Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
File:                     bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json)
Hash identifier:          ttBW8s5gsdLyPMu9mmdq4PKrQU47mh8ZX/9LMH6A5/8=
Subject key identifier:   63:E3:73:F2:F8:F4:FD:54:09:F9:31:04:24:E6:34:78:8B:25:04:ED
Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56
Certificate issuer:       /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356
Certificate serial:       0290
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
Manifest number:          028D
Signing time:             Fri 13 Jun 2025 01:06:10 +0000
Manifest this update:     Fri 13 Jun 2025 01:06:10 +0000
Manifest next update:     Fri 20 Jun 2025 01:06:10 +0000
Files and hashes:         1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: mtnGw2YBbSnDbYv/uiFxUKe84C4bvgyycOm1asX49f4=)
                          2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: LYlnmY38WC+/5pBo6/8yuliMtbU1c9X35OeWacBJJcc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl
                          rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 01:06:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 656 (0x290)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356
        Validity
            Not Before: Jun 13 01:06:10 2025 GMT
            Not After : Jun 20 01:06:10 2025 GMT
        Subject: CN=684b7982-a867
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:26:00:c9:fd:f4:1c:38:cc:81:1d:cb:ca:b9:
                    4b:db:ac:8b:7c:9b:7d:5d:95:e4:87:21:36:e4:41:
                    e1:b4:b7:3c:b0:63:65:a9:3e:d8:0f:a0:8d:70:ae:
                    84:84:c2:0b:2e:00:3c:12:89:50:21:98:e1:bf:bb:
                    47:be:3b:2e:5f:f7:8f:73:1a:bd:ec:61:e3:ac:3a:
                    95:d1:bf:a6:4d:ce:28:0d:f2:16:3e:43:f6:56:c7:
                    09:bc:b4:65:63:80:da:59:9d:a4:5c:17:00:f5:0a:
                    01:4b:ac:6e:96:c8:90:ab:cd:67:c3:c8:91:4a:b5:
                    29:a0:80:74:89:4e:d1:c5:ce:91:b4:e8:1e:c0:62:
                    a8:1b:5e:fc:90:39:ab:02:58:5b:8f:48:1f:db:79:
                    c2:7d:a2:07:d4:13:f9:d2:a7:59:8b:c4:22:ff:46:
                    4f:c6:37:8b:55:f2:28:f5:24:60:b5:d7:63:ca:29:
                    e4:7b:21:d6:b5:a8:41:d2:5f:4b:1c:53:59:31:46:
                    6c:41:2e:77:01:51:b5:a7:c9:c7:4a:67:28:05:cb:
                    c0:1e:55:52:36:dd:0e:5f:18:ea:b9:68:c1:e4:95:
                    27:85:ee:54:8c:0f:ef:0a:a4:f0:f2:90:2c:fe:5f:
                    39:a1:5e:1e:9c:c1:17:1d:cb:64:c5:fb:67:62:51:
                    85:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:E3:73:F2:F8:F4:FD:54:09:F9:31:04:24:E6:34:78:8B:25:04:ED
            X509v3 Authority Key Identifier:
                keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:ba:ed:8d:ea:57:e9:a2:1f:d6:44:bf:da:41:17:54:71:27:
         fb:77:e0:36:74:c1:f2:36:3c:fc:e0:f3:87:de:ab:74:80:af:
         4f:99:73:4d:c3:64:eb:50:ae:96:73:ed:fb:e6:60:4c:3b:6c:
         d3:b6:4d:47:4c:fd:dd:f3:49:97:f3:d5:ba:76:e3:62:08:27:
         ab:a5:78:de:77:fe:f6:1a:0e:f1:3c:98:99:a7:6f:93:96:f3:
         a0:9b:d1:72:89:25:55:b3:5f:94:7b:29:02:84:d9:f4:16:2b:
         45:ee:07:2b:72:e3:1a:05:a0:c0:7f:bf:d6:3b:21:f8:c5:f1:
         06:bc:36:57:1d:9e:bf:ad:b1:f7:a7:83:c1:81:d3:93:cc:cb:
         2c:d7:61:61:75:84:a5:5b:d4:b5:72:d8:2b:b1:63:41:3f:8f:
         09:0a:8a:af:80:af:22:dd:d5:d9:3a:de:65:e1:2c:33:6d:0c:
         2c:a6:a9:74:12:43:9a:84:31:c4:a3:4f:ed:46:c2:80:15:51:
         6f:7d:1f:96:1b:1b:a5:3d:76:2e:6a:5a:5b:90:fb:36:44:7b:
         84:3b:f5:a2:c7:24:15:d7:fe:47:df:9d:d6:80:fb:75:ad:7d:
         05:fa:4d:f6:92:46:c3:e5:19:1e:75:4b:f8:bd:33:85:0d:bc:
         ef:19:53:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 04:21:39 2025 by rpki-client