Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
File:                     2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json)
Hash identifier:          w822OiPEsAegZMpT02v+W5ezG3kCm3LcyTTRo0V+FhA=
Subject key identifier:   63:66:DF:76:78:5B:BC:58:D4:E6:38:05:AF:F2:B8:70:91:55:A2:FB
Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6
Certificate issuer:       /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6
Certificate serial:       0985
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
Manifest number:          0977
Signing time:             Thu 12 Jun 2025 19:56:33 +0000
Manifest this update:     Thu 12 Jun 2025 19:56:32 +0000
Manifest next update:     Thu 19 Jun 2025 19:56:32 +0000
Files and hashes:         1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: TMELniDiJG5oB1K4YadqkDDH3WsdVLQIeC/O/W4ePcI=)
                          2: 9738F1BAD46611ECA1A27035C4F9AE02.roa (hash: WTrtE83EIPIFAQBP1Rd+6bCGyCXh3/D0h/wvCesMWrU=)
                          3: 6CEF4F06697C11EEBAF2E544C4F9AE02.roa (hash: Zf62lP/wVBucTVDv//7CsthHyoB46FPVyR5yKdn9a8M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl
                          rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 19:56:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2437 (0x985)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6
        Validity
            Not Before: Jun 12 19:56:32 2025 GMT
            Not After : Jun 19 19:56:32 2025 GMT
        Subject: CN=684b30f0-e4f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:54:5b:f1:c2:b8:17:57:b3:55:0a:be:21:67:
                    9c:80:3a:f0:5a:c1:04:68:eb:ad:9b:00:7a:1d:db:
                    d9:77:24:76:c0:88:34:bc:d3:05:88:19:5c:2b:ab:
                    dd:dd:98:76:48:b5:9c:61:a8:1b:d5:bb:d4:70:01:
                    24:08:92:2b:57:78:72:b4:0f:d5:de:6f:bb:0c:61:
                    87:2e:bb:d1:45:c6:de:f3:a6:7d:71:8a:41:3c:13:
                    ea:9b:0f:5c:c4:92:aa:c0:59:75:68:d7:f9:d9:da:
                    8c:70:a3:25:ce:99:07:6c:f5:62:e6:56:82:40:4d:
                    d9:4f:43:bd:32:c4:0e:83:4a:bb:e7:45:7d:37:04:
                    1b:53:8d:a6:0e:9c:4e:88:3e:3a:48:10:6d:0b:42:
                    80:4d:77:ef:04:ab:6c:ae:e5:9d:76:ad:a9:38:20:
                    15:f5:29:fd:5e:4c:81:f8:ed:2e:bc:a4:b9:01:ba:
                    37:73:d5:6f:5a:aa:96:e2:ca:fd:0d:59:e3:32:dd:
                    e2:f9:4f:3d:75:d8:90:9b:1d:8a:f1:8f:42:62:f5:
                    38:2e:58:7b:d5:f7:fe:0d:c3:9f:e3:1b:37:0e:91:
                    e3:98:39:95:cb:ea:d8:bc:cf:b3:e3:01:04:6f:cd:
                    74:95:80:d9:0a:d9:57:18:ad:c0:da:a2:f7:29:10:
                    11:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:66:DF:76:78:5B:BC:58:D4:E6:38:05:AF:F2:B8:70:91:55:A2:FB
            X509v3 Authority Key Identifier:
                keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:39:e0:4c:fa:9b:72:4a:3e:eb:58:ec:b4:67:88:78:b9:0c:
         8e:44:7d:0a:9d:ed:de:fc:91:c6:53:af:08:56:be:5d:6f:26:
         d1:43:eb:6d:a0:ee:ec:3d:18:b3:48:9c:c7:e6:bd:12:63:09:
         b2:00:59:81:db:2e:87:ca:ba:11:71:42:e1:f9:e8:00:11:6b:
         11:40:55:e0:fa:51:f2:9a:be:a6:c7:ab:80:7d:c6:92:1b:40:
         ae:8a:dc:0b:ee:3a:d4:90:ce:5e:1f:ca:49:73:05:dd:b8:c4:
         3d:06:d2:d5:b3:c4:5d:4f:e1:3c:b4:f6:5b:31:e8:20:57:ae:
         4b:ae:90:08:40:8b:51:de:6c:75:fb:de:ea:c7:0e:63:68:1b:
         95:48:02:b0:49:31:d8:65:19:64:ff:b1:29:01:08:a5:f7:91:
         be:95:ef:7f:9a:8a:ec:9c:85:40:3e:bb:ea:2d:38:5d:92:99:
         a9:1f:8c:96:01:ee:e0:95:3d:5d:df:9e:2a:ab:eb:02:81:b0:
         8b:49:21:09:b8:eb:8c:4c:ed:43:02:54:df:e2:4c:bd:82:cb:
         28:91:43:4b:c6:4d:e5:09:c0:77:92:dc:68:f9:3f:c0:3d:d3:
         50:17:a9:67:8a:f6:73:b9:dd:87:17:2c:24:5d:19:1e:22:0b:
         46:07:e4:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 11:57:00 2025 by rpki-client