Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft
File:                     YiiraKJGC9xWaItuVYkXkN2ASxA.mft (raw, json)
Hash identifier:          Z4qc/Xxt3INZCx0A/Gwa089975ZHgSwm0QhbXDJ5h6g=
Subject key identifier:   BC:D4:0E:75:10:3D:9E:24:E6:FC:12:92:26:04:FD:9D:D9:43:61:95
Authority key identifier: 62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10
Certificate issuer:       /CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10
Certificate serial:       01B0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft
Manifest number:          01AB
Signing time:             Fri 13 Jun 2025 02:14:37 +0000
Manifest this update:     Fri 13 Jun 2025 02:14:37 +0000
Manifest next update:     Fri 20 Jun 2025 02:14:37 +0000
Files and hashes:         1: YiiraKJGC9xWaItuVYkXkN2ASxA.crl (hash: 1zp2blV6TjkeXAraMWXXXfjxNOT4obD7+Nxiex3N+Ng=)
                          2: CCA801A2B97F11ED98ED3A74C4F9AE02.roa (hash: 70nEfW6y679vz54r1rMiwd9UT2VLDF6LzETjWTqp0aI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl
                          rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 02:14:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 432 (0x1b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916A285, serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10
        Validity
            Not Before: Jun 13 02:14:37 2025 GMT
            Not After : Jun 20 02:14:37 2025 GMT
        Subject: CN=684b898d-b079
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:77:f2:38:8f:80:32:0c:3b:71:3e:76:72:9b:
                    f4:d8:ff:f7:3d:26:16:9e:15:0c:f4:0f:37:51:da:
                    8d:70:d7:61:cc:a8:69:8a:6d:f5:01:a4:41:c1:90:
                    23:0b:ac:b2:cb:fb:5a:d9:10:92:14:44:de:5c:fe:
                    07:75:a7:3a:ff:25:a2:90:27:a7:06:2b:e8:00:07:
                    52:4b:d3:e6:21:6c:f5:04:7d:c1:d4:a9:8e:4e:4a:
                    58:15:d7:b8:7c:4f:b9:bc:d2:ff:72:4e:fd:fd:69:
                    88:b2:32:ef:93:f2:14:ff:34:c9:48:c8:1c:52:7c:
                    ff:b1:09:85:48:81:70:f2:a1:69:67:fe:55:7b:a6:
                    e1:05:3a:ce:54:b8:19:3e:a3:80:3a:93:b1:5c:29:
                    06:54:9f:96:f2:ec:77:b9:81:cf:79:d2:1f:d3:3e:
                    0e:7d:1b:a1:75:75:5a:94:1f:9c:ea:eb:e2:f2:8a:
                    5f:54:00:41:76:7a:d7:c1:24:40:1e:56:a1:5f:dc:
                    8d:d3:4d:7e:ed:a9:07:40:e2:96:4b:4a:be:51:36:
                    9a:4f:cc:b2:8e:82:9d:9f:2c:97:55:c8:d8:70:b6:
                    3a:42:cc:4d:11:58:2f:d4:ad:17:25:24:5f:0f:c3:
                    af:99:92:49:b7:1a:5d:b1:6a:fe:58:38:24:a9:20:
                    f2:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:D4:0E:75:10:3D:9E:24:E6:FC:12:92:26:04:FD:9D:D9:43:61:95
            X509v3 Authority Key Identifier:
                keyid:62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:3b:0a:06:36:8b:46:2a:a7:d4:2b:b4:18:99:1a:10:d8:0a:
         ad:a5:3c:90:98:69:81:38:07:ae:5c:da:5e:43:96:c2:32:45:
         d7:fc:b6:02:bb:44:d0:b5:ee:60:fd:dd:4c:05:4a:20:e0:61:
         ee:5c:a0:58:12:f9:6e:a7:25:75:4d:3d:dc:ee:01:ce:53:d5:
         83:9e:5d:46:10:f7:7e:59:93:4f:ee:84:28:d1:85:3c:91:83:
         1b:67:ef:6c:60:08:78:26:cc:86:b4:3f:f4:e7:81:48:3d:e6:
         f7:20:b8:bb:72:1a:40:c3:8c:fa:c6:66:83:db:2f:6f:f6:4c:
         63:6a:af:78:e2:80:04:7e:d0:14:fc:90:7b:88:77:3d:fc:9d:
         0f:82:1e:93:56:93:aa:f5:20:f2:33:c6:b4:a0:d1:f5:f4:e3:
         0e:9d:2c:f6:4e:c1:1c:12:9b:a5:df:1f:fe:7d:4a:2e:2a:5e:
         d4:23:d6:4b:47:13:38:7a:c2:98:00:c8:90:16:ba:86:10:d5:
         0c:2a:e7:a6:be:22:ae:e4:cd:19:62:91:69:b1:ea:51:61:a6:
         77:64:cc:63:6a:c1:25:99:24:29:c3:9a:ca:a5:0c:0d:0e:98:
         cd:30:30:64:fd:ff:2d:50:33:ac:2d:29:36:3b:24:b8:79:4c:
         4a:e5:16:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:09:26 2025 by rpki-client