Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
File:                     kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json)
Hash identifier:          KbfLFdl4xEhNdtHI+gDSI4CyrTcVFrbMM+2fA0B0y/Q=
Subject key identifier:   EB:01:8F:21:84:98:03:73:C9:29:B7:9C:96:8D:B9:5F:7C:D7:2C:54
Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F
Certificate issuer:       /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F
Certificate serial:       01AC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
Manifest number:          01A1
Signing time:             Fri 13 Jun 2025 02:27:20 +0000
Manifest this update:     Fri 13 Jun 2025 02:27:20 +0000
Manifest next update:     Fri 20 Jun 2025 02:27:20 +0000
Files and hashes:         1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: h4zc3VSTGufy/VeJFRaOzpDp0jmpaPQnq87wSfDqTNQ=)
                          2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=)
                          3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=)
                          4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl
                          rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 02:27:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 428 (0x1ac)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F
        Validity
            Not Before: Jun 13 02:27:20 2025 GMT
            Not After : Jun 20 02:27:20 2025 GMT
        Subject: CN=684b8c88-8d41
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:df:91:6b:20:52:b7:3c:aa:d7:5b:96:31:5f:
                    79:0e:5b:9f:ee:e7:59:fc:77:9e:03:e2:91:a1:0f:
                    b3:9f:8d:a5:cf:eb:a2:70:01:93:92:af:48:d0:1f:
                    98:d6:2d:88:a7:14:78:74:e1:19:0a:5e:f2:4b:14:
                    26:8b:1e:f8:e2:07:c4:e3:45:8b:5c:58:13:22:c0:
                    1d:3c:36:58:29:cf:37:d7:83:d9:05:54:c1:68:ca:
                    82:1b:ec:18:20:c3:f9:6f:f0:a4:c8:b7:f6:de:63:
                    2c:16:e6:57:bc:c0:b5:e9:33:60:7d:58:5c:68:77:
                    48:14:6a:89:55:5f:8c:a5:a9:63:60:51:76:6f:1e:
                    34:e8:47:8e:dd:cd:88:66:91:ee:68:9f:49:f4:69:
                    c9:69:09:65:80:6b:a8:5d:ed:56:55:92:47:d7:b7:
                    cd:99:1b:e8:d7:9e:bd:8d:95:58:37:ae:52:8d:fe:
                    61:e6:fd:50:46:2a:17:93:2d:4c:b8:58:e6:66:0d:
                    00:3d:6f:a2:ab:b2:a4:3b:4f:fa:b6:93:bd:8d:ff:
                    44:31:1c:db:b5:7b:4e:c1:30:30:2a:02:73:a2:65:
                    7b:c3:05:5d:e7:60:06:58:20:cb:0a:58:e7:b0:63:
                    e6:c9:87:79:5a:bd:d5:b4:b1:ed:ba:12:19:85:f3:
                    05:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:01:8F:21:84:98:03:73:C9:29:B7:9C:96:8D:B9:5F:7C:D7:2C:54
            X509v3 Authority Key Identifier:
                keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d0:41:e5:3a:56:c5:6b:3e:6b:75:58:3b:05:26:05:75:c3:89:
         00:a0:7f:2b:2c:63:20:52:6d:d1:f6:d7:1c:88:95:b7:fd:b1:
         34:a2:f6:3d:ea:59:12:15:43:79:96:01:f2:c4:e2:4e:05:2a:
         c2:94:b0:21:f0:9b:f3:74:6a:a6:33:a6:b6:54:64:32:d4:51:
         97:15:0f:a6:ee:4e:90:fe:ee:8b:05:0d:9f:cb:57:40:25:b8:
         b5:b3:4e:ab:79:84:48:c1:12:e7:63:b4:3e:1a:ce:57:be:0d:
         ed:04:8b:e2:21:a4:80:10:e3:5d:62:53:17:26:25:d0:43:65:
         41:97:66:45:cf:81:0d:2c:8a:3b:b6:5a:54:c3:f4:1f:df:db:
         4e:c4:fa:00:cd:f8:e4:5b:87:b6:16:aa:d5:49:df:be:6c:5f:
         70:9a:79:d8:28:fd:24:63:cd:75:75:9c:09:2e:e9:d9:85:03:
         27:0b:e5:a5:e0:4e:d4:08:1d:f1:95:08:c2:d3:6d:5f:a5:1d:
         1f:6f:73:d4:0a:e8:57:d8:63:83:86:d8:d3:15:ac:90:33:4f:
         83:8d:5f:fa:0e:ed:e1:64:22:2b:9f:8a:ec:dd:54:06:31:80:
         fd:97:0d:2b:e8:29:42:98:ee:e8:b2:f8:36:5d:49:c4:92:85:
         e0:1a:5d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 15:02:08 2025 by rpki-client