Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft
File:                     tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json)
Hash identifier:          //vdJLJfRCkpRyOFSKdT33BMJ3BNBcMFKhDPrdugPEM=
Subject key identifier:   2B:FB:D4:8E:5C:7C:F5:25:EB:61:DA:0B:33:FA:F4:07:80:9A:D1:16
Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D
Certificate issuer:       /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D
Certificate serial:       03B5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft
Manifest number:          03AD
Signing time:             Mon 09 Jun 2025 00:18:55 +0000
Manifest this update:     Mon 09 Jun 2025 00:18:54 +0000
Manifest next update:     Mon 16 Jun 2025 00:18:54 +0000
Files and hashes:         1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: YDzpyNqsapnjqgmqe8t9gp1jKyq+aTF2ovbNizyCNbE=)
                          2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: eviaeNHpTyeX/nwMhD0qRHeqmHQSy0IY0Lvxy4hMeV0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl
                          rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 00:18:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 949 (0x3b5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D
        Validity
            Not Before: Jun  9 00:18:54 2025 GMT
            Not After : Jun 16 00:18:54 2025 GMT
        Subject: CN=6846286f-56ef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:ad:28:00:f3:37:02:a4:a7:cb:9e:de:1e:93:
                    d3:0b:58:c6:5f:a9:e6:39:3e:3b:e7:11:89:dd:0d:
                    f0:97:29:a0:69:3d:15:c4:5a:54:e8:52:a9:30:4b:
                    9e:92:90:30:7b:8a:d5:98:d7:fb:bf:22:78:8a:45:
                    48:ac:f0:33:51:de:f5:c6:b3:7e:e2:d2:b6:ea:25:
                    39:72:f2:52:01:40:03:6c:e8:93:c8:b0:08:03:a5:
                    e6:0d:9e:fe:05:08:ed:c2:e7:d5:3e:10:76:2f:ac:
                    ae:f2:d2:2a:72:0e:5f:7f:60:0f:08:72:81:97:b0:
                    b8:84:5d:5d:f1:5e:3c:c8:c2:60:50:29:90:49:f4:
                    db:76:da:8e:4c:08:f9:59:d5:76:6a:00:5e:b5:a2:
                    60:c5:c3:33:ac:c5:f3:25:2f:3b:cc:b9:b3:51:dc:
                    5d:ee:07:7b:5c:38:29:f4:a1:30:6f:38:ad:7d:16:
                    dc:9a:a2:b2:b7:bc:49:10:33:da:dc:ae:8b:87:7d:
                    51:c7:a0:c1:76:95:e7:98:b6:ec:06:4e:94:9f:8f:
                    2e:65:bd:6b:1a:d3:64:b5:70:1c:2b:23:31:8c:e0:
                    49:e8:48:87:69:74:ce:60:d3:9c:ad:d4:f8:ec:f8:
                    a2:90:95:f4:e3:3c:b3:02:75:7e:62:f2:c1:a8:8b:
                    07:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:FB:D4:8E:5C:7C:F5:25:EB:61:DA:0B:33:FA:F4:07:80:9A:D1:16
            X509v3 Authority Key Identifier:
                keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:5f:f1:0e:f5:5b:26:1f:81:8a:f1:0e:86:98:fa:cf:c4:97:
         66:f7:43:9f:19:48:11:9b:94:c0:f9:e3:db:1a:87:d0:fd:af:
         38:8c:2c:3a:13:4e:3d:f8:ab:5f:1b:47:5f:b8:05:09:07:b7:
         79:da:a4:2e:db:ac:c4:0b:39:17:a3:fa:8b:32:45:1e:78:c8:
         af:75:eb:8e:04:b1:3e:38:82:82:8a:15:90:fe:b0:d2:52:b0:
         0e:5e:71:4a:9b:b0:9b:1a:30:b0:b3:08:05:df:37:18:10:e5:
         2f:b4:6b:99:a0:17:c7:c4:c9:cf:83:33:b5:c0:5b:a6:0b:75:
         88:ec:82:34:f7:1d:56:c6:e8:a4:f9:09:3d:b9:c4:9d:cc:4d:
         c5:1b:c1:f9:2b:e7:24:ac:f1:e5:ba:6b:8f:e8:da:1d:2c:02:
         a5:17:cf:72:bd:03:2f:17:6f:9e:fa:a0:b3:55:e1:a6:f9:eb:
         00:63:c5:cb:32:59:10:6c:ba:3f:eb:5a:19:6b:12:97:e9:b1:
         42:6f:b0:cf:6e:51:bf:41:2a:e0:96:3d:b5:3f:b3:43:f3:43:
         f4:c8:97:c4:6e:82:22:70:76:81:b8:95:e5:b6:0a:31:8f:0c:
         a8:72:f1:83:66:48:6d:9c:c2:64:d8:f1:e2:0e:13:93:6f:bb:
         10:7a:d1:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 17:47:42 2025 by rpki-client