Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft
File:                     YiiraKJGC9xWaItuVYkXkN2ASxA.mft (raw, json)
Hash identifier:          HNRBqIoGgX28PnIOAY4YuZoCrBjxfWxj9VKdAkDiwG8=
Subject key identifier:   1A:EC:4E:CA:25:34:E5:CB:35:D7:05:87:6A:09:8E:4B:91:27:57:5B
Authority key identifier: 62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10
Certificate issuer:       /CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10
Certificate serial:       01AF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft
Manifest number:          01AA
Signing time:             Wed 11 Jun 2025 02:39:49 +0000
Manifest this update:     Wed 11 Jun 2025 02:39:48 +0000
Manifest next update:     Wed 18 Jun 2025 02:39:48 +0000
Files and hashes:         1: YiiraKJGC9xWaItuVYkXkN2ASxA.crl (hash: dSiDdS8qNZsX3M4jyT4ldRT0et8byQIxcaSWhbOJB98=)
                          2: CCA801A2B97F11ED98ED3A74C4F9AE02.roa (hash: 70nEfW6y679vz54r1rMiwd9UT2VLDF6LzETjWTqp0aI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl
                          rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 02:39:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 431 (0x1af)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916A285, serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10
        Validity
            Not Before: Jun 11 02:39:48 2025 GMT
            Not After : Jun 18 02:39:48 2025 GMT
        Subject: CN=6848ec75-4091
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:0a:3b:09:fb:d0:9b:8a:ac:b6:4f:31:2a:57:
                    8f:fc:3b:ab:60:b7:b8:71:89:b6:c5:42:50:9e:e6:
                    3f:13:2e:3c:4e:e9:60:77:bd:77:30:ad:d2:f3:3f:
                    64:34:3e:6c:34:37:26:90:b9:32:c8:2f:fb:54:f6:
                    8f:ef:ae:0b:4d:6a:71:25:a4:9f:cf:33:fe:8a:11:
                    b2:a7:3c:89:e3:cf:95:2a:e5:b7:7d:78:8e:7f:72:
                    98:c4:ba:d8:dc:d0:3d:72:35:46:49:6b:f7:16:6a:
                    ef:71:fa:26:bc:d7:c3:d8:38:66:89:f0:01:9e:fb:
                    28:a4:59:78:d0:5d:c8:3c:11:44:84:9d:06:da:ae:
                    25:79:56:74:55:78:ba:54:05:bd:04:1a:be:68:20:
                    33:ec:50:6b:6a:fe:cc:39:b3:80:c3:c3:a9:25:85:
                    ac:09:46:49:c6:c8:6b:f5:db:12:20:46:4b:1b:ee:
                    ce:6d:2b:67:b0:18:aa:f2:04:80:26:65:21:7c:5f:
                    9b:d7:1e:4b:e8:9a:c8:87:76:a4:cb:42:0c:73:d4:
                    28:ca:d5:7b:94:df:ec:36:84:4d:3f:a4:dc:e3:93:
                    bb:ea:7d:a7:83:43:d1:ed:b0:13:bf:3e:50:3f:0c:
                    2c:8b:fd:05:11:73:a7:e1:13:be:7c:c1:f7:18:05:
                    8c:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:EC:4E:CA:25:34:E5:CB:35:D7:05:87:6A:09:8E:4B:91:27:57:5B
            X509v3 Authority Key Identifier:
                keyid:62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:5b:50:99:c4:b9:26:38:30:fb:ba:be:85:99:f9:0d:d1:70:
         66:55:c6:54:8f:73:9c:73:aa:12:97:77:d8:0c:5a:e5:11:fd:
         a4:e6:f1:25:ba:41:fc:71:3f:4f:e5:85:2b:83:85:bc:93:4d:
         1d:9d:d9:09:92:59:57:ea:4d:a7:e5:3b:14:23:e3:e9:cd:3d:
         82:24:06:7e:6e:fe:2a:d9:d4:03:a0:6e:49:13:a3:a1:39:05:
         48:0c:98:4d:60:20:3b:e3:6e:ed:24:be:08:f9:56:e1:46:b5:
         e7:d8:2c:62:a6:f4:4b:12:e7:b6:6a:1b:fa:2f:6e:42:15:5d:
         ee:25:19:a1:27:ae:9e:59:36:ec:c8:f9:88:03:a1:9a:6a:39:
         ea:11:28:26:a6:c9:44:14:45:8b:65:a5:b8:89:ff:f8:6e:1c:
         23:fd:72:ad:06:d7:78:1f:67:48:68:80:da:69:0f:21:a3:ee:
         49:40:69:3d:56:26:38:c9:85:68:aa:ae:6f:b1:8a:c4:60:73:
         94:d8:fd:f8:17:ec:6b:59:84:69:b3:2f:20:d3:47:0c:88:bf:
         d0:34:22:00:f8:8d:3e:b4:15:3b:74:8d:82:d7:b7:a6:9b:5d:
         46:64:f4:28:3a:06:ba:21:93:5c:f2:e9:90:4b:01:08:67:45:
         97:d4:a7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 02:35:22 2025 by rpki-client