Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft
File:                     W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft (raw, json)
Hash identifier:          gkZvXgU97quabKksdkzVl4fdYfww9C9GB0RLso3L7Nk=
Subject key identifier:   92:92:C1:93:FE:C1:98:54:9E:CD:01:13:FE:40:0C:1B:C3:8B:16:DA
Authority key identifier: 5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C
Certificate issuer:       /CN=A91D1E29/serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C
Certificate serial:       08D4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft
Manifest number:          08CE
Signing time:             Thu 12 Jun 2025 20:12:41 +0000
Manifest this update:     Thu 12 Jun 2025 20:12:40 +0000
Manifest next update:     Thu 19 Jun 2025 20:12:40 +0000
Files and hashes:         1: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl (hash: XSp67tGJ8SQLzJrZq6C2oo+hEPjsDpj1DsUXXp5uzSM=)
                          2: 108B7DAAB2A711EAABBE8663C4F9AE02.roa (hash: qTuGE1JcRtd/cW9n5J8BXF2j1PTZne38og2GGYl8DqM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl
                          rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 20:12:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2260 (0x8d4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D1E29, serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C
        Validity
            Not Before: Jun 12 20:12:40 2025 GMT
            Not After : Jun 19 20:12:40 2025 GMT
        Subject: CN=684b34b9-2eca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:85:2d:40:07:39:82:f5:f2:f0:17:71:06:9a:
                    44:66:15:b6:74:80:25:d2:b2:f3:db:30:5c:6c:a1:
                    30:a4:2e:b1:e6:59:37:dd:da:be:15:8a:22:34:8e:
                    f7:77:29:c0:ff:fd:ea:22:09:ab:fa:48:65:cc:e6:
                    ca:88:be:5d:fc:82:eb:bb:b5:87:7f:41:e8:ce:00:
                    5c:b6:a9:f7:76:c4:fa:0e:6c:0e:5e:9b:00:63:58:
                    cd:50:f1:3a:83:2d:0e:c1:50:d6:7a:f7:b1:36:b6:
                    9c:2b:a6:29:a4:78:34:54:d5:f9:78:70:be:d4:d3:
                    2d:d4:88:cd:96:b0:8c:1b:cf:d4:f2:69:53:5b:79:
                    77:39:3b:35:a1:a6:de:35:08:2c:6c:1e:a2:97:9b:
                    dd:94:38:46:9b:f8:32:6b:64:d0:fe:20:10:fe:18:
                    54:81:b0:a4:c9:e6:a6:a6:35:26:ed:53:92:99:3e:
                    62:3c:3c:80:04:31:79:76:f5:56:59:14:af:96:fc:
                    ce:88:22:65:3a:2b:16:f3:dc:d5:b2:32:9f:56:b0:
                    84:32:bb:fd:ea:0f:9e:7a:9d:b0:93:02:2f:30:6a:
                    98:69:98:c7:ef:7b:0a:74:34:c8:3e:58:d1:33:80:
                    3b:31:66:b2:f4:f1:bf:59:7e:d8:10:f6:5e:8f:92:
                    fe:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:92:C1:93:FE:C1:98:54:9E:CD:01:13:FE:40:0C:1B:C3:8B:16:DA
            X509v3 Authority Key Identifier:
                keyid:5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:1f:fa:13:19:bb:2c:3d:4a:20:4b:32:8f:09:9f:92:a9:08:
         35:66:24:dd:4a:71:48:ee:d4:d3:16:5b:e3:9e:9b:3b:c1:42:
         a4:d9:40:b8:72:25:14:0b:c9:25:ae:39:ab:8e:5b:7d:ef:b7:
         61:32:47:30:8e:14:7a:71:2e:84:3c:f1:fc:c5:8a:69:20:18:
         68:e2:5c:63:b6:65:0f:22:3f:19:74:c8:40:7b:38:3d:d4:1c:
         35:73:7d:db:d8:05:01:27:6a:c0:b4:50:31:07:5d:4d:12:8b:
         4a:58:6f:09:12:30:16:01:f6:0f:84:1b:83:df:9f:6f:c1:2b:
         71:e0:ba:44:96:c2:ba:ea:a5:61:1d:88:46:1e:23:6f:c2:e3:
         91:b2:c4:7a:95:97:69:1c:27:c4:25:fd:fb:33:26:ad:d5:12:
         0c:c6:56:a7:a7:16:b3:7d:2a:4f:64:28:e4:c2:f6:5b:40:2f:
         7b:20:48:84:2b:8f:b3:d1:da:c0:e5:f2:e0:4e:1d:09:5f:77:
         10:71:c6:44:7f:a1:6d:db:89:ec:65:da:75:27:a0:86:58:1c:
         8f:85:f1:63:20:9c:a0:a4:ae:a8:b3:8c:db:b7:b2:5a:ae:e4:
         c1:ae:57:cb:66:35:c4:dc:a6:67:1f:bc:80:9b:47:fa:ef:c8:
         bd:68:87:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 00:32:47 2025 by rpki-client