Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
File:                     k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json)
Hash identifier:          hMUutrBpLx4XbGaSjRsNeGmAsrbqlbAh3Ss4qsOqIBo=
Subject key identifier:   C0:36:F6:CC:7D:CD:E2:54:17:93:3D:19:08:06:10:37:D7:EC:AE:DB
Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD
Certificate issuer:       /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD
Certificate serial:       0478
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
Manifest number:          0474
Signing time:             Sun 08 Jun 2025 23:42:08 +0000
Manifest this update:     Sun 08 Jun 2025 23:42:07 +0000
Manifest next update:     Sun 15 Jun 2025 23:42:07 +0000
Files and hashes:         1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: P2SWNc9llZR4u4scV6x+xbi54yxkTAbdT/gADFDlJl8=)
                          2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: MtaWbSK5JAjEiEpHTj/1X7DdZqPg3BZxUlQCHg85KTM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl
                          rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 23:42:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1144 (0x478)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917392B, serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD
        Validity
            Not Before: Jun  8 23:42:07 2025 GMT
            Not After : Jun 15 23:42:07 2025 GMT
        Subject: CN=68461fcf-f07a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:42:00:63:5e:72:dd:84:b5:de:03:e9:58:65:
                    07:15:0c:82:f2:09:24:3e:e1:e3:5a:75:bd:bd:82:
                    ca:38:d7:ab:d4:51:a4:be:10:bd:c6:a9:ea:53:99:
                    bf:37:0a:4d:ff:d1:94:37:50:78:29:73:4d:bf:32:
                    99:12:af:a8:6a:7f:0e:7c:31:91:ff:d2:14:c1:c2:
                    df:f9:fe:55:d0:50:86:42:f7:db:93:21:1e:b9:4d:
                    6c:df:f0:65:6f:50:46:a1:b2:00:8e:b0:76:48:03:
                    dd:9c:62:a2:cc:6c:93:8b:5d:29:07:f1:64:fd:9e:
                    f2:a4:af:80:20:c2:a1:8f:49:a3:b9:13:31:d5:d4:
                    5e:44:fa:ba:a7:d1:b7:0f:c2:26:aa:8a:09:86:6d:
                    40:44:29:00:21:7c:61:40:60:f6:db:36:df:f4:3b:
                    cf:91:96:1f:00:55:a8:5c:19:bc:f7:a4:4a:42:7d:
                    4e:21:5b:fc:63:3e:b9:bc:60:95:79:87:c2:bf:e9:
                    cf:51:c5:46:1d:a6:fd:06:82:0b:c6:86:7c:2c:ea:
                    48:55:13:f2:7b:63:62:ab:85:8e:b4:c3:c3:1f:50:
                    0a:a0:24:ed:a4:c1:6e:17:20:9f:04:2e:13:f6:9e:
                    8f:2f:58:70:4b:d7:b4:a0:47:41:3b:1d:ef:9b:09:
                    7e:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:36:F6:CC:7D:CD:E2:54:17:93:3D:19:08:06:10:37:D7:EC:AE:DB
            X509v3 Authority Key Identifier:
                keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:c4:24:63:1f:91:c3:c2:51:77:1d:f9:85:b7:96:bb:e7:59:
         00:c6:bb:ed:47:a7:2a:43:5a:4a:89:6e:5f:70:85:bb:54:13:
         7b:bc:d4:1e:d5:6e:d4:e9:70:e4:9b:a9:2f:63:36:f0:0f:fd:
         7d:a6:77:ed:d2:ee:d4:13:15:6e:45:a7:90:1d:8c:2f:78:fc:
         66:c1:bf:48:25:5b:46:3e:0f:df:69:f6:20:d8:41:94:eb:2d:
         db:fc:1a:33:2e:e7:70:6f:1b:2c:8d:0f:fb:2a:b7:5b:2f:3b:
         c1:78:71:74:3c:18:ae:16:27:d6:17:b0:c4:ee:c8:49:2e:e4:
         54:c9:75:b3:c4:bf:ba:9e:92:e0:6f:19:a3:93:54:e6:df:45:
         4d:8f:84:55:6c:0e:9e:c2:ff:ec:0d:6a:f3:84:96:67:c2:d0:
         55:a8:bd:c0:cb:32:51:d1:9a:f4:ae:e0:63:3d:bd:41:6c:84:
         db:58:9a:bd:61:af:26:83:d3:9a:9b:56:ba:cd:97:80:08:32:
         c7:50:73:13:d9:c9:db:2b:ee:78:d9:ea:8d:c9:71:2b:c6:85:
         fc:2f:8c:fa:2c:3b:85:04:ad:86:e4:d8:33:b6:b2:1c:f8:ff:
         1c:45:01:c4:b8:9d:89:45:87:1b:30:66:8a:1b:b0:d5:2a:bb:
         c5:a9:66:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 08:09:00 2025 by rpki-client