Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
File:                     1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json)
Hash identifier:          vJ1R3a28mPZZ6A6/lv78wkIH8BVtaELx+GUYW9qN/9k=
Subject key identifier:   A0:6F:14:95:93:F8:BB:57:3B:17:42:17:31:AC:BA:ED:8C:00:00:72
Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89
Certificate issuer:       /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189
Certificate serial:       69
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
Manifest number:          60
Signing time:             Mon 09 Jun 2025 06:09:20 +0000
Manifest this update:     Mon 09 Jun 2025 06:09:19 +0000
Manifest next update:     Mon 16 Jun 2025 06:09:19 +0000
Files and hashes:         1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: ZhTwnqJslNtS8CtrVBF88WUmY4BPUZWoSuE42lhdSxw=)
                          2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=)
                          3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl
                          rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 06:09:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 105 (0x69)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189
        Validity
            Not Before: Jun  9 06:09:19 2025 GMT
            Not After : Jun 16 06:09:19 2025 GMT
        Subject: CN=68467a90-6938
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:c5:48:ed:5c:5d:86:e7:b6:3d:95:36:27:30:
                    d1:04:04:47:66:77:7e:c2:e1:09:f6:ca:5a:2c:b4:
                    33:17:32:2a:c2:05:c9:6d:1c:a9:9a:45:bb:e5:03:
                    cc:29:a6:3d:51:9e:6c:47:d7:96:31:dd:0d:1a:26:
                    23:69:95:a8:f0:f0:a4:1c:e7:14:ba:13:5b:f8:54:
                    b5:13:28:42:5d:86:a4:a3:1d:28:f6:6b:fd:f8:d4:
                    11:ca:f7:24:ca:aa:57:0b:76:03:fd:c3:d3:6c:7b:
                    01:52:65:2c:b6:6a:cf:a7:21:13:c9:08:31:1c:2c:
                    22:c2:b8:70:96:d8:0c:84:d5:76:e2:b5:47:c3:91:
                    14:0f:f2:45:e3:24:ef:2b:c0:52:2f:12:b0:14:95:
                    63:b2:27:c5:ad:92:40:c7:8f:2b:6c:73:12:48:ef:
                    01:f7:32:ae:88:d9:63:9f:2e:7b:3d:e8:2f:1c:c1:
                    fa:63:ac:5b:04:df:5d:2f:52:e3:32:93:9f:17:35:
                    02:98:da:25:59:8b:82:65:e0:71:c6:42:74:00:d7:
                    59:3b:17:fa:33:65:cb:79:b8:5e:56:69:30:66:bb:
                    25:70:e1:91:a7:13:af:f3:c2:63:1e:65:4c:c6:c3:
                    2f:74:98:7a:13:06:b1:0e:5d:01:c0:18:3d:f5:36:
                    e3:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:6F:14:95:93:F8:BB:57:3B:17:42:17:31:AC:BA:ED:8C:00:00:72
            X509v3 Authority Key Identifier:
                keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:5e:4f:4b:78:b0:a6:ea:8c:aa:de:7d:ce:ba:d8:82:7e:27:
         1a:65:6d:ba:93:9e:da:fd:3f:09:08:ad:30:38:7b:5f:99:56:
         20:3d:b0:92:6b:81:47:3c:a5:6e:6d:0d:bb:6a:14:94:2b:8a:
         bd:6f:12:9d:4c:49:f9:3c:6d:b4:e3:89:66:1a:f5:fa:bd:9f:
         d0:1a:90:64:b6:ef:40:33:e6:52:38:57:f8:bc:60:65:8a:87:
         43:00:b2:4c:a7:85:4a:7d:2b:c2:c0:a3:6b:05:50:55:8c:95:
         39:c0:8a:b8:e9:b5:43:84:d6:ad:9e:f6:50:6b:f8:24:1f:1c:
         74:29:ed:07:8b:69:bf:76:84:17:2e:af:67:60:ab:dc:42:53:
         da:14:c7:03:60:88:0b:8d:ad:30:96:b0:16:42:d2:f6:4a:c3:
         fd:de:8b:56:de:dd:c1:60:6f:d7:e5:d6:30:db:5d:23:72:25:
         e3:c1:73:e4:cb:32:5b:51:8a:91:a5:2e:cc:a5:b9:7b:fc:fa:
         a1:f4:d1:73:37:ac:ec:3d:c6:87:b4:5a:70:68:7e:7a:f8:ac:
         c5:0f:ff:a7:c9:10:3d:01:2b:4c:97:b5:83:8e:ce:6a:2d:f4:
         65:47:22:28:75:4f:d8:15:d8:3d:40:3b:51:ea:d4:c2:78:b0:
         3a:fa:ba:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:57:16 2025 by rpki-client