Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
File:                     tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json)
Hash identifier:          oXtssE8GQzFl96rLClBf0GrEj5HFmGPi5iJwb/ivpkE=
Subject key identifier:   4A:45:80:3E:41:97:02:62:02:49:5B:D4:AF:5F:72:17:A3:47:0F:44
Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38
Certificate issuer:       /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538
Certificate serial:       0B1A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
Manifest number:          0B13
Signing time:             Thu 12 Jun 2025 19:04:56 +0000
Manifest this update:     Thu 12 Jun 2025 19:04:56 +0000
Manifest next update:     Thu 19 Jun 2025 19:04:56 +0000
Files and hashes:         1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: UVwldjolHOVTTtlshgfwK8dZh9adhvgRlBd0nxw07Wc=)
                          2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl
                          rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 19:04:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2842 (0xb1a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538
        Validity
            Not Before: Jun 12 19:04:56 2025 GMT
            Not After : Jun 19 19:04:56 2025 GMT
        Subject: CN=684b24d8-4f74
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:7c:56:77:1b:7e:4a:96:7f:cb:cc:3f:c2:8a:
                    fb:a9:de:89:49:1f:b7:e1:48:c0:c4:4e:9e:9b:a8:
                    01:07:db:a5:0c:61:8b:96:59:f5:a8:4e:8d:2f:05:
                    28:b6:39:42:21:75:7b:6d:e6:18:c3:d3:ee:75:d9:
                    d2:c7:a2:af:61:e1:55:66:ff:0f:7e:ce:4f:bd:2e:
                    a0:f4:a3:95:1c:f7:8e:d9:5f:41:f8:9e:ad:ae:3f:
                    7e:13:55:cb:84:ec:2e:d4:80:33:9a:65:d3:09:2f:
                    ff:e9:35:c2:5d:db:f9:a2:9b:0b:00:3c:a6:f7:fb:
                    56:34:69:5b:1a:4c:2b:0a:ca:e3:70:da:a0:cb:05:
                    7a:5d:d9:a0:bd:20:25:56:9d:1f:cc:37:8a:0b:f8:
                    8e:92:bc:53:a3:52:bb:df:93:c6:e3:b4:85:97:ff:
                    ea:7a:93:f8:73:fc:b2:3d:07:78:25:db:e7:e0:95:
                    0b:4b:00:b0:71:70:5f:02:9e:ea:9f:1c:ae:0e:e8:
                    9a:48:9e:9f:93:5a:65:00:c2:eb:64:00:4f:b4:13:
                    e8:9f:6e:9e:34:94:09:d8:da:90:a1:05:c9:1c:36:
                    31:7b:1e:c6:4a:e2:b3:c0:6b:62:e8:c1:f3:64:88:
                    fb:fb:0d:3b:a7:a8:15:48:6f:58:fd:b6:ba:65:7c:
                    3d:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:45:80:3E:41:97:02:62:02:49:5B:D4:AF:5F:72:17:A3:47:0F:44
            X509v3 Authority Key Identifier:
                keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:7c:fd:0a:92:e3:07:62:c3:11:f9:1c:ce:96:57:5e:91:dc:
         fc:11:0a:03:f5:96:29:57:81:8e:ff:13:00:9b:2b:1b:85:78:
         17:60:2f:f7:dd:ec:ae:e0:11:3a:11:78:b4:d9:e0:6b:03:ae:
         77:2e:18:f7:ed:a8:02:fe:0b:b1:4b:2f:1e:0c:bb:6f:73:95:
         57:80:a5:09:f3:9e:f2:d8:ca:80:b5:58:c7:fa:e1:e1:c1:cb:
         47:30:5d:a8:f3:d9:0c:ec:71:3b:38:03:6c:c5:97:51:8c:59:
         00:53:96:a1:68:42:4f:18:ea:c7:7b:38:c9:45:2b:21:8c:16:
         f2:e8:a8:a1:d6:71:bc:e7:37:a2:7b:cc:c7:45:6e:30:cd:15:
         64:15:7b:3e:89:c6:ce:45:c8:fb:2e:01:f9:8b:96:42:72:27:
         ca:3c:a6:16:13:cd:9d:9b:d6:40:3d:00:c6:c3:67:2c:3e:24:
         ff:44:0b:7e:86:cb:95:bf:69:13:71:4d:f2:2a:a4:84:17:68:
         dc:2b:0c:14:d9:c7:79:08:95:36:65:c2:96:0f:1b:fe:1f:68:
         1d:fa:06:87:6e:60:1b:02:80:62:b9:9e:e8:63:99:b8:a5:7a:
         b9:62:7a:e2:1a:b3:c5:ab:dc:f6:c8:00:7c:e7:06:8d:a4:9b:
         d7:7f:34:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 06:55:38 2025 by rpki-client