f:
         76:c0:98:e0:c8:a4:c6:88:19:fd:2d:2f:9a:19:19:80:7f:b9:
         46:5f:42:07:3a:1f:28:a8:86:34:e8:02:22:c4:26:9e:4a:b1:
         0d:89:e7:01:89:75:70:22:99:fe:44:f0:45:5b:7e:cd:15:3e:
         b5:b6:04:36:c2:1f:5a:b1:6a:9e:dd:65:f3:77:84:fa:bc:85:
         0a:f6:5f:18:3f:a9:4a:ac:fb:79:8c:20:0b:e4:1b:31:e1:4a:
         09:7f:6f:e7:8b:b8:33:5e:7b:cb:2f:86:07:80:2b:28:0c:ac:
         b9:e9:b1:e4:65:3c:2b:ad:ef:d3:80:38:72:61:3e:90:62:fb:
         de:9b:81:45:43:a1:bb:3e:55:c8:8b:b9:db:1f:7d:47:8c:39:
         83:2f:1a:40:dc:3d:43:d5:b1:9e:e1:4d:3a:f7:82:0b:17:7e:
         d7:a1:02:85:b5:e3:c2:23:ca:d0:0b:7e:c9:c6:53:ec:c2:34:
         36:0d:29:7b:48:59:1b:d3:05:02:40:d5:ae:ff:f8:db:40:15:
         3e:23:f4:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 16:48:42 2025 by rpki-client