Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
File:                     pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json)
Hash identifier:          vX/1XxZSaQ5HsKSXlY22eyAfV5Zs4r4Tp66Vk4tZsl8=
Subject key identifier:   63:3E:10:F7:DA:F2:7B:04:E4:07:C4:11:10:73:01:2A:C3:20:46:7D
Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA
Certificate issuer:       /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
Certificate serial:       0141
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
Manifest number:          013E
Signing time:             Sat 14 Jun 2025 19:08:53 +0000
Manifest this update:     Sat 14 Jun 2025 19:08:53 +0000
Manifest next update:     Sat 21 Jun 2025 19:08:53 +0000
Files and hashes:         1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: 3kmveIa9D4RncrCHdJ/nzkh6HPmynA3vKZlKxOFhsuQ=)
                          2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl
                          rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 21 Jun 2025 18:48:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 321 (0x141)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
        Validity
            Not Before: Jun 14 19:08:53 2025 GMT
            Not After : Jun 21 19:08:53 2025 GMT
        Subject: CN=684dc8c5-e3e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:bf:3e:f8:7f:56:66:73:a1:ae:e4:df:06:2a:
                    82:a2:46:5c:e0:80:c2:7a:ad:b6:7a:88:35:0e:f4:
                    6a:47:da:bc:b8:87:79:08:85:fc:5e:49:0b:11:a4:
                    30:c0:1b:b1:dd:b9:0f:06:95:2a:7a:c0:75:66:35:
                    1b:00:90:57:24:07:d8:1e:c3:7b:55:08:fc:be:cc:
                    09:97:9f:4a:ad:37:d8:a8:c0:8a:b5:ec:6b:20:3c:
                    ba:b5:61:e8:24:4a:dd:42:b3:5e:aa:c5:d3:e6:bb:
                    45:d5:4c:2e:95:2b:fa:e2:9a:04:f6:8e:93:7e:16:
                    df:44:d7:c1:c6:a0:dd:9f:dd:cd:a9:f7:08:92:50:
                    f5:eb:3b:9e:81:b2:1d:5a:4b:60:e4:63:c4:9d:46:
                    28:9b:12:7f:b4:33:d0:91:a2:5c:d0:09:f9:a0:93:
                    d6:09:4e:da:8c:03:d8:54:c7:8c:b8:11:bc:07:f8:
                    9f:fa:b6:c0:3a:e7:54:bd:e2:a4:f5:ce:8b:fb:3f:
                    22:97:e1:8a:1c:1d:45:9f:fc:ec:8e:2d:68:f7:cb:
                    fd:9f:cd:6b:d9:3d:fd:7a:b2:c8:28:f3:c4:82:16:
                    ef:84:2c:8f:e6:4c:49:c0:04:10:da:2b:6a:ad:63:
                    56:6c:35:5c:cd:ba:b5:34:b3:2f:37:26:0b:74:28:
                    0d:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:3E:10:F7:DA:F2:7B:04:E4:07:C4:11:10:73:01:2A:C3:20:46:7D
            X509v3 Authority Key Identifier:
                keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:89:35:4f:5a:a4:d0:bc:dd:62:d6:25:97:0b:21:b0:aa:b8:
         07:f0:04:80:81:64:fd:41:89:5b:45:aa:3c:9b:0b:b5:1e:ac:
         16:3d:82:37:79:ae:56:f8:f2:f3:5c:0d:84:52:4f:f7:91:73:
         6f:a2:f2:2f:de:ae:ba:a5:d8:5a:5c:7f:28:b3:a7:ec:8b:94:
         de:a2:0d:95:22:4c:ea:1b:a0:30:f3:64:af:50:f7:11:64:cd:
         e9:9f:37:22:fe:f6:fb:30:4a:53:48:e4:d7:c3:92:59:52:99:
         d6:fa:64:9f:11:3d:e6:a9:bb:2e:50:28:2c:38:a0:1f:31:d8:
         d0:63:92:a4:ec:3a:b4:9f:6a:54:bd:bd:fe:b8:66:a8:ad:4c:
         39:6c:1a:f1:ff:21:bf:f4:8d:f3:e7:37:5c:c0:8e:5e:8a:1c:
         28:b3:88:9e:56:d8:11:78:ad:ed:bc:f4:00:68:86:41:07:07:
         aa:68:d7:22:e5:91:19:de:be:2e:9d:3e:da:49:af:2b:bc:c9:
         28:69:69:37:4b:9d:8b:a2:85:a5:2a:ef:99:dd:72:17:1b:39:
         f3:52:35:ea:e5:65:cb:3c:64:23:d5:2f:7f:89:95:0d:d8:36:
         2e:50:de:b5:79:23:f5:fe:8b:da:fe:48:ce:66:55:9a:b8:82:
         ef:a8:50:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:16:37 2025 by rpki-client