Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
File:                     k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json)
Hash identifier:          s/BIvEu2g4EQ3+L3Cjvx/xOc+SzRgXRiTNGftIloDwg=
Subject key identifier:   08:31:9E:8C:0F:CD:BD:49:5B:E7:78:92:A5:37:18:D4:6F:F9:DC:24
Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD
Certificate issuer:       /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD
Certificate serial:       0479
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
Manifest number:          0475
Signing time:             Wed 11 Jun 2025 00:00:56 +0000
Manifest this update:     Wed 11 Jun 2025 00:00:56 +0000
Manifest next update:     Wed 18 Jun 2025 00:00:56 +0000
Files and hashes:         1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: vR3YM/oCavWRNjkN89CwbRv9ZERaKXB2j+akP9/Ql5I=)
                          2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: MtaWbSK5JAjEiEpHTj/1X7DdZqPg3BZxUlQCHg85KTM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl
                          rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 00:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1145 (0x479)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917392B, serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD
        Validity
            Not Before: Jun 11 00:00:56 2025 GMT
            Not After : Jun 18 00:00:56 2025 GMT
        Subject: CN=6848c738-091c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:03:0a:60:c8:4d:0c:02:a5:d8:bf:c7:6c:4f:
                    d0:92:84:a3:9a:f8:ed:f4:c2:d2:a6:8a:9a:8f:5e:
                    5c:95:a5:b0:c2:73:67:27:08:5f:77:4d:f8:4b:ca:
                    49:6b:e0:ac:3c:6f:d2:04:8a:b2:36:35:ad:af:a6:
                    a5:3d:c8:dc:87:13:ce:ce:13:a2:88:9a:91:9c:d2:
                    68:b9:ba:6e:25:8d:c1:ee:1d:53:2b:3a:84:24:7e:
                    04:81:77:11:55:06:bf:9f:e4:40:8e:5a:28:7c:ab:
                    c5:3e:b4:ad:e2:d5:38:15:a9:06:6a:fa:1b:61:c4:
                    78:89:ef:ef:c3:38:58:cc:43:60:24:34:2f:c4:39:
                    bd:5e:70:74:46:e3:68:cd:6a:10:7c:42:f8:b8:dd:
                    fe:eb:e7:4f:2c:95:16:79:2f:fe:e2:fa:a9:f5:62:
                    57:ac:14:ea:66:98:83:c2:e9:12:04:2f:a3:1f:db:
                    aa:e3:36:32:11:54:b6:5e:44:23:ba:8c:2a:4c:cd:
                    aa:7a:4c:f3:43:23:85:54:ef:b7:3f:68:96:7c:ad:
                    bf:de:1f:86:5c:da:16:1d:dc:97:8d:1f:91:e2:72:
                    d5:eb:f8:e9:13:c0:39:2d:25:6f:fd:0a:fd:1f:28:
                    1a:19:08:3e:95:0d:31:da:e0:fe:cd:8e:d5:14:ec:
                    9b:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:31:9E:8C:0F:CD:BD:49:5B:E7:78:92:A5:37:18:D4:6F:F9:DC:24
            X509v3 Authority Key Identifier:
                keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:81:e2:41:cc:f3:35:cd:e2:46:db:74:c3:27:da:f7:95:01:
         99:4b:4d:6f:64:a0:e6:3d:c2:1b:36:a6:f4:88:80:3a:70:17:
         34:54:a0:c7:ec:9c:e2:3a:30:f5:c2:07:5a:af:da:14:63:4a:
         2e:b8:18:b7:e6:e7:7a:bc:34:85:83:bc:bf:1f:e1:2b:d3:01:
         47:80:a4:83:f6:32:d2:a7:4b:c2:82:5d:c9:e0:6c:aa:26:63:
         09:32:0f:c9:c9:7a:a1:7e:e4:7b:09:b6:99:88:75:ed:cb:48:
         0d:48:cc:b2:ea:0f:53:7d:59:53:2d:b1:c2:7c:1d:09:c6:86:
         25:d0:27:3d:2a:b1:55:53:74:60:43:90:94:23:e7:e7:49:5b:
         38:e0:c9:a3:a4:3b:9a:1b:e2:fd:c1:12:c6:39:11:3e:d7:1b:
         11:af:20:2f:29:0f:97:9c:b2:cc:e6:a1:1d:f4:c6:5f:8b:e3:
         aa:2e:99:25:23:24:9c:c6:9a:3d:db:f2:6d:57:17:e0:7c:cd:
         68:2b:49:e4:b3:88:68:08:9c:d3:13:dc:7f:da:25:b5:04:41:
         fc:79:15:a7:b7:93:81:86:0d:41:d9:57:17:59:25:96:8e:04:
         09:2d:d8:3b:f1:47:7f:ae:54:d4:a3:ca:0a:de:da:1e:4a:c6:
         6a:bc:c7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 14:48:45 2025 by rpki-client