Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft
File:                     aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json)
Hash identifier:          lTnYmGeO4T+lbv7st5aASVT7yT9IJ+W1bLsFo4HDVLc=
Subject key identifier:   76:71:49:05:D5:0E:B6:94:84:7F:1A:A5:50:BC:BF:35:D2:33:6D:AD
Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38
Certificate issuer:       /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38
Certificate serial:       06F2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft
Manifest number:          06EA
Signing time:             Thu 12 Jun 2025 21:38:00 +0000
Manifest this update:     Thu 12 Jun 2025 21:38:00 +0000
Manifest next update:     Thu 19 Jun 2025 21:38:00 +0000
Files and hashes:         1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: rMeiQTThmMxjLdzra+LB+VLBz4CMaAGN4Owy+xAzuWQ=)
                          2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: 0+1qqFR2dQAbs8bJZhkVHckF6TnHu8C+B8873r1KDqA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl
                          rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 21:37:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1778 (0x6f2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38
        Validity
            Not Before: Jun 12 21:38:00 2025 GMT
            Not After : Jun 19 21:38:00 2025 GMT
        Subject: CN=684b48b8-1f2a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:42:cd:f5:5e:0e:55:49:52:c9:e9:22:2e:f3:
                    3a:4a:db:61:75:54:00:e0:87:12:d0:1b:72:20:1c:
                    c8:9a:1d:8e:84:29:14:85:f3:3c:13:b1:25:36:e1:
                    71:61:d5:5f:1f:de:b5:91:3b:46:e1:2c:69:c1:24:
                    f4:f2:aa:a1:ef:3b:58:57:04:b6:92:a4:81:80:17:
                    1b:2a:dc:f1:f0:14:fe:ee:87:61:6b:b7:04:59:b7:
                    cb:bc:cc:be:4c:03:a7:5a:aa:7f:03:e4:5a:bf:13:
                    f8:f3:f3:67:28:ac:10:53:43:48:d0:c7:f7:40:45:
                    20:6d:7e:1c:11:8a:c7:df:5f:5f:f2:6e:b9:a5:cb:
                    09:35:c9:c7:10:17:e9:bd:0a:5e:a3:48:34:e3:8a:
                    62:d7:4f:7e:80:b6:c8:18:9f:8f:3b:93:88:c5:c7:
                    01:78:05:67:74:65:f4:76:da:5c:d8:d0:17:58:e2:
                    50:2f:35:9d:9a:3d:a6:60:b9:aa:6f:1a:48:f7:2c:
                    cd:0a:3d:b1:92:ab:42:31:00:2e:82:89:fe:1f:15:
                    b0:85:c9:ee:67:70:51:f1:20:49:bf:12:3d:d2:89:
                    c1:63:05:e2:9c:c3:c8:3e:ef:b3:f5:8e:6b:48:9c:
                    95:54:cf:6a:e3:70:0d:05:17:73:c6:f1:6f:86:60:
                    7b:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:71:49:05:D5:0E:B6:94:84:7F:1A:A5:50:BC:BF:35:D2:33:6D:AD
            X509v3 Authority Key Identifier:
                keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b2:29:7e:13:92:2a:cb:32:b4:a8:12:fe:c0:d8:cd:20:0f:d5:
         b6:54:90:26:9c:bc:8a:22:54:e4:0c:ce:18:0c:a4:c8:7e:48:
         38:bd:4b:bb:78:b0:4c:51:90:c1:0b:a7:78:aa:17:c7:20:f4:
         79:4c:58:4b:0b:85:ab:c9:57:07:88:7d:4c:19:3c:0f:3e:3e:
         cb:5c:86:51:ae:03:b3:1c:fa:f9:7c:c6:85:f6:81:7a:ab:50:
         3d:4f:10:12:7b:de:68:32:3e:bb:a1:39:d5:e2:46:a2:7e:51:
         b2:7e:be:d2:2a:86:a2:db:26:d7:ab:18:d8:53:65:14:6d:99:
         23:bd:6e:32:fc:37:5e:69:d4:91:d6:96:0b:df:57:3a:1b:8d:
         9e:a0:5c:5c:22:ce:2d:2b:0a:8d:45:6b:84:4f:c7:59:a3:7d:
         1f:38:24:bd:e4:93:98:4e:75:99:83:1c:da:85:87:f4:7e:36:
         3f:3d:fd:d6:d5:a0:78:35:a0:2b:3c:cc:d7:0f:71:58:f6:2a:
         42:68:97:77:f6:5e:77:7f:4a:64:84:79:aa:23:46:ad:3b:09:
         47:91:b5:e5:99:7e:c9:82:90:c5:4d:82:df:49:bc:03:00:9c:
         9a:f1:d7:8c:de:35:c7:95:58:26:18:0b:38:86:3e:0d:cb:c5:
         fd:1d:2a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 16:21:26 2025 by rpki-client