Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
File:                     bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json)
Hash identifier:          5oLFIIBbv1RJN4zYWeTOE6dv+CyjXp8h0N7+N9hqovo=
Subject key identifier:   51:6B:15:F2:A2:50:7A:AC:56:8D:B8:2D:7F:A5:1E:24:2B:B2:2F:E7
Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4
Certificate issuer:       /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4
Certificate serial:       02BA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
Manifest number:          02B6
Signing time:             Wed 11 Jun 2025 01:20:17 +0000
Manifest this update:     Wed 11 Jun 2025 01:20:17 +0000
Manifest next update:     Wed 18 Jun 2025 01:20:17 +0000
Files and hashes:         1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: Ur7Ag3S9nYW8gk9I+2mbTuVKVRLJixC650y1QUAwxRQ=)
                          2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: IiOrImghzE2Vpf35rEo7vvLgM62zn5Ft6k44BhxCI6k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl
                          rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 01:20:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 698 (0x2ba)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4
        Validity
            Not Before: Jun 11 01:20:17 2025 GMT
            Not After : Jun 18 01:20:17 2025 GMT
        Subject: CN=6848d9d1-24f5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:cc:f7:f3:6c:5e:5d:71:bb:72:3c:b4:a6:84:
                    d6:5d:ae:e8:3d:f5:5e:a7:b1:a4:8f:3b:7a:ca:5f:
                    fd:f5:73:5f:e2:9c:fd:de:c5:44:5b:61:b9:a6:59:
                    1a:78:cc:1b:82:c1:e9:91:f2:dc:4a:c6:48:8c:48:
                    24:7f:0d:31:24:41:77:28:46:72:f9:0e:97:36:c6:
                    bd:18:6a:d1:9e:85:49:c3:f3:6b:10:83:9b:31:09:
                    09:ea:8b:88:2c:ca:26:e9:9d:b6:e9:a5:92:cb:e6:
                    19:40:26:b9:56:bb:03:fa:0f:37:96:86:f3:2d:12:
                    01:d5:91:38:55:c1:3f:f8:89:cd:62:87:e6:d3:b6:
                    24:76:b7:34:f7:7c:cb:49:c4:40:85:65:9a:d7:44:
                    fa:40:99:78:2e:bf:67:c3:b0:9d:41:5d:69:fd:3d:
                    97:74:fd:01:38:5f:f0:4b:33:a4:f4:06:41:c3:48:
                    88:c1:94:d0:86:6e:dc:f0:c9:6c:0c:f0:93:4c:5d:
                    40:c6:4e:69:4e:47:a9:2d:37:e9:f8:f3:fe:d0:18:
                    e6:45:0d:d2:11:4b:ff:83:39:a8:5c:e9:b4:85:81:
                    03:55:66:aa:e0:01:9f:af:12:d0:b0:af:80:e0:85:
                    e6:bc:5c:9f:c9:fe:75:4e:81:d0:eb:1d:5f:7b:ea:
                    6a:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:6B:15:F2:A2:50:7A:AC:56:8D:B8:2D:7F:A5:1E:24:2B:B2:2F:E7
            X509v3 Authority Key Identifier:
                keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:4f:6e:f7:1d:1b:3c:c8:a1:5e:f7:a7:8f:0a:c1:59:62:7e:
         b3:28:82:7a:c1:b1:8e:b1:40:49:be:23:2c:77:2b:99:4b:99:
         60:55:92:83:8c:d9:e5:28:7f:21:84:b5:bc:64:a7:d3:a0:47:
         af:2b:1f:77:7a:f2:7c:e7:7d:a0:1f:b4:ce:76:26:74:e8:18:
         fe:2b:d5:d2:bd:b1:c5:db:a0:c1:00:6b:54:66:58:32:20:5e:
         5d:e5:e6:60:b7:14:71:cb:7b:aa:e6:f7:0a:3b:41:ba:cc:e7:
         50:22:cd:0e:a1:f1:6b:f9:53:7b:cf:84:b0:57:1f:0f:78:06:
         7e:8f:48:e7:61:c9:f7:f6:f8:96:99:5f:51:c8:68:99:9d:b0:
         09:0d:31:0c:38:31:a8:9a:b2:17:be:88:18:62:a4:ac:93:e2:
         eb:06:0f:be:f8:42:5f:0d:1f:db:9f:42:40:e7:25:03:c2:50:
         25:11:89:3f:80:9d:09:9d:54:68:23:d6:a1:8d:06:a1:34:d5:
         8b:95:d6:dc:1a:02:81:54:77:4e:2e:cd:87:47:17:30:99:99:
         37:00:8c:15:55:9a:6d:69:e7:f0:18:5f:b6:60:11:d3:34:a2:
         ea:5d:7c:85:c8:72:11:7d:c4:5a:8f:90:f9:92:7f:46:19:cb:
         04:6f:85:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 10:45:04 2025 by rpki-client