Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
File:                     tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json)
Hash identifier:          TOcpgjd7sWuegI5RWKamWzULGLNUOgOrC7qXic0R/GU=
Subject key identifier:   03:DB:93:37:D3:36:A9:B1:D3:AB:67:CE:AF:8F:3C:40:66:C4:16:61
Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38
Certificate issuer:       /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538
Certificate serial:       0B18
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
Manifest number:          0B11
Signing time:             Sun 08 Jun 2025 19:03:23 +0000
Manifest this update:     Sun 08 Jun 2025 19:03:22 +0000
Manifest next update:     Sun 15 Jun 2025 19:03:22 +0000
Files and hashes:         1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: dZpwv0tl6QPYJxMNNixJkq3VRRT4g+eq+R2969l/YT8=)
                          2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl
                          rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 19:03:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2840 (0xb18)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538
        Validity
            Not Before: Jun  8 19:03:22 2025 GMT
            Not After : Jun 15 19:03:22 2025 GMT
        Subject: CN=6845de7b-0ae6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:17:98:03:4d:c7:a7:10:a5:1a:85:db:82:ea:
                    68:30:40:e3:0f:7a:59:d1:e1:2e:30:08:aa:95:f5:
                    22:8e:60:29:1b:0e:25:32:a3:19:6c:44:70:f4:1b:
                    34:ce:7b:98:dc:29:e8:f3:70:b5:9c:f1:06:bb:f9:
                    61:af:0b:af:7f:23:6e:33:b9:ea:5b:cc:27:a6:c2:
                    58:d6:1a:92:b8:d6:49:56:c9:a6:d2:0c:c0:cf:c5:
                    d6:44:14:9a:26:78:51:73:6b:31:4a:20:6d:ad:91:
                    db:96:57:27:d3:3e:24:f0:7c:23:d6:37:a3:e5:65:
                    5a:6d:2a:f7:18:28:e1:68:b7:b0:5c:92:df:3f:7a:
                    ad:72:e6:d1:13:90:c6:3a:82:b1:e5:33:15:3b:3a:
                    8e:f6:6b:af:97:20:4a:12:b8:b7:b4:c3:80:4a:d2:
                    2a:a3:8d:b6:e4:90:77:a3:e7:9b:54:1d:d4:2c:b4:
                    87:dd:7c:af:6e:87:a2:ad:5e:77:e8:d4:89:46:69:
                    56:71:f4:d8:84:20:28:3a:70:79:81:c4:26:c5:61:
                    15:10:11:8f:8f:77:a1:74:23:03:3c:0c:75:99:55:
                    0b:77:61:78:be:25:91:2b:ae:4c:fa:5c:31:58:3d:
                    13:a4:8f:d1:9d:53:d3:cd:e9:9c:db:e4:74:17:53:
                    fc:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:DB:93:37:D3:36:A9:B1:D3:AB:67:CE:AF:8F:3C:40:66:C4:16:61
            X509v3 Authority Key Identifier:
                keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:e0:51:54:10:15:5c:2e:27:97:cb:83:1b:1e:a0:c7:3c:49:
         8d:92:8f:83:45:a1:e8:fb:7d:58:20:f6:67:ad:23:96:ae:82:
         92:14:20:cf:36:de:5a:66:f5:e9:23:ff:9f:41:cd:5d:85:42:
         95:c9:0b:c8:6b:20:85:77:af:02:0f:40:c8:f9:76:f5:ed:78:
         b6:50:b5:d5:de:83:9e:6e:4b:f1:74:a4:28:35:07:07:b0:3b:
         ec:f4:2a:22:c2:7d:b3:52:ec:72:15:8b:78:c1:4c:8b:f5:3c:
         bd:4f:4b:68:b6:d4:ac:f5:20:c7:b4:69:d3:ae:14:11:05:a3:
         9b:49:8e:d1:33:12:37:f7:1f:87:f5:d2:70:59:db:a5:96:7f:
         48:74:44:1d:c6:42:e9:60:5e:27:be:23:25:de:29:96:e2:88:
         ee:1e:fb:28:a9:37:93:44:a1:f2:82:ee:88:22:1f:a2:9e:55:
         66:b2:f0:2c:0c:6d:8a:85:55:e8:89:c1:03:f9:8a:65:9b:3d:
         89:68:1f:5f:a3:0e:72:b2:85:a0:92:5b:05:b3:bf:f5:fe:84:
         46:c8:b7:bb:44:11:84:ea:0f:bf:1d:1c:73:ec:5c:51:d3:5e:
         be:7c:9c:e5:91:81:9f:8d:29:49:6a:1f:93:ec:a3:c7:a6:45:
         4a:95:87:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:45:25 2025 by rpki-client