Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft
File:                     MxG_l-IbcmqcAFa75KhbH38pXzU.mft (raw, json)
Hash identifier:          9l40wvMffAvVogqevw9tfg2YSDs7sjyzRGquUOsJjDc=
Subject key identifier:   17:4C:E3:98:AF:FD:E3:53:F0:C5:30:27:34:EA:1D:8E:18:09:B2:F8
Authority key identifier: 33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35
Certificate issuer:       /CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35
Certificate serial:       115B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft
Manifest number:          114F
Signing time:             Tue 10 Jun 2025 17:13:58 +0000
Manifest this update:     Tue 10 Jun 2025 17:13:57 +0000
Manifest next update:     Tue 17 Jun 2025 17:13:57 +0000
Files and hashes:         1: MxG_l-IbcmqcAFa75KhbH38pXzU.crl (hash: oZMxkcpwRocIw54tju5RkpDtrwAeIqCLYGifqT7aCTQ=)
                          2: 51273D9A08EE11E99E30172AC4F9AE02.roa (hash: w5Wibqq/9uZKFdplDNzWfbo2U0mV8bZOoGj0UNzkyfo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl
                          rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 17:13:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4443 (0x115b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D7454, serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35
        Validity
            Not Before: Jun 10 17:13:57 2025 GMT
            Not After : Jun 17 17:13:57 2025 GMT
        Subject: CN=684867d5-f70f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:14:af:f6:11:1a:ad:5b:ef:fe:4f:aa:2f:8b:
                    05:1c:d7:28:60:b5:e4:1b:f1:ee:e3:8e:2a:3e:21:
                    f2:24:10:1c:de:30:ee:83:ce:af:21:51:89:0f:8e:
                    65:e7:64:80:c4:d1:37:a5:73:b4:e9:a1:f1:4b:32:
                    e4:e1:23:f2:f4:1b:2b:5c:ec:f3:50:4b:c7:41:e3:
                    ee:7b:72:dc:0b:53:84:0c:75:cd:a6:c6:1f:40:41:
                    86:19:2d:da:e6:1b:2e:d4:50:0b:38:34:b9:1a:29:
                    b5:9e:58:20:e8:1e:55:c0:d1:08:4e:05:be:6a:bf:
                    28:e1:b3:2a:2c:f8:94:c8:b4:07:0f:fc:37:c4:67:
                    43:ba:36:38:f2:c8:07:eb:74:40:63:ee:7c:9d:07:
                    df:d2:3e:ab:fb:77:0f:37:78:04:53:b7:9b:35:b6:
                    ac:19:d3:8d:a2:07:f1:e9:ca:55:dc:71:84:69:2e:
                    a5:99:07:c7:eb:89:d5:c5:da:b0:ea:49:8f:87:90:
                    30:50:c8:5d:9b:54:fb:99:2c:5e:8b:6b:d0:63:ec:
                    d6:16:9b:e0:03:0b:8c:01:76:d2:19:79:42:76:21:
                    e7:e5:1d:5d:f5:64:09:44:38:bc:5f:be:1d:4a:c4:
                    c0:ab:1a:0a:6e:69:07:49:95:6f:67:b7:dd:a4:56:
                    29:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:4C:E3:98:AF:FD:E3:53:F0:C5:30:27:34:EA:1D:8E:18:09:B2:F8
            X509v3 Authority Key Identifier:
                keyid:33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:9d:67:2a:e2:16:a6:c0:8c:ec:f7:bf:04:8e:64:30:d4:15:
         de:0e:12:60:5e:e2:0d:73:b0:af:57:be:f0:6a:79:5e:d5:fe:
         d0:c3:92:e8:87:76:5e:27:d8:07:cd:1f:b1:d0:26:8b:c9:43:
         85:58:9b:dd:b8:94:f9:10:7a:fe:6b:52:33:ab:5e:b8:91:e0:
         c6:45:39:17:de:4b:07:b6:39:16:01:44:c0:1e:96:e2:78:aa:
         3b:eb:00:2c:2c:2a:8d:29:75:24:fb:0b:31:30:91:47:8e:6f:
         8d:5a:72:cd:40:76:d1:ae:ea:83:3d:83:9a:77:2f:41:2c:d6:
         0b:1b:37:76:e2:7f:29:9d:e5:c0:fb:8f:2a:e8:c1:69:a1:a1:
         d5:fc:e8:aa:ea:7c:3b:76:e0:63:0d:ea:40:0f:df:ed:8f:c9:
         e5:a8:ae:01:7f:46:9f:c1:8d:6b:14:1f:07:91:5b:d8:8e:c3:
         b2:80:44:d3:c6:c4:15:94:d3:f3:cd:22:f1:4a:f3:bf:41:0b:
         98:8f:23:f9:c6:f8:5a:34:78:3c:16:f7:7f:f7:88:22:fe:78:
         8d:b9:49:71:f8:d2:f9:56:7e:a9:b9:0a:fd:77:b8:a3:14:a0:
         01:2f:90:0b:23:fd:7c:44:75:45:3b:c8:d5:09:ac:6e:ec:18:
         58:53:7a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 14:06:18 2025 by rpki-client