Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
File:                     k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json)
Hash identifier:          LwCIIUqjVPDo9UfkgBCzoTGaYdktJZz0oNyTSq0ILfA=
Subject key identifier:   47:D9:EF:DA:B7:B3:6A:F6:29:F5:12:E7:CA:98:CB:99:02:70:45:CF
Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD
Certificate issuer:       /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD
Certificate serial:       047A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
Manifest number:          0476
Signing time:             Thu 12 Jun 2025 23:40:21 +0000
Manifest this update:     Thu 12 Jun 2025 23:40:20 +0000
Manifest next update:     Thu 19 Jun 2025 23:40:20 +0000
Files and hashes:         1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: iThnzbji94+y3FtbYEQMzLL6fa812glDh/do/OyE0PQ=)
                          2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: MtaWbSK5JAjEiEpHTj/1X7DdZqPg3BZxUlQCHg85KTM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl
                          rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 23:40:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1146 (0x47a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917392B, serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD
        Validity
            Not Before: Jun 12 23:40:20 2025 GMT
            Not After : Jun 19 23:40:20 2025 GMT
        Subject: CN=684b6564-493f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:da:68:2e:1f:d7:57:01:8e:e4:0f:59:c2:e6:
                    c2:9e:7e:ed:dd:3b:ce:31:e9:c2:50:ed:bc:aa:a3:
                    eb:72:6b:70:40:f1:9c:af:0f:f3:9e:76:89:f9:85:
                    d1:5a:eb:31:30:4b:e9:b8:59:ea:11:81:3b:08:7d:
                    13:f2:ee:9d:ba:c7:db:9b:da:ba:5d:a9:2a:ff:6c:
                    c0:ba:13:0a:c3:62:e9:3d:cd:c5:a2:02:5c:06:f3:
                    2e:1a:f3:fe:cb:d4:ac:3e:7a:e2:c8:79:0a:d5:8f:
                    0c:67:13:e1:25:5e:be:d6:62:33:2f:06:70:76:47:
                    a8:0e:df:75:7f:d2:df:4f:3c:67:78:a4:0b:8f:8d:
                    97:83:bd:f9:3e:a1:09:23:d2:9b:08:a7:6e:15:fc:
                    55:94:30:32:61:9c:89:d6:44:84:78:f1:ca:ca:29:
                    d8:9c:2b:d0:0f:7d:81:07:4c:e0:4b:fe:2e:76:93:
                    a0:0e:2e:db:fb:30:64:4a:e8:57:f6:1b:1d:bb:9b:
                    0c:28:df:fd:fd:8c:87:28:cd:01:01:a3:cb:2c:40:
                    d7:65:09:47:d7:e3:a5:9f:7d:22:6e:da:17:70:3c:
                    05:c8:45:23:16:c1:6c:35:6c:b9:57:67:ce:7b:28:
                    e6:4b:39:6d:8d:b6:7a:32:97:f2:09:c1:ba:ee:54:
                    97:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:D9:EF:DA:B7:B3:6A:F6:29:F5:12:E7:CA:98:CB:99:02:70:45:CF
            X509v3 Authority Key Identifier:
                keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:be:82:8d:ab:3f:60:b2:c4:e0:40:5a:c2:dd:3d:9b:a9:42:
         6d:a6:f3:d4:4c:f6:b8:9e:3f:53:3a:97:31:6a:93:ec:1d:54:
         78:74:86:13:87:96:df:09:df:b8:86:14:77:ca:7f:b3:5b:bd:
         27:9c:13:95:99:75:ef:d6:67:8d:4a:b6:cc:18:9c:95:01:75:
         ba:f4:20:21:c5:d2:74:45:72:18:db:43:b4:f3:9f:18:21:7b:
         43:2c:75:69:eb:2a:83:23:5f:e5:3f:5a:55:6d:2b:2f:d7:00:
         b6:82:f8:a5:0c:f5:e9:16:18:12:ca:a2:b9:b6:6a:e7:8e:37:
         b9:3b:b6:bd:3c:5d:ec:7b:98:27:e4:4d:cd:9f:82:b9:39:65:
         b5:a1:3b:7e:de:5d:a8:58:53:95:ca:cc:a3:66:b1:b0:0b:b6:
         3e:6d:f7:e7:ec:07:d0:8d:92:9f:d3:e2:d1:2c:29:86:fe:05:
         92:b5:9d:31:2d:68:b5:6c:c4:06:bb:51:d8:b7:96:a2:37:ed:
         23:47:58:75:e8:c1:da:43:4a:5d:0e:c7:b5:12:db:23:74:07:
         f8:7b:c8:a5:48:af:4e:8f:37:77:84:93:f0:09:62:05:0a:d3:
         16:5d:79:6f:94:82:7f:29:29:10:81:d7:e9:f0:11:bd:44:44:
         d2:18:2f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 05:29:22 2025 by rpki-client