Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
File:                     _dkd0w6bH-o7t-Eq73YhZigSmyM.mft (raw, json)
Hash identifier:          PyDbqJOddfVxQTFyAYy0tivwW4DCv+ioss3je4veDFY=
Subject key identifier:   04:2D:D5:D6:2D:81:01:60:CD:19:04:2D:CF:5B:7B:4E:28:FC:2B:6E
Authority key identifier: FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23
Certificate issuer:       /CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23
Certificate serial:       0114
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
Manifest number:          0110
Signing time:             Mon 09 Jun 2025 03:57:40 +0000
Manifest this update:     Mon 09 Jun 2025 03:57:40 +0000
Manifest next update:     Mon 16 Jun 2025 03:57:40 +0000
Files and hashes:         1: _dkd0w6bH-o7t-Eq73YhZigSmyM.crl (hash: U9qMaU6cSoy3JSD0djcC3d91Lg7NTs7XwMoXQsD5bkc=)
                          2: DECE1662A87D11EE882D7B6EC4F9AE02.roa (hash: C77jJoshdfxzPcbWVGuVdmC/Yt4X5b0+J8bsZe99ndM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl
                          rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 03:57:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 276 (0x114)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9192B86, serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23
        Validity
            Not Before: Jun  9 03:57:40 2025 GMT
            Not After : Jun 16 03:57:40 2025 GMT
        Subject: CN=68465bb4-61f8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:0b:5d:c4:b3:3b:7b:fe:72:74:f2:e9:f6:43:
                    6a:f7:d0:e1:e9:71:74:5a:ea:d7:28:19:16:09:b5:
                    18:22:98:a5:2a:a4:38:18:cb:9c:76:b0:dd:54:c8:
                    66:97:e0:71:3d:fe:42:3b:eb:8d:0d:a6:a7:f9:0d:
                    b2:84:38:e1:bf:f5:3e:3d:18:fb:30:26:1c:31:94:
                    c8:2a:50:ef:be:a9:04:21:ab:20:09:cb:be:e7:47:
                    ce:40:0b:c7:60:a3:cf:01:49:09:67:06:b5:03:7b:
                    53:4b:5a:b6:71:27:db:70:67:14:b3:1b:51:9e:ec:
                    68:a2:76:0f:70:79:74:84:b0:75:f8:d2:af:67:cb:
                    75:1e:04:e9:a5:e4:5a:ba:7e:11:d5:29:a5:bd:8c:
                    ab:27:34:8d:0a:05:d8:27:97:e3:61:ba:b4:b9:da:
                    b4:31:e6:56:f6:1f:92:bc:13:ab:c2:75:71:9e:58:
                    2a:9a:f4:40:19:e6:3d:6b:70:cb:26:58:87:d5:53:
                    7f:4f:51:15:e2:a2:75:eb:00:26:60:90:58:03:d7:
                    44:aa:c5:19:ae:ed:6d:51:85:aa:78:f6:32:09:a7:
                    18:60:55:5c:2d:54:da:2d:6e:23:8a:52:60:ea:0c:
                    93:9f:40:e9:25:94:ca:df:d0:74:78:c3:b9:e3:3f:
                    7f:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:2D:D5:D6:2D:81:01:60:CD:19:04:2D:CF:5B:7B:4E:28:FC:2B:6E
            X509v3 Authority Key Identifier:
                keyid:FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:48:db:b0:eb:20:80:98:d4:15:e4:08:25:a2:5d:aa:1a:63:
         c3:eb:48:c4:11:5b:f5:8a:7f:89:98:ab:bf:66:00:bc:a5:aa:
         eb:d8:e5:e0:dd:d9:2c:f0:83:69:b2:08:ec:28:f7:06:57:cc:
         21:1e:d5:75:eb:ac:88:2f:bf:81:f8:ae:b9:23:b8:4a:f4:8d:
         56:2f:b7:d6:2c:58:1e:95:42:7e:a7:04:7f:71:5e:cb:20:45:
         97:2e:e2:59:64:b6:3e:0c:cc:bd:10:d2:2f:8b:b9:93:61:03:
         4f:3b:1b:32:63:da:75:75:a2:6d:8f:29:a8:fc:92:5a:de:6f:
         71:a1:ce:e4:1f:b8:41:73:d5:36:37:1e:4e:ea:4a:60:d7:32:
         5a:a8:6c:80:14:68:cf:b0:86:33:02:63:80:9f:1e:ca:e5:fe:
         9d:e0:ef:38:bd:bd:b6:17:37:dc:ce:f6:e2:3b:5d:29:7d:10:
         92:8b:24:d0:7f:b8:52:62:8c:10:07:23:5a:c1:da:e8:71:24:
         5b:3e:8a:eb:10:23:b7:6c:4b:cb:c2:da:df:b1:bf:71:bf:8f:
         49:d8:d8:5f:c4:8f:43:32:57:49:f8:04:34:fb:be:84:2e:e3:
         65:56:11:f1:31:04:4c:6b:6c:5e:ad:de:bf:e2:a7:7a:41:d7:
         78:5e:6a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 07:33:55 2025 by rpki-client