Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
File:                     tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json)
Hash identifier:          Ark02q23Pty1+Qerf1ZYYSRUB0+TtYy59nZFRFerPrU=
Subject key identifier:   38:E6:9C:40:9A:53:28:98:BF:92:96:F8:D8:65:9D:E9:CA:08:CB:4D
Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38
Certificate issuer:       /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538
Certificate serial:       0B19
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
Manifest number:          0B12
Signing time:             Tue 10 Jun 2025 19:11:17 +0000
Manifest this update:     Tue 10 Jun 2025 19:11:16 +0000
Manifest next update:     Tue 17 Jun 2025 19:11:16 +0000
Files and hashes:         1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: cJTSewIwY9pCejFQbb9qvRFAnpwuP2a/3d73yTTn+tc=)
                          2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl
                          rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 19:11:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2841 (0xb19)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538
        Validity
            Not Before: Jun 10 19:11:16 2025 GMT
            Not After : Jun 17 19:11:16 2025 GMT
        Subject: CN=68488354-7514
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:0f:d1:f1:97:ad:9f:f5:39:18:08:4d:09:53:
                    0f:8d:47:ce:4a:95:ea:5c:d1:5f:c1:b6:4a:49:48:
                    fe:3e:cc:97:c7:08:f6:2b:47:2f:dd:48:71:a3:5f:
                    c2:97:ad:2b:2f:97:12:30:e9:12:92:29:f1:46:f7:
                    52:f0:a6:47:0b:23:e5:22:ef:7c:ec:8a:e4:a9:47:
                    cf:4f:42:a9:92:db:20:4b:70:3d:5f:8e:c6:31:cc:
                    87:a5:ad:c7:0c:2c:73:be:50:d3:8c:91:42:40:6e:
                    fd:c3:61:1d:05:55:64:77:81:7e:70:9d:a2:88:cd:
                    b5:1c:ae:95:6e:b6:35:00:0d:d8:1d:a2:03:99:55:
                    a5:02:e9:07:33:1c:19:cf:30:85:00:ae:29:bf:53:
                    a2:59:c8:f2:11:cd:cb:89:21:b1:83:71:59:1f:ee:
                    a9:ec:cf:d3:4c:64:12:66:dd:4a:cf:72:59:e4:43:
                    4e:1d:b1:67:2f:e0:80:85:89:d6:98:10:70:db:c3:
                    51:da:69:81:8f:d8:72:63:2f:a4:cc:45:a4:64:c5:
                    3e:80:4d:43:a4:15:5a:22:d5:56:e6:61:53:1b:ca:
                    51:4c:74:65:b7:5f:c7:19:22:ec:ae:49:dd:23:56:
                    1f:9b:d1:ad:d0:8f:04:db:a6:53:83:16:a0:ef:24:
                    52:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:E6:9C:40:9A:53:28:98:BF:92:96:F8:D8:65:9D:E9:CA:08:CB:4D
            X509v3 Authority Key Identifier:
                keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:a9:e2:7a:b3:e5:58:88:c6:5e:c0:ec:ac:83:a8:4d:46:a9:
         79:3b:85:50:c6:d1:ec:ff:68:50:c3:a2:64:b4:99:e5:98:db:
         3f:f9:4a:bf:0f:bb:d6:a6:3e:a7:4e:84:4e:8c:af:9f:f1:4d:
         ee:ae:71:16:e9:e6:56:83:1f:5c:8d:47:dc:4d:63:55:d8:30:
         16:16:7c:e1:33:f8:75:33:69:9e:bc:39:f1:46:b2:68:8b:29:
         af:eb:e1:b1:a2:25:22:09:34:58:ae:2e:26:43:e8:e8:33:a9:
         cb:e1:14:ac:eb:92:8d:bc:ce:40:f2:ec:0d:63:b4:98:09:2e:
         2a:57:89:3b:44:33:ec:ad:61:23:e6:a4:e9:e9:ed:c6:5f:c1:
         ee:69:ec:bb:dd:44:e1:c1:54:1f:d5:ec:74:c1:8b:c1:57:7a:
         cb:9d:aa:c8:ef:cf:2d:52:69:44:46:41:df:43:d5:ee:42:ea:
         cb:98:94:50:ec:36:42:8f:58:52:5c:34:b6:31:02:dd:57:ca:
         27:bd:d3:d9:17:74:00:b2:ac:85:44:44:7d:7e:19:6d:82:82:
         fb:52:13:b5:d9:22:85:74:15:e2:d7:03:2a:90:ee:af:60:3c:
         6a:7f:b2:3b:ad:9f:27:c8:07:ef:fd:40:6a:f1:fc:6c:d8:12:
         ee:cf:38:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 09:23:30 2025 by rpki-client