Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft
File:                     BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json)
Hash identifier:          H+txYr2+FIkd1ZH5OX0XleW7FJZtdbUyzf6oMauH4VY=
Subject key identifier:   71:FD:93:3B:C4:B6:EB:7F:70:E5:36:58:47:2D:CA:DD:E4:EA:9B:BA
Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B
Certificate issuer:       /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B
Certificate serial:       E0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft
Manifest number:          DE
Signing time:             Wed 11 Jun 2025 04:52:13 +0000
Manifest this update:     Wed 11 Jun 2025 04:52:13 +0000
Manifest next update:     Wed 18 Jun 2025 04:52:13 +0000
Files and hashes:         1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: xx40ANwD2PSTll1n4UEbS95E9yoBNvsHwinaUKVKCrY=)
                          2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: nrFzYe2K6I+fVS0WsJAv1h0mXVgQBFKENnTmsnUT3Jo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl
                          rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 04:52:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 224 (0xe0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B
        Validity
            Not Before: Jun 11 04:52:13 2025 GMT
            Not After : Jun 18 04:52:13 2025 GMT
        Subject: CN=68490b7d-ef70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:28:a7:69:07:be:d6:12:2e:33:a0:19:a5:53:
                    4d:b0:b3:72:7d:38:15:7e:44:ad:1c:7d:6b:e7:09:
                    97:d3:8d:75:f9:fa:0d:9c:48:ef:16:51:17:f3:9f:
                    71:c7:76:35:49:60:06:dc:6f:b8:b5:62:2f:09:59:
                    78:1e:a9:47:18:be:00:c3:42:db:5f:b1:ad:3f:66:
                    c0:93:61:3c:9f:92:00:71:75:05:1b:0e:c9:65:80:
                    63:30:8e:44:b4:f5:9a:99:5d:f0:9b:ba:b6:f9:98:
                    5a:1c:44:81:7d:26:f7:37:14:52:a5:79:81:b2:8b:
                    f8:ee:55:1f:8e:31:eb:fc:e5:77:47:71:27:79:9a:
                    c2:32:b8:b6:fc:43:0c:9f:2a:42:88:fc:12:ff:27:
                    f8:49:9d:41:a5:2e:a0:1c:2a:11:e6:e1:14:a6:3d:
                    a5:3a:bd:d2:6d:cc:04:e1:00:29:52:ad:4c:ad:58:
                    a8:13:a1:15:b0:04:04:f1:ff:88:46:ea:d9:31:12:
                    49:2c:34:53:36:f3:ef:c8:d9:d1:bb:ec:e6:35:2d:
                    85:49:9b:3c:e3:9b:3f:1f:b9:09:03:44:b4:78:85:
                    9c:8e:1e:79:fd:53:82:2d:05:48:2d:54:13:d7:62:
                    45:cb:40:ec:c9:49:3b:29:fa:7a:ce:e5:4d:4e:77:
                    87:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:FD:93:3B:C4:B6:EB:7F:70:E5:36:58:47:2D:CA:DD:E4:EA:9B:BA
            X509v3 Authority Key Identifier:
                keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:97:04:ba:b6:43:7d:61:2e:b9:c3:f1:f7:28:32:fe:ba:99:
         79:28:47:31:0b:b4:1f:14:40:37:ce:77:8b:14:03:10:03:dd:
         0d:14:bb:35:ab:b2:7b:38:62:1e:f3:09:22:56:f0:57:3e:c3:
         3a:a4:07:ce:16:58:5d:ff:9f:2e:3b:c2:a8:9c:5c:6f:90:fa:
         13:fb:0d:dd:a6:ca:44:df:c3:01:35:fa:59:9e:9e:67:dc:09:
         3a:c7:c0:20:1f:29:bd:0a:72:d3:0a:bd:3d:5b:50:6c:4f:fd:
         52:66:0a:70:88:e8:ea:a5:7c:65:3d:ff:fc:39:db:0a:71:dd:
         5d:60:95:de:ff:a9:7b:ae:e3:aa:dc:34:19:ea:2c:d1:5a:e4:
         cb:93:9e:d5:77:72:60:09:47:5f:95:2e:25:60:fc:8a:4d:95:
         3d:bd:e8:13:61:98:f2:69:80:00:22:d9:68:20:54:18:3f:60:
         3f:3b:33:b7:4a:c8:86:df:1b:55:9e:8d:e5:fd:3b:2d:b1:fd:
         fd:d9:b9:75:e7:a0:2f:dc:63:2c:7c:83:a4:22:4e:b1:bd:40:
         39:95:be:5a:3d:08:1f:97:b7:d6:d2:21:69:8d:4e:30:f2:fd:
         5e:6b:06:f2:61:4e:10:79:d4:c5:6b:b8:6f:fe:e9:93:51:15:
         86:76:5b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 13:41:17 2025 by rpki-client