Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
File:                     TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json)
Hash identifier:          2LYwE9+BhDtFf/WCM4h3UHKuvlL6gookQckK0YrMulg=
Subject key identifier:   4D:B3:AF:1F:EC:3F:5E:CB:7E:87:E9:7F:3A:FC:4A:C4:33:84:5B:C8
Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8
Certificate issuer:       /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
Certificate serial:       18A9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
Manifest number:          1712
Signing time:             Mon 30 Jun 2025 17:05:00 +0000
Manifest this update:     Mon 30 Jun 2025 17:05:00 +0000
Manifest next update:     Mon 07 Jul 2025 17:05:00 +0000
Files and hashes:         1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: mLPYEVSLpTk9q+W0PkT+Md1FfaP8rFatvAhAAM7nZAk=)
                          2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: F7+/UI/IdrG7UJylIwMQeWeh8x4KccRZsFSY0IMAJig=)
                          3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: G9R6UKF81vPpeZEj71HVNBUREkX7yk3WJ1Q6tTRHYYM=)
                          4: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: kIvT/50E2laNc1gLfjO5rKE/sWwcpe4nrifpeBT23BI=)
                          5: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: j6prxSOt5QlgU/NV/soMWbDX95ZjTIwaOn33GpJLHDk=)
                          6: 6D8B68F2ED9A11EF9E539B3FC4F9AE02.roa (hash: yx4fiWkeXS2J98lhCqqoYpBguCgiCzXNzrG9TkgDJWo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl
                          rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 07 Jul 2025 17:04:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6313 (0x18a9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
        Validity
            Not Before: Jun 30 17:05:00 2025 GMT
            Not After : Jul  7 17:05:00 2025 GMT
        Subject: CN=6862c3bc-1b5c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:c6:7e:a8:55:fd:bd:22:6c:32:25:78:03:f3:
                    9f:79:cf:d3:11:ab:06:ef:06:bb:c9:8f:5e:d6:3d:
                    3b:bb:45:6d:54:1a:67:a6:a5:7b:70:a6:da:be:19:
                    1f:12:c4:4f:06:de:3c:0d:ff:bd:39:f7:2a:96:a4:
                    c3:35:af:11:48:67:a9:e8:c3:e1:97:3b:1e:00:5a:
                    ba:f9:32:45:38:a4:31:bc:c3:af:bb:21:52:e2:85:
                    9b:ff:bf:4e:25:90:80:93:d4:25:d5:e9:65:87:00:
                    9f:05:cd:9a:37:38:60:cd:67:b8:35:53:3d:45:3c:
                    78:97:db:80:ae:a4:33:46:52:aa:74:ed:26:32:51:
                    84:c6:77:28:27:ef:e0:0b:8e:57:e8:18:e8:37:82:
                    d0:6d:67:9a:16:c7:e4:2d:95:74:45:b0:95:e7:33:
                    fc:bc:6f:07:11:ac:ba:b7:10:82:8d:a8:5b:8f:88:
                    35:bb:79:e7:00:0f:bb:e6:fc:09:c5:87:c3:08:f6:
                    b2:a2:1c:ad:a3:45:7f:e6:60:21:68:cb:6b:9e:fa:
                    31:92:24:e4:a7:dc:e3:16:1e:23:6e:f5:fa:be:fa:
                    1e:27:85:ff:a0:9f:f7:63:b4:cb:45:91:fb:3b:63:
                    57:4e:9b:98:43:4f:d6:cc:fd:e4:12:c8:71:a8:24:
                    68:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:B3:AF:1F:EC:3F:5E:CB:7E:87:E9:7F:3A:FC:4A:C4:33:84:5B:C8
            X509v3 Authority Key Identifier:
                keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:d2:dc:33:f6:3a:20:56:04:b2:c4:1f:52:4b:c4:cb:83:3c:
         55:ee:d5:ba:9f:fe:9b:ab:db:28:af:36:ca:57:9d:d9:6b:45:
         f1:27:e7:a6:33:36:f0:11:0d:b1:90:ba:20:bd:e0:db:88:54:
         9c:bb:d3:4e:78:8a:f4:c5:86:3c:cc:64:63:a8:e0:f3:03:35:
         6f:21:6a:c7:8d:23:cd:fb:c6:03:d4:4e:d8:03:c1:cb:f8:f6:
         8f:56:01:ac:5c:52:39:df:04:ec:7e:4a:58:91:ce:73:93:10:
         16:af:61:52:b3:2f:bf:a4:ac:0f:9c:81:4c:0b:8f:c4:ce:ec:
         3c:34:5b:f6:6b:40:27:41:c2:45:00:c4:53:5a:f1:65:ce:d2:
         71:7c:c6:1b:65:6a:02:a2:e3:a5:1e:ad:21:ef:2c:28:b8:df:
         3e:5d:1e:a8:09:ca:11:99:c2:57:cd:61:7b:90:4d:67:43:e6:
         0c:7e:05:3c:3b:8f:eb:e4:4f:2f:3c:9e:64:cb:5b:3b:db:31:
         a4:32:3d:9a:3e:d6:01:86:80:7a:4a:88:a9:f6:7c:7f:5d:0e:
         0b:6b:f1:de:0d:1a:48:6a:2d:95:e9:2a:14:5c:d9:5c:bb:a3:
         dd:8d:9a:99:64:af:0a:3e:a8:06:ff:67:84:c7:ce:68:ba:a7:
         42:5e:b6:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 02:06:58 2025 by rpki-client