Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft
File:                     b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json)
Hash identifier:          JPZagBLoJOC3E0/F6NFI4T34ZHQsC8AgHZmYn8Ruxd8=
Subject key identifier:   3D:DB:BD:AF:9F:11:72:00:33:50:5C:8D:AC:D4:52:6D:47:D6:EE:C3
Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87
Certificate issuer:       /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587
Certificate serial:       0661
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft
Manifest number:          065C
Signing time:             Thu 12 Jun 2025 22:08:38 +0000
Manifest this update:     Thu 12 Jun 2025 22:08:38 +0000
Manifest next update:     Thu 19 Jun 2025 22:08:38 +0000
Files and hashes:         1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: 2odkgOiNZjZA7xphZgloTsIYY6fl39j278PT0wiwWxE=)
                          2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl
                          rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 22:08:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1633 (0x661)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587
        Validity
            Not Before: Jun 12 22:08:38 2025 GMT
            Not After : Jun 19 22:08:38 2025 GMT
        Subject: CN=684b4fe6-d71a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:13:31:7a:72:41:3f:93:55:23:8e:a2:02:14:
                    55:69:e7:d2:fc:85:2b:3e:45:fa:a1:8a:b6:35:09:
                    08:70:a6:62:f8:1f:32:08:c0:82:b8:19:17:8c:c4:
                    6f:47:2f:81:48:6e:ed:26:90:5c:72:f7:28:aa:6f:
                    78:14:54:1d:ca:df:d4:70:32:9f:2d:95:bd:1b:6f:
                    64:44:cf:4c:51:cf:5b:62:66:bc:59:77:8d:54:e3:
                    08:66:44:0a:44:43:58:4d:61:bc:e0:d7:1e:38:83:
                    24:e8:f4:1a:85:68:7c:b6:67:7f:ff:13:38:50:43:
                    d8:e3:fd:b2:52:b6:7f:99:9c:fa:d8:6c:e8:c0:89:
                    5a:ac:81:8c:ac:d0:94:4c:38:e7:fc:c3:a1:af:a0:
                    4e:c9:31:ca:ff:91:69:f0:5e:31:ff:07:8e:86:f8:
                    2a:41:40:b8:49:40:7d:4c:c2:94:72:cc:48:36:4a:
                    51:2b:6b:67:6a:80:85:3c:55:0d:7c:ff:c3:71:34:
                    d4:e0:49:16:60:2b:ae:ca:95:6c:d9:e5:88:27:ae:
                    4b:b9:cb:aa:77:60:c5:2f:21:3c:d4:27:d3:c6:46:
                    34:0c:e0:51:af:23:a8:8a:cb:cd:77:57:ad:ee:c3:
                    cb:7e:33:69:19:f3:81:d5:70:b9:4c:8f:7a:63:60:
                    2e:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:DB:BD:AF:9F:11:72:00:33:50:5C:8D:AC:D4:52:6D:47:D6:EE:C3
            X509v3 Authority Key Identifier:
                keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:33:6c:51:84:d2:bc:55:39:c1:16:b7:87:81:a8:11:98:36:
         2e:e0:54:f0:db:91:c8:c2:0f:2c:5e:ab:eb:0c:b8:f1:30:70:
         1a:94:19:1c:bc:96:eb:e2:eb:c7:16:18:02:cc:ab:2d:39:71:
         6e:87:dc:f8:05:c5:72:af:e3:81:c8:f3:ba:24:50:3d:a8:42:
         e5:3c:43:75:15:06:94:51:cd:11:73:6e:d3:95:c7:59:0b:15:
         51:bb:38:c1:55:8c:9f:3d:35:8e:bb:d5:a8:4e:c0:75:71:9f:
         20:2c:07:97:b7:77:dd:93:49:fa:2d:13:0e:d6:e4:ae:13:db:
         aa:f6:f3:5d:f1:f7:24:98:02:ce:bc:df:30:24:ad:8e:3f:f4:
         61:b8:9e:3b:f3:76:7c:a8:2d:e4:83:57:7f:1e:d0:5e:69:b8:
         30:34:fc:73:84:85:ff:8c:61:de:fe:2f:ab:8b:91:35:2a:73:
         20:49:6c:64:46:bb:29:c5:62:73:f1:2c:6a:bc:a1:53:52:ae:
         3b:dd:ac:14:37:1e:80:9e:6a:3c:1e:71:e5:9f:56:d6:b2:ec:
         52:fe:28:c4:f2:b5:a1:8b:06:f9:13:03:d7:91:0a:6e:e8:31:
         fc:d3:7f:f3:fe:2a:2f:cd:28:19:8a:34:d8:1e:58:d8:32:71:
         f5:29:64:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 12:39:27 2025 by rpki-client