Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft
File:                     9R3GadtZYYTQv5SqHkHl3hWejaU.mft (raw, json)
Hash identifier:          MgzGFnLlxzNAU3ElXK9F10DzYJMM6JaczqA/7YwSb8A=
Subject key identifier:   F6:AE:C3:DC:A1:0A:68:A0:E5:BB:F8:61:55:80:39:8A:FA:9B:A5:25
Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5
Certificate issuer:       /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5
Certificate serial:       0C5B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft
Manifest number:          0C51
Signing time:             Tue 10 Jun 2025 18:19:51 +0000
Manifest this update:     Tue 10 Jun 2025 18:19:51 +0000
Manifest next update:     Tue 17 Jun 2025 18:19:51 +0000
Files and hashes:         1: 9R3GadtZYYTQv5SqHkHl3hWejaU.crl (hash: 2dT6hib86GrP93MV9paryGmzeIIakRQm+btlu244GD8=)
                          2: 2DE1069C050311EA93648E33C4F9AE02.roa (hash: lPRimtAIP991qjg2zYQ9MB+u2MSznOVIg7X2f5y/SnM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl
                          rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 18:19:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3163 (0xc5b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D3D50, serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5
        Validity
            Not Before: Jun 10 18:19:51 2025 GMT
            Not After : Jun 17 18:19:51 2025 GMT
        Subject: CN=68487747-acfa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:35:21:c3:62:e7:57:d7:cb:10:b1:18:06:4c:
                    ff:a2:8d:d6:eb:9e:c2:f6:7a:82:0b:b7:37:1e:b3:
                    5b:6e:c8:4a:b3:ae:c0:4d:70:e4:8a:a7:0c:fe:4e:
                    e7:11:6d:5b:6a:60:ef:61:e8:ea:1b:55:7d:d6:22:
                    b7:62:85:e4:43:8c:5c:87:56:82:67:ab:b2:ec:c4:
                    ed:93:a0:90:3f:bd:b5:df:72:94:8b:52:65:c8:15:
                    f6:20:e0:1f:b2:d6:f7:25:77:5f:46:2c:6f:e5:88:
                    38:50:fa:e1:93:48:f8:ed:e4:45:0f:e3:60:49:5e:
                    4a:d1:8e:1f:f3:70:b7:f7:2f:65:2d:1a:4e:7b:dd:
                    2b:29:c5:e5:ea:4d:4f:db:9e:c9:54:81:d0:a1:29:
                    a1:52:26:1c:c0:79:c3:58:44:2a:28:95:85:db:5e:
                    59:0b:79:3a:f5:eb:cd:47:61:2e:bb:0e:8d:d3:aa:
                    ed:73:0c:88:04:64:17:bf:7b:01:67:24:a6:c8:0e:
                    39:f7:18:bd:4d:b1:28:fd:23:c6:1e:79:0e:9d:1b:
                    1c:77:50:60:94:4e:93:63:e5:41:20:d0:8c:84:db:
                    e2:34:6d:a2:ae:84:8f:58:6a:9e:dd:49:7b:d3:64:
                    a6:b5:11:78:36:34:b0:d5:15:d6:9b:95:17:d1:18:
                    1a:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:AE:C3:DC:A1:0A:68:A0:E5:BB:F8:61:55:80:39:8A:FA:9B:A5:25
            X509v3 Authority Key Identifier:
                keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:c6:ef:34:40:f9:5d:26:23:fc:c1:aa:09:0e:cd:9e:53:9e:
         0e:88:e9:ea:44:e6:b6:2b:39:49:7d:e7:8a:a0:93:48:24:73:
         55:3f:04:8c:b3:de:c3:9d:78:36:86:eb:24:fa:0c:58:af:9f:
         c4:24:fc:aa:40:4c:29:0d:cf:a7:28:d9:e6:ea:cd:25:64:31:
         67:ee:d6:62:17:f4:41:90:ee:80:5e:f3:3c:63:d8:2d:fe:34:
         c6:c4:11:b0:68:78:7f:e1:7d:da:05:c6:1b:70:63:cc:fe:53:
         8b:be:e6:59:ff:f2:d3:3a:87:fa:af:ab:6a:d4:80:55:4f:94:
         48:4f:4b:30:fe:c7:5e:87:a4:3f:c1:a1:40:61:56:9d:07:b9:
         5c:c2:3d:9e:ca:3b:78:04:b6:e5:70:f8:1e:3a:db:4d:07:bc:
         6a:91:ee:09:1e:e4:c0:ba:b9:31:68:5a:26:d6:fc:64:ff:cb:
         40:5d:be:65:54:05:23:60:ab:9e:b4:dd:28:d2:b3:cc:c4:38:
         a0:1c:50:05:1e:00:6b:60:2b:b5:42:cd:ec:98:b7:9b:8e:df:
         dc:fa:b9:04:cf:99:9f:46:b7:e2:52:52:8c:3c:07:6f:8a:31:
         45:95:a4:20:09:a2:d3:53:d9:c7:36:01:fb:3b:cb:29:56:fc:
         87:18:28:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 12:33:34 2025 by rpki-client