Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
File:                     2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json)
Hash identifier:          4x7ZYzL0JkBm9zCcu3joqQ9UzIcDv5hA/+OE5mftgkI=
Subject key identifier:   FD:A8:7D:FD:38:44:2C:88:4F:1D:63:97:9D:68:84:7B:31:CD:6C:BA
Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6
Certificate issuer:       /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6
Certificate serial:       0984
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
Manifest number:          0976
Signing time:             Tue 10 Jun 2025 20:04:16 +0000
Manifest this update:     Tue 10 Jun 2025 20:04:15 +0000
Manifest next update:     Tue 17 Jun 2025 20:04:15 +0000
Files and hashes:         1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: jtRxcz3gxELaWM2DQRiDJCF7ROgRRG0eY3hj5xJUqMk=)
                          2: 9738F1BAD46611ECA1A27035C4F9AE02.roa (hash: WTrtE83EIPIFAQBP1Rd+6bCGyCXh3/D0h/wvCesMWrU=)
                          3: 6CEF4F06697C11EEBAF2E544C4F9AE02.roa (hash: Zf62lP/wVBucTVDv//7CsthHyoB46FPVyR5yKdn9a8M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl
                          rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 20:04:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2436 (0x984)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6
        Validity
            Not Before: Jun 10 20:04:15 2025 GMT
            Not After : Jun 17 20:04:15 2025 GMT
        Subject: CN=68488fbf-a8a6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:84:f2:2e:9e:91:3b:b4:5c:07:c3:36:42:b9:
                    8f:2d:ee:89:e6:b3:6a:f8:e5:13:e4:10:0a:53:6d:
                    4d:b4:7a:ae:0c:4f:b9:da:2e:16:b7:5c:46:45:89:
                    08:13:b5:25:64:f2:af:78:cd:de:75:96:8d:d6:f8:
                    56:4a:b7:47:97:1d:fd:65:16:44:40:4a:75:62:0e:
                    47:b3:c3:9b:da:7d:09:73:ba:ba:da:94:27:b0:76:
                    1f:e5:59:6f:0e:04:f7:b0:b1:8f:9b:9f:eb:ce:72:
                    df:92:84:44:dd:07:cc:af:4d:4a:10:c9:9d:f0:2e:
                    f3:3b:f3:f7:4b:22:5f:0b:c5:8e:bc:f9:a4:9e:29:
                    8b:cc:bb:15:33:27:b2:59:d8:0c:fc:60:3f:3b:a2:
                    a8:87:98:7f:26:95:28:80:bc:06:a0:89:81:88:ff:
                    91:4c:05:4b:ae:7f:7a:7f:54:a7:91:60:0a:ea:14:
                    74:b2:c0:a6:40:ac:3e:8f:84:d1:ed:07:11:14:5e:
                    ae:ff:4f:3d:90:f2:83:47:c6:e8:25:5b:95:d9:ad:
                    44:f8:6b:31:3d:8c:dc:a7:e7:e3:58:57:82:b3:5a:
                    ab:68:43:6d:c5:ae:23:c5:ec:30:d7:8d:88:7c:3e:
                    2a:0c:b8:4f:39:3c:04:d9:34:9b:0c:8b:4f:0d:f8:
                    35:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:A8:7D:FD:38:44:2C:88:4F:1D:63:97:9D:68:84:7B:31:CD:6C:BA
            X509v3 Authority Key Identifier:
                keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:a7:5c:b6:67:55:ac:69:91:3b:16:53:3c:4f:d3:ee:b4:87:
         d1:97:99:d5:09:73:1a:60:15:b8:cf:c2:b3:cf:d0:75:25:04:
         cd:d4:7c:ff:3c:f5:7c:80:be:5e:3f:f5:28:18:5e:d3:a0:0e:
         34:cc:da:41:2f:05:96:5b:e2:3c:fe:5b:e4:76:1e:7c:e3:01:
         f5:71:80:52:34:f1:c0:fc:9a:95:08:f5:9d:1a:c6:c1:58:8c:
         43:f9:d3:fa:fc:7d:48:68:1b:49:cc:41:09:6e:3a:5b:65:7f:
         9b:7a:78:e8:0f:ee:a7:a8:a9:df:2f:39:7e:8b:d4:e6:ae:f6:
         98:31:cf:08:ae:ae:57:e7:eb:3c:9b:7e:4c:aa:bc:bb:e5:ee:
         30:68:94:28:1e:5e:f9:65:14:d1:a6:14:f2:b7:57:dd:05:68:
         14:ee:0c:da:60:d5:82:1b:1e:d7:b5:92:fd:4c:b8:69:4f:01:
         10:61:3b:a5:60:ac:16:f2:80:30:de:a9:bd:05:ff:54:7c:e0:
         b5:4a:c8:93:84:d9:a3:2f:ff:59:69:f9:03:18:52:88:83:c6:
         a9:22:d2:8c:1d:7e:18:62:a1:1b:4b:46:43:e0:90:c8:06:7e:
         00:39:ec:2b:fa:3a:00:d4:e0:32:57:dc:0f:2d:f8:2f:50:4b:
         52:c4:eb:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 09:00:10 2025 by rpki-client