Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
File:                     pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json)
Hash identifier:          OBMZKDNkUVlgEe5ShVKVmx1KHO+FWg5Wu4iAg5ffOtg=
Subject key identifier:   48:E2:86:AE:70:B1:6A:F4:78:B5:0A:3E:66:CE:30:98:A6:BF:5C:05
Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA
Certificate issuer:       /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
Certificate serial:       013E
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
Manifest number:          013B
Signing time:             Sun 08 Jun 2025 19:04:34 +0000
Manifest this update:     Sun 08 Jun 2025 19:04:33 +0000
Manifest next update:     Sun 15 Jun 2025 19:04:33 +0000
Files and hashes:         1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: GgrqT2TPS7BTUmkTPwDEtF7RizmpPTjFqVcjRbTKH2I=)
                          2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl
                          rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 19:04:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 318 (0x13e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
        Validity
            Not Before: Jun  8 19:04:33 2025 GMT
            Not After : Jun 15 19:04:33 2025 GMT
        Subject: CN=6845dec1-db2b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:a8:86:f8:87:58:3c:9d:79:f9:72:97:d1:d9:
                    30:10:66:bb:61:ca:f4:34:33:70:db:5c:bc:87:ed:
                    06:c5:86:06:b0:8c:7d:bc:84:4c:26:2b:1d:d9:7a:
                    c4:ae:5e:8b:62:44:9a:10:ac:2f:ba:bc:41:a4:be:
                    ae:e2:0a:00:09:47:e5:c3:a6:8b:8a:f8:b6:79:e6:
                    c2:b9:b6:13:db:1f:d0:7f:e8:a0:fa:26:8d:86:b6:
                    0b:22:e5:9c:aa:72:ac:87:0b:b8:ee:de:4c:d4:55:
                    e9:bb:d8:64:b4:61:8f:0a:66:cd:36:b9:f1:9d:5e:
                    42:c0:72:87:91:0c:5a:93:76:50:96:1e:1b:54:40:
                    66:f0:6e:3c:52:12:ac:e7:dd:87:86:32:32:c2:80:
                    68:cc:6f:a9:7f:18:07:50:40:9c:f1:e5:4d:83:38:
                    9a:8f:26:87:26:88:87:fd:01:72:23:d1:51:d7:41:
                    1f:04:9d:2b:a3:2f:1e:b8:5f:e3:30:e1:9b:6b:0b:
                    3a:a9:de:c1:ea:77:07:29:9c:1d:61:2a:b2:7f:f5:
                    de:4e:32:28:fd:7f:65:5c:63:91:58:d1:42:5f:94:
                    40:0e:7a:23:71:db:cd:9c:aa:89:c5:22:aa:16:88:
                    01:48:9d:e1:a3:a4:68:c8:10:0c:d8:2e:2c:c9:3a:
                    29:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:E2:86:AE:70:B1:6A:F4:78:B5:0A:3E:66:CE:30:98:A6:BF:5C:05
            X509v3 Authority Key Identifier:
                keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:82:da:06:cd:b0:ca:5c:60:90:ac:98:09:54:5a:cc:97:8e:
         07:29:e2:2a:ac:84:d2:c0:aa:b5:d9:c6:3e:f6:6e:56:49:a3:
         3f:89:4d:e2:a4:81:0f:58:eb:dd:c7:a4:b6:cb:e5:92:28:44:
         1c:ea:ea:20:78:c3:1c:5a:c9:42:92:d9:fd:8e:af:f8:a5:9d:
         fd:bb:76:1a:21:bb:2d:ba:49:31:0a:07:67:67:0c:00:e2:ec:
         0a:3d:ed:34:d2:1b:ba:32:16:bd:6b:be:e3:05:a9:d7:f5:a0:
         c8:c5:1e:43:38:62:4b:2c:94:93:a6:6f:68:1e:c2:ff:2b:f4:
         15:30:51:56:e4:0a:8a:8d:35:17:7a:60:6a:d1:ef:63:c7:4c:
         a4:6f:14:9e:47:b2:13:86:ba:45:6a:22:6e:08:dd:6f:96:c2:
         51:c5:0c:9e:e0:92:6b:d8:c2:95:45:29:a4:0c:70:a0:b2:a0:
         f2:af:fe:1a:9a:ba:4b:ad:04:d6:5d:26:f9:e6:6f:88:1c:71:
         97:c5:1b:e1:b9:c6:06:0a:7a:6c:95:74:79:9a:20:a5:84:8c:
         e2:10:9d:1c:e3:09:a2:4f:c7:0f:19:f0:28:4e:09:ca:dc:ed:
         1d:70:7f:f4:fe:be:0e:35:17:7e:9c:a7:19:f6:d0:34:11:b5:
         67:05:e9:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 13:09:39 2025 by rpki-client