Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft
File:                     9R3GadtZYYTQv5SqHkHl3hWejaU.mft (raw, json)
Hash identifier:          E2IzbeedZJGkhShP4Ifv9b1NUBR585/4l5AC9LyIJCs=
Subject key identifier:   3D:22:D6:D2:CB:B2:90:39:DC:98:5A:7E:43:CF:FB:A3:24:B7:61:99
Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5
Certificate issuer:       /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5
Certificate serial:       0C5A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft
Manifest number:          0C50
Signing time:             Sun 08 Jun 2025 18:14:09 +0000
Manifest this update:     Sun 08 Jun 2025 18:14:08 +0000
Manifest next update:     Sun 15 Jun 2025 18:14:08 +0000
Files and hashes:         1: 9R3GadtZYYTQv5SqHkHl3hWejaU.crl (hash: Bq+U/e0SsvG1CBImkiuzznEtmV5gsBMvbgWSAh6P62k=)
                          2: 2DE1069C050311EA93648E33C4F9AE02.roa (hash: lPRimtAIP991qjg2zYQ9MB+u2MSznOVIg7X2f5y/SnM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl
                          rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 18:14:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3162 (0xc5a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D3D50, serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5
        Validity
            Not Before: Jun  8 18:14:08 2025 GMT
            Not After : Jun 15 18:14:08 2025 GMT
        Subject: CN=6845d2f0-6596
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:9b:d0:b1:88:83:93:c2:0a:6c:c4:72:73:cd:
                    37:44:4d:6b:2c:b6:bf:90:cd:9b:dd:70:1c:48:93:
                    99:18:62:a6:9d:7e:55:2e:69:17:2f:9d:7b:f4:e5:
                    02:31:8d:7e:9e:3b:77:ab:de:13:7b:13:b4:f7:7f:
                    35:a8:69:02:c7:01:e7:2e:72:c4:04:96:0c:df:0e:
                    73:fc:21:f4:8a:dc:f8:fb:8a:cc:ac:09:c5:48:5d:
                    fd:e7:9e:59:35:61:d4:08:7a:bd:b1:8b:94:67:9c:
                    f4:b4:3d:28:25:f9:2e:05:f4:9a:c9:01:8e:63:7d:
                    c2:1c:ff:ec:74:79:1d:99:a5:b1:3f:4a:57:f6:a8:
                    0e:9e:4a:4b:eb:d1:ff:f3:c5:15:bd:88:05:40:f4:
                    3a:55:da:a9:25:47:55:fb:34:b7:54:bc:cc:87:be:
                    1b:03:f6:90:22:9c:73:68:4c:9f:6e:94:3d:15:d3:
                    8e:3b:8c:c2:63:24:67:48:f9:02:f3:e0:cf:21:b6:
                    90:22:7b:91:7c:f8:f2:b4:c7:fd:ac:1d:dd:d8:6d:
                    96:39:8a:50:98:6c:bb:a5:c0:36:e0:df:8c:b0:34:
                    df:30:31:43:ea:91:27:7d:b0:77:ea:6c:51:e1:53:
                    d7:a4:6b:45:5b:2c:bc:2d:c1:e3:67:0c:b9:35:f4:
                    c8:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:22:D6:D2:CB:B2:90:39:DC:98:5A:7E:43:CF:FB:A3:24:B7:61:99
            X509v3 Authority Key Identifier:
                keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:ba:17:f7:56:3f:05:23:89:99:0c:70:c9:29:d9:69:28:80:
         29:53:a1:0f:8c:fd:a7:dd:0c:0b:39:c7:49:59:46:81:56:76:
         31:f5:41:61:9e:37:88:ef:b8:fb:e9:e1:9d:e3:cb:52:43:5a:
         97:cb:a8:4b:d6:16:8c:c0:30:50:f5:be:4b:01:0b:cb:84:c3:
         a9:64:c3:1a:10:00:0f:eb:f0:c1:76:dc:36:57:70:79:17:98:
         15:be:7c:27:ca:7a:cf:6e:aa:6e:81:3b:69:e8:38:a0:0b:fd:
         54:8b:11:78:3e:8b:21:1a:e7:b1:76:18:4c:30:2a:ce:c8:93:
         02:0b:11:cd:89:28:0a:b0:35:02:1d:95:fe:62:fd:d6:49:54:
         b8:2a:73:d6:66:10:9b:06:e9:c7:f1:9d:c2:19:fa:b5:d5:1a:
         96:97:80:35:73:b6:c7:cc:e0:6c:6f:52:93:b3:c7:6b:ad:4d:
         fd:76:5c:9b:7b:10:76:61:ae:fb:91:e9:f0:ec:46:14:19:67:
         d6:2d:8f:81:66:1c:ca:98:3f:be:79:9b:e1:a5:0f:e9:f8:c1:
         6a:9d:28:2f:d5:18:cc:f8:94:2a:b9:c8:06:94:b8:48:a6:e3:
         f1:bc:11:df:08:a3:27:cc:ef:96:aa:31:2f:a9:45:50:eb:b5:
         8c:91:1e:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 19:05:17 2025 by rpki-client