Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
File:                     bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json)
Hash identifier:          +T2zxKA0zGBOeFJQ8iE5gcTj0/M0NyEJ99vYNoL8gcI=
Subject key identifier:   AE:45:AC:8C:22:35:21:64:5C:65:0F:E0:82:9C:C4:88:18:BE:48:54
Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4
Certificate issuer:       /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4
Certificate serial:       02BB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
Manifest number:          02B7
Signing time:             Fri 13 Jun 2025 00:57:22 +0000
Manifest this update:     Fri 13 Jun 2025 00:57:21 +0000
Manifest next update:     Fri 20 Jun 2025 00:57:21 +0000
Files and hashes:         1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: hkSlSuz072+4R3AOercrsqOWOk+zNuhGTB88Bb9xeS8=)
                          2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: IiOrImghzE2Vpf35rEo7vvLgM62zn5Ft6k44BhxCI6k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl
                          rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 00:57:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 699 (0x2bb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4
        Validity
            Not Before: Jun 13 00:57:21 2025 GMT
            Not After : Jun 20 00:57:21 2025 GMT
        Subject: CN=684b7771-958b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:17:29:6a:1a:4b:b1:e1:35:29:71:f7:11:9f:
                    99:62:7d:08:6e:e5:8c:07:00:71:6d:bc:c3:48:89:
                    9b:df:9e:2e:ea:d9:88:39:0f:fd:02:20:bc:9d:5c:
                    4d:dc:cf:e0:93:30:02:9b:52:f5:e6:fd:13:1d:1c:
                    66:56:ab:b1:96:4f:1e:c3:a5:8c:bc:ee:f9:a6:1a:
                    61:ba:33:08:ea:d9:62:89:0b:99:64:06:11:23:72:
                    21:db:17:f8:30:fa:80:1a:a2:af:65:ce:89:49:f6:
                    5a:b6:59:77:5a:e8:7d:77:d7:35:e3:bf:5e:4d:97:
                    25:f6:36:66:15:aa:76:99:b5:0a:6b:c2:b4:c7:c9:
                    a4:b5:bd:33:57:9b:b8:31:b3:18:55:ea:d7:4c:ce:
                    6f:a1:11:a7:60:30:43:7d:99:90:cd:d8:0d:96:48:
                    32:d1:74:27:fc:ad:e1:4d:32:59:01:98:8b:d0:50:
                    65:53:aa:87:b7:e8:ca:01:6f:5e:11:3e:a2:e2:fb:
                    66:af:69:e8:95:93:b4:4c:12:88:4c:b0:08:b5:cd:
                    e7:b3:c5:17:80:5d:e4:3e:67:0e:c4:fa:cd:29:8b:
                    41:18:32:2c:54:f4:5b:f0:9f:49:fb:cc:d1:8a:79:
                    de:e1:ba:cb:e4:93:f1:31:00:e8:1b:61:0f:bd:33:
                    d4:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:45:AC:8C:22:35:21:64:5C:65:0F:E0:82:9C:C4:88:18:BE:48:54
            X509v3 Authority Key Identifier:
                keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:1a:0c:1c:9c:be:65:3d:2c:27:1a:9c:11:1d:46:a6:af:bf:
         06:6d:78:a8:1a:65:98:1b:05:5a:4b:67:81:25:61:51:9a:08:
         47:6d:2c:41:82:6f:47:a8:ce:e9:de:dc:bc:fe:74:c5:6a:9f:
         4a:59:ca:ad:c6:3d:44:e6:bf:5d:2e:47:00:c9:b1:74:7e:b9:
         0a:ee:ee:3d:ec:3e:df:fd:04:e6:ab:88:61:ae:a4:ad:4d:b8:
         bf:69:d9:fd:82:41:16:7f:02:2a:33:10:9e:0e:88:3e:d6:08:
         90:6c:dd:21:0e:35:36:64:8b:a0:0b:65:be:58:20:7d:7e:24:
         a6:8a:df:08:58:2c:b9:02:52:f0:37:a5:e6:c4:d1:aa:98:d1:
         9a:9f:3f:f3:5e:41:64:ec:01:9b:e1:31:4a:de:42:9a:b8:ef:
         2d:b5:dd:af:fa:de:ea:9e:20:b9:e0:0b:1f:fb:17:7e:2b:11:
         a1:b2:b5:bd:64:12:4a:83:de:4d:ed:c5:7d:7d:b0:5a:b7:d2:
         57:ca:e1:c9:9d:a7:2c:47:46:17:a5:9e:b8:51:82:85:08:2c:
         7b:9d:6b:b2:fd:f2:3a:63:40:ce:a6:5f:7b:44:8e:3c:7b:53:
         51:c1:12:39:59:61:b3:27:ab:a8:09:ef:80:e4:56:0d:f0:b9:
         84:a3:9f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 08:17:23 2025 by rpki-client