Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
File:                     _dkd0w6bH-o7t-Eq73YhZigSmyM.mft (raw, json)
Hash identifier:          RDk+S72inGExqnL3hBNuqxdvBw7vlxDdrNyxChTrrAs=
Subject key identifier:   26:64:F2:46:A1:05:5B:0E:11:AD:6C:73:08:D6:2D:01:DA:DC:99:F4
Authority key identifier: FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23
Certificate issuer:       /CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23
Certificate serial:       0116
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
Manifest number:          0112
Signing time:             Fri 13 Jun 2025 03:52:14 +0000
Manifest this update:     Fri 13 Jun 2025 03:52:14 +0000
Manifest next update:     Fri 20 Jun 2025 03:52:14 +0000
Files and hashes:         1: _dkd0w6bH-o7t-Eq73YhZigSmyM.crl (hash: Ywxjd5yPTl2is4ZLgpDOWji+kJm0HYI8HQxEVtRUHbw=)
                          2: DECE1662A87D11EE882D7B6EC4F9AE02.roa (hash: C77jJoshdfxzPcbWVGuVdmC/Yt4X5b0+J8bsZe99ndM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl
                          rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 03:52:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 278 (0x116)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9192B86, serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23
        Validity
            Not Before: Jun 13 03:52:14 2025 GMT
            Not After : Jun 20 03:52:14 2025 GMT
        Subject: CN=684ba06e-3230
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:cf:ed:44:d4:b6:ac:64:93:12:19:df:a5:2e:
                    b0:21:24:0e:ba:a7:87:27:ec:ec:d6:f0:5b:35:c1:
                    79:b3:fb:b2:b7:ab:5b:f6:d7:ce:7a:57:16:9a:20:
                    87:05:06:d1:c9:13:28:9f:3f:b7:09:5c:4e:9b:56:
                    72:03:e3:81:99:5a:42:62:3e:85:7a:1d:a2:a1:55:
                    f8:06:be:9d:b8:3f:fa:ba:29:da:6b:8c:8f:fc:f3:
                    39:71:11:54:f4:b9:89:93:e6:f2:b2:a7:75:e2:5b:
                    68:e8:a7:13:51:8c:96:cb:8b:2d:54:92:c7:89:69:
                    2e:3c:bd:29:c3:fb:91:a1:8a:88:2d:52:3a:5d:96:
                    30:3d:bb:0d:24:42:93:39:24:7f:10:f2:55:3a:a9:
                    fe:40:07:a8:6e:2d:d1:20:52:6b:9d:85:3f:a0:ed:
                    a4:b6:d8:c9:57:98:1f:c8:cb:1f:ca:b2:e7:71:da:
                    d4:2f:ea:af:0c:65:c2:b2:39:15:19:6a:d7:ee:ad:
                    e0:be:86:df:b5:b8:79:b0:98:5e:66:06:a8:b1:3a:
                    28:b6:98:3b:25:29:f4:1e:ef:8c:2c:f6:b9:88:62:
                    c3:db:2f:97:fd:38:46:a4:ab:fa:80:fe:c3:c9:0a:
                    20:78:b5:4d:c1:66:09:84:81:c2:8b:39:aa:27:50:
                    9f:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:64:F2:46:A1:05:5B:0E:11:AD:6C:73:08:D6:2D:01:DA:DC:99:F4
            X509v3 Authority Key Identifier:
                keyid:FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:12:d4:e6:e5:88:e4:e2:1a:10:93:c0:b4:aa:69:b9:69:c7:
         53:08:73:a6:16:20:8a:73:f3:4e:d0:07:19:2e:a2:42:e7:ca:
         86:b5:5c:a5:7b:78:db:ef:ee:20:c5:6d:8e:99:84:9a:cb:7b:
         3f:78:58:41:06:81:a9:05:5d:37:41:8b:ca:25:d1:a5:f8:5e:
         f4:e8:5c:c8:3d:72:72:2b:aa:95:fb:d5:67:ca:e4:2d:1c:a1:
         43:4d:aa:58:40:d2:15:10:6a:75:67:50:e9:52:8a:52:4d:61:
         33:ba:c5:eb:76:2a:da:da:9e:ab:bd:79:3d:c0:d0:50:59:a3:
         18:77:19:dd:a1:e3:8f:75:01:c1:d8:60:7a:bf:a0:bc:0e:a2:
         70:b7:ef:a5:67:6b:50:23:6e:d1:89:79:ec:5f:42:61:3e:f4:
         d7:2c:d6:a9:ba:d4:02:cf:ff:dc:39:df:38:5a:14:ff:18:9b:
         0d:ba:c6:f8:6c:c4:ee:45:b9:73:2f:2b:72:f4:cd:20:1e:cb:
         86:a7:2f:3e:66:85:04:8b:28:4d:06:88:5d:26:b4:ba:82:47:
         3d:52:01:43:ae:1b:79:67:a4:4e:c4:d0:cd:f8:21:da:15:32:
         b6:58:30:bd:04:42:31:ee:e3:3a:22:19:4d:aa:bb:ad:3f:ce:
         ab:c6:5b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 13:05:39 2025 by rpki-client