Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
File:                     bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json)
Hash identifier:          AN7gFTsyTi6Yq8iHhMVXsJFDfMTyoGqEY5wIjm/UJEM=
Subject key identifier:   E3:8C:1C:45:78:66:7E:17:FB:CA:21:D5:75:DE:45:B9:AE:26:19:77
Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56
Certificate issuer:       /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356
Certificate serial:       028E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
Manifest number:          028B
Signing time:             Mon 09 Jun 2025 01:09:29 +0000
Manifest this update:     Mon 09 Jun 2025 01:09:29 +0000
Manifest next update:     Mon 16 Jun 2025 01:09:29 +0000
Files and hashes:         1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: c7OWhr0g6pM5isCISJZMWN21Pvfv2MEU4k4BgZ3h4gA=)
                          2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: LYlnmY38WC+/5pBo6/8yuliMtbU1c9X35OeWacBJJcc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl
                          rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 01:09:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 654 (0x28e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356
        Validity
            Not Before: Jun  9 01:09:29 2025 GMT
            Not After : Jun 16 01:09:29 2025 GMT
        Subject: CN=68463449-0e13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:db:a7:d8:f6:05:fe:6f:ab:a8:20:7c:d5:c6:
                    92:3e:92:38:5d:60:78:f0:31:22:ca:93:1a:89:68:
                    3a:84:1d:80:17:81:5f:30:12:28:77:76:0a:a9:4d:
                    ac:f3:c5:1a:02:8a:68:8b:08:b5:06:08:1b:9c:32:
                    b7:0f:0c:d5:89:e7:18:de:29:59:3a:65:ba:2a:8a:
                    b6:64:b2:8a:be:18:88:7e:52:c4:2c:76:1e:e2:f8:
                    6a:4e:c0:bf:13:56:6f:36:8b:44:95:08:d5:e7:6a:
                    04:45:a7:b7:5e:72:1a:3e:9e:a3:6b:e4:be:68:a3:
                    e5:70:14:43:d8:97:60:d9:a2:2f:89:38:8b:65:8e:
                    2e:5d:be:a5:d1:af:a1:e5:1a:63:fa:ca:5e:32:fc:
                    b5:12:f9:79:b6:2f:df:5e:81:65:ea:8b:de:dc:bd:
                    8f:28:93:fe:82:f5:0f:d0:fa:5f:1f:d5:e1:7f:d1:
                    81:12:f6:db:df:f9:b1:49:2d:39:5d:2a:9e:05:3e:
                    1e:95:7c:0b:fe:fb:a7:a3:54:ac:bd:fb:27:6c:85:
                    12:3a:c4:d1:1d:01:fa:ba:19:5e:d6:9b:d8:77:d7:
                    bd:3e:0a:f4:4f:68:b5:51:c8:44:8e:8f:99:62:6a:
                    00:1c:cd:6b:4c:69:37:a4:3b:16:6e:d1:71:61:02:
                    1e:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:8C:1C:45:78:66:7E:17:FB:CA:21:D5:75:DE:45:B9:AE:26:19:77
            X509v3 Authority Key Identifier:
                keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:a4:5f:dc:3f:61:97:90:15:54:c8:31:55:0e:60:9c:21:8b:
         cd:79:f5:3b:06:f5:4f:cb:7f:46:d1:b8:9c:91:9b:d2:9a:34:
         cd:6e:f1:62:98:ea:cb:27:51:09:1e:4d:f5:9b:a6:81:69:53:
         15:ba:e3:97:df:5b:49:42:90:0f:28:e9:96:18:50:e9:91:b0:
         85:29:35:b0:44:47:f9:a8:e3:b5:a2:95:38:7a:fa:bf:f4:84:
         cc:9d:2e:0a:f6:c2:fa:f2:e6:c2:bf:eb:6e:25:ef:28:07:24:
         de:3c:48:42:82:f7:5d:6c:2e:4d:36:e0:e5:92:35:70:08:7b:
         17:07:48:c5:10:ec:c6:3f:cc:45:be:99:e7:1e:f6:3e:d9:a2:
         a6:ac:ac:15:39:ce:f4:b8:d7:f6:3b:72:27:a2:40:8d:41:6e:
         7f:3c:e3:7e:db:c8:ae:2e:12:87:d3:65:9c:db:df:46:03:33:
         0a:df:7d:ac:38:85:92:91:38:a8:de:23:d0:09:5d:d8:ad:90:
         0f:07:e9:b7:71:99:49:3c:b8:16:6a:a2:85:b9:8c:08:2d:c1:
         16:19:19:c8:30:07:73:f0:89:44:9b:8e:2b:7e:9e:22:5a:63:
         15:75:29:2f:e1:05:dd:33:f8:ac:ef:ff:f6:f8:8f:01:a4:0b:
         aa:a0:ad:c4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3
RjA0RDUzNTYwHhcNMjUwNjA5MDEwOTI5WhcNMjUwNjE2MDEwOTI5WjAYMRYwFAYD
VQQDEw02ODQ2MzQ0OS0wZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAotun2PYF/m+rqCB81caSPpI4XWB48DEiypMaiWg6hB2AF4FfMBIod3YKqU2s
88UaAopoiwi1BggbnDK3DwzViecY3ilZOmW6Koq2ZLKKvhiIflLELHYe4vhqTsC/
E1ZvNotElQjV52oERae3XnIaPp6ja+S+aKPlcBRD2Jdg2aIviTiLZY4uXb6l0a+h
5Rpj+speMvy1Evl5ti/fXoFl6ove3L2PKJP+gvUP0PpfH9Xhf9GBEvbb3/mxSS05
XSqeBT4elXwL/vuno1SsvfsnbIUSOsTRHQH6uhle1pvYd9e9Pgr0T2i1UchEjo+Z
YmoAHM1rTGk3pDsWbtFxYQIe7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOMHEV4
Zn4X+8oh1XXeRbmuJhl3MB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3
MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V
MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H
VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCopF/cP2GXkBVUyDFVDmCcIYvNefU7BvVPy39G0bickZvSmjTNbvFi
mOrLJ1EJHk31m6aBaVMVuuOX31tJQpAPKOmWGFDpkbCFKTWwREf5qOO1opU4evq/
9ITMnS4K9sL68ubCv+tuJe8oByTePEhCgvddbC5NNuDlkjVwCHsXB0jFEOzGP8xF
vpnnHvY+2aKmrKwVOc70uNf2O3InokCNQW5/PON+28iuLhKH02Wc299GAzMK332s
OIWSkTio3iPQCV3YrZAPB+m3cZlJPLgWaqKFuYwILcEWGRnIMAdz8IlEm44rfp4i
WmMVdSkv4QXdM/is7//2+I8BpAuqoK3E
-----END CERTIFICATE-----
Generated at Mon Jun 9 21:47:39 2025 by rpki-client