Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft
File:                     tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft (raw, json)
Hash identifier:          RjsXl78ulm9x5h5wEVe0q0E/oeGzi3Sd/jec/pdduk0=
Subject key identifier:   0F:5C:46:09:EA:BD:E9:3F:47:BA:C6:71:6E:3E:8E:E0:91:FD:15:7B
Authority key identifier: B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05
Certificate issuer:       /CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105
Certificate serial:       0575
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft
Manifest number:          056F
Signing time:             Thu 12 Jun 2025 22:56:48 +0000
Manifest this update:     Thu 12 Jun 2025 22:56:47 +0000
Manifest next update:     Thu 19 Jun 2025 22:56:47 +0000
Files and hashes:         1: tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl (hash: RbE9N7MWg3OjKJC21ZO5BZ/2zLPJIVt7ZSNiyMmD7Gc=)
                          2: 529F69FCE5CA11EBB98C5577C4F9AE02.roa (hash: yEoo0/2ZbdS1AKMgT4F4l5jk6+ByUwD65kyD3NyUV9k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl
                          rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 22:56:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1397 (0x575)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916A0AF, serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105
        Validity
            Not Before: Jun 12 22:56:47 2025 GMT
            Not After : Jun 19 22:56:47 2025 GMT
        Subject: CN=684b5b2f-f2d9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:7f:75:18:e7:d4:c3:ba:41:4a:b2:e7:74:3a:
                    aa:3c:7c:ab:a0:15:f5:6d:6d:09:2d:b7:5e:23:a0:
                    d3:71:3a:0e:68:62:89:1a:bb:0e:7d:0c:cd:f9:b6:
                    2a:e5:b9:e6:d8:00:47:5c:4d:bd:4a:cd:a5:72:0b:
                    b9:f2:75:af:69:36:74:03:81:d6:04:63:9b:d0:84:
                    97:68:ea:40:26:6d:59:77:d7:e8:a3:b3:2e:39:c2:
                    24:0b:a4:47:97:57:ac:ad:6d:39:b5:c7:c1:11:08:
                    d0:2c:a5:3c:3a:10:aa:61:d9:56:c7:c3:12:9e:33:
                    c5:bb:3b:24:a2:8c:37:ab:04:ae:12:b2:06:b1:c3:
                    83:71:41:e3:5e:d7:b5:75:70:45:25:fb:8d:04:31:
                    91:f4:96:25:7f:8c:13:3b:6f:e4:a4:fd:97:22:58:
                    45:e3:e5:39:9d:86:09:ea:ff:64:f9:c1:38:16:e0:
                    41:66:9c:6c:b1:eb:b4:ed:56:4b:a9:40:69:9b:79:
                    e5:ef:8e:87:47:34:a3:98:73:7a:8d:26:e0:ab:c2:
                    68:fe:a5:80:91:79:4d:0d:1e:49:13:2a:50:e3:a6:
                    20:fe:d4:80:df:3e:87:1f:2a:a0:7a:55:85:d4:94:
                    0f:b6:ab:7e:43:e8:06:07:82:02:f7:4d:f2:91:db:
                    76:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:5C:46:09:EA:BD:E9:3F:47:BA:C6:71:6E:3E:8E:E0:91:FD:15:7B
            X509v3 Authority Key Identifier:
                keyid:B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:98:08:5a:64:bb:09:24:e4:49:17:5a:a5:59:c0:4f:b7:f0:
         30:e5:de:53:1d:b4:25:d3:a8:52:7b:cb:d7:f1:56:5e:04:1f:
         26:08:99:31:47:43:9b:94:3b:16:65:d7:a6:f8:7c:46:41:fb:
         1c:ff:26:6c:0b:c1:92:67:e7:af:b1:29:84:53:48:77:c6:b4:
         bd:1a:9e:64:4e:0c:0c:c2:fc:ac:1a:a1:21:06:e8:eb:3f:34:
         c4:21:e5:89:e7:49:15:d2:d2:7c:d7:1c:23:69:fa:7e:54:d1:
         57:ba:db:33:3b:2a:d9:18:01:db:89:3b:1d:8d:46:65:68:24:
         ee:86:fe:49:49:60:2f:d6:92:f7:05:4e:e5:a6:b7:bb:75:26:
         f0:81:02:f0:92:64:88:47:fc:da:ef:70:5d:44:71:7e:f9:f2:
         6c:46:e9:7e:36:d0:d8:70:d6:ac:a7:ec:eb:6b:c9:2c:c9:49:
         56:31:c5:e7:51:dc:97:fe:a3:fc:eb:03:05:0d:44:3f:b9:e3:
         6f:88:68:5f:d0:60:40:54:c2:52:82:d5:c6:62:8c:6d:82:48:
         78:a4:b2:df:e6:1c:c3:22:fb:2d:0d:b6:59:47:01:a1:a8:43:
         b9:77:59:76:09:44:3a:f9:eb:78:8e:f6:7c:a8:8c:17:d8:17:
         29:5c:2b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 08:00:12 2025 by rpki-client