Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
File:                     kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json)
Hash identifier:          7AMvsSTqaW0Ey4fEAkqkpqx90SZONqcI0Fkm9lZBuJg=
Subject key identifier:   DA:69:F1:B2:A7:E4:1F:23:F4:32:89:41:9C:24:66:D2:86:78:CC:06
Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11
Certificate issuer:       /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611
Certificate serial:       0CA9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
Manifest number:          0C9D
Signing time:             Tue 10 Jun 2025 18:06:05 +0000
Manifest this update:     Tue 10 Jun 2025 18:06:05 +0000
Manifest next update:     Tue 17 Jun 2025 18:06:05 +0000
Files and hashes:         1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: lxobJVhdVDc3PFF1rokTkS7+CzqIEZQwx0R7l057eo0=)
                          2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=)
                          3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl
                          rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 18:06:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3241 (0xca9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611
        Validity
            Not Before: Jun 10 18:06:05 2025 GMT
            Not After : Jun 17 18:06:05 2025 GMT
        Subject: CN=6848740d-4301
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:38:30:15:62:30:5d:5a:87:d8:86:09:44:29:
                    d1:3e:54:3c:2d:83:36:f3:57:a7:df:1d:0d:92:ed:
                    51:cd:e2:3a:4e:c1:6a:11:96:2a:ff:09:10:7f:a5:
                    29:f8:b6:2c:50:44:a6:e3:54:74:b3:b6:f7:d0:f5:
                    64:c5:8e:00:49:15:56:70:73:cc:34:7c:7f:71:c4:
                    be:e4:43:cf:a5:04:92:ae:99:0d:49:17:db:5c:d3:
                    7d:35:db:2b:e0:df:1b:de:14:21:46:a0:b7:a2:62:
                    cf:b8:5b:b2:b7:32:2c:09:12:1e:79:fd:ae:e0:be:
                    04:f6:a9:3f:29:df:d6:5f:0b:6d:6f:64:7f:2a:99:
                    e2:8b:db:4e:94:34:d0:5e:38:2e:28:ba:89:ff:ba:
                    ba:a5:f1:f1:63:b0:72:7c:f5:77:13:70:3e:ac:c8:
                    3c:0a:78:db:70:ad:19:13:94:c3:1d:d7:b1:ff:db:
                    78:2a:0e:03:11:a7:48:28:70:eb:1a:e7:2e:23:51:
                    39:2e:5a:42:d1:24:a2:af:6e:c2:09:7d:91:d0:31:
                    fa:a9:ed:5f:ac:7c:f8:6a:b5:0c:d6:81:b4:0d:53:
                    13:4e:72:ee:ba:13:34:ad:6e:db:ad:bf:8c:25:ee:
                    69:e9:5a:7d:e4:79:6c:63:3a:e9:95:94:0f:12:34:
                    25:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:69:F1:B2:A7:E4:1F:23:F4:32:89:41:9C:24:66:D2:86:78:CC:06
            X509v3 Authority Key Identifier:
                keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c0:52:2d:e2:08:e4:0e:30:f4:11:42:20:c0:ec:bb:23:36:70:
         22:cf:0d:9f:58:1f:76:3f:6d:60:ad:a6:71:09:e2:3e:81:0f:
         4f:25:5d:47:2f:1a:39:6f:de:f6:10:e5:1c:ae:05:7c:60:5d:
         0a:fd:76:64:7e:a1:64:ec:8e:b8:ba:2e:e8:92:53:fd:1e:04:
         77:f0:bb:3e:6f:97:11:c6:0e:fe:0e:f2:cb:b1:c7:9c:8e:ab:
         9f:4a:fa:83:cf:de:2e:d5:eb:fa:c0:21:db:f4:8a:f7:2c:94:
         ce:98:5c:45:e5:15:10:05:f4:31:7c:c5:34:02:24:e9:68:f6:
         58:b0:e2:5f:64:2f:64:a5:eb:de:10:91:bb:da:a3:85:2c:ef:
         f6:9c:b7:ba:45:a2:ac:42:c4:2d:cc:a9:02:0a:bb:56:45:d1:
         82:e0:68:0d:c2:03:d6:e7:07:e0:78:6d:b1:5a:84:cc:f5:02:
         b5:71:d2:29:74:04:4b:72:2c:48:4f:54:ee:06:7b:52:89:86:
         d8:cd:f0:d2:fa:57:b0:bc:58:34:f0:6d:3e:e8:49:9f:fd:18:
         c1:1f:0c:56:dd:1a:f4:57:db:a8:68:36:0d:6a:35:71:dd:5a:
         ef:d5:c7:3e:19:bb:8e:00:95:c3:bd:f8:99:fd:bc:b8:b9:16:
         53:0d:3e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 15:31:13 2025 by rpki-client