Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft
File:                     R-xTv901EyDomyxUG6zdTY1SoLM.mft (raw, json)
Hash identifier:          x48iLLJO3tH3OHbhcuvpehPIcAC6ArrVI4+xu1u+wYY=
Subject key identifier:   23:74:27:E7:9C:3C:17:A1:76:12:E4:C4:D6:D8:05:69:97:E6:65:7C
Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3
Certificate issuer:       /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3
Certificate serial:       066D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft
Manifest number:          0656
Signing time:             Sun 08 Jun 2025 22:14:17 +0000
Manifest this update:     Sun 08 Jun 2025 22:14:16 +0000
Manifest next update:     Sun 15 Jun 2025 22:14:16 +0000
Files and hashes:         1: R-xTv901EyDomyxUG6zdTY1SoLM.crl (hash: aIkDJ2MY+p6+rJ498EuI7EXKBPdmQV0BgZZyqzm07Uw=)
                          2: A6556900C0DF11EE9BA7B27AC4F9AE02.roa (hash: NeA+haQWbT/+ES8jGn84EHKvHgzHqa/Dm5GM89PcoNg=)
                          3: 24D8D69CADAE11EBB6E7565AC4F9AE02.roa (hash: g8Lb40zN9J+dX+baJw4w7wBfRZECh6tNIBDlZG3Davc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl
                          rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 22:14:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1645 (0x66d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9173DB5, serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3
        Validity
            Not Before: Jun  8 22:14:16 2025 GMT
            Not After : Jun 15 22:14:16 2025 GMT
        Subject: CN=68460b39-566c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:50:1d:bf:5f:b0:f1:a8:65:ee:43:e6:46:c1:
                    8a:94:f1:e0:6c:5c:76:a4:d1:91:e1:42:7c:81:98:
                    eb:c1:9b:ad:7d:b8:dd:0c:91:98:60:2e:9a:ce:18:
                    df:23:7a:8c:17:fc:8e:db:b5:b2:7e:47:db:bc:63:
                    38:fc:63:a6:4c:f5:30:fe:43:3b:c6:53:6c:b8:e2:
                    a0:29:23:8a:de:4b:3b:70:a4:f1:92:7a:91:36:1c:
                    0a:5e:cc:97:65:05:df:a5:ad:42:6e:cd:ba:e7:e8:
                    f5:60:7f:13:95:28:e4:d2:c2:d3:75:61:d6:fe:31:
                    5f:66:08:55:f4:f5:3f:52:22:2f:4b:6e:17:70:e3:
                    42:14:e1:8d:19:10:43:2f:6b:e1:ae:68:46:2a:51:
                    e9:89:06:da:90:d7:03:29:65:d6:01:d0:dd:98:f1:
                    82:f1:13:1d:e2:c5:01:2d:ed:8d:32:90:4e:ed:92:
                    dc:32:7e:b0:f8:34:4d:dc:56:6b:07:ce:6c:a1:cd:
                    ba:6a:0f:4c:76:0b:8b:6c:1f:dd:af:2a:d8:d2:cf:
                    c3:47:11:0b:f2:25:d7:a3:e4:12:8d:41:a2:0e:0e:
                    27:3d:64:31:24:51:96:a3:96:65:bd:6c:50:0d:0f:
                    57:6c:32:4b:9f:72:1f:14:df:09:d2:52:5b:e1:71:
                    a8:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:74:27:E7:9C:3C:17:A1:76:12:E4:C4:D6:D8:05:69:97:E6:65:7C
            X509v3 Authority Key Identifier:
                keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:49:ec:f9:a5:17:47:c5:e6:0d:1b:f9:37:de:99:2a:40:e4:
         a7:1f:51:91:3a:70:df:3a:81:49:b0:a3:b7:67:05:84:b9:ca:
         a6:5b:c4:ea:c5:dd:8f:65:25:68:4d:19:a2:6c:08:77:82:21:
         bb:24:f0:44:da:77:43:33:ff:a3:d4:63:38:f3:3b:9c:27:27:
         ac:4a:84:7f:37:03:88:c8:d1:07:d1:e0:a1:0c:26:71:6e:6b:
         49:ca:a6:32:74:e1:6d:de:58:9d:46:9d:f1:4a:53:22:20:9e:
         9d:cc:ca:09:2e:55:f6:bc:6d:03:d4:1f:c5:2b:17:1d:1d:59:
         1d:e0:72:c4:cf:c0:0e:b0:ec:df:a0:5f:ed:ad:98:8c:3e:52:
         63:ad:7e:d2:35:e0:38:12:c3:ef:df:88:32:40:22:33:b5:05:
         68:6a:0d:4e:c6:b9:d1:f3:db:cd:af:b0:12:39:c8:22:39:5d:
         61:27:2b:83:87:e2:2c:d4:dc:9a:40:c8:2e:22:ee:69:79:b7:
         70:22:bd:73:fe:a1:b0:64:e2:dc:f9:54:06:ea:0c:a3:37:0a:
         e9:ad:f6:a9:6f:4c:e4:6b:a0:df:38:b5:89:fb:81:1a:1d:0a:
         f0:27:ab:14:a5:4c:28:1a:e5:db:88:f0:69:4b:18:6f:00:4a:
         46:72:ec:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:58:25 2025 by rpki-client