Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
File:                     k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft (raw, json)
Hash identifier:          kYi9F+xMvc0Rqg6JmsBu25hJLO0WiVQdibLMmdO2VDA=
Subject key identifier:   40:8E:46:B6:E4:DD:16:61:BF:37:97:96:4B:AD:B0:3D:79:EA:0C:22
Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9
Certificate issuer:       /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9
Certificate serial:       13C7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
Manifest number:          13AD
Signing time:             Sun 08 Jun 2025 16:52:13 +0000
Manifest this update:     Sun 08 Jun 2025 16:52:13 +0000
Manifest next update:     Sun 15 Jun 2025 16:52:13 +0000
Files and hashes:         1: k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl (hash: bXPOmSRBLqdNxyq3eO4pr7Ak+0FEcGfd5dbPTzYNSQE=)
                          2: A04E05E42CE911EC8F99F486C4F9AE02.roa (hash: 4Bdu5c7KiVJ8qwTifJfb8PRfm9Z4srlRbM1n/IceWaU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl
                          rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 16:52:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5063 (0x13c7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E3D15, serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9
        Validity
            Not Before: Jun  8 16:52:13 2025 GMT
            Not After : Jun 15 16:52:13 2025 GMT
        Subject: CN=6845bfbd-989f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:02:c3:d3:1a:da:5d:42:de:fc:43:97:ce:5f:
                    74:a3:20:e8:0b:35:f0:b9:7e:cc:3e:d9:b5:49:22:
                    2a:19:45:f0:18:28:1c:c8:0f:e2:8f:89:73:44:e8:
                    5f:91:19:df:9b:84:db:e7:76:3d:95:57:d5:b5:19:
                    62:ca:ed:8e:40:37:ed:55:9c:8e:6b:70:15:78:92:
                    e3:1a:a5:03:1c:b8:de:fe:0d:c7:3f:35:04:52:2f:
                    56:ea:15:7b:c0:24:4c:e0:4a:50:03:79:6c:81:be:
                    0e:54:f2:5e:1e:1c:f8:04:f9:0c:40:da:0c:c5:c0:
                    db:7a:ac:c0:f6:bc:b4:bc:84:4e:5f:b9:27:e0:82:
                    0f:6b:27:69:0e:9d:7c:2b:86:f9:c7:b0:a2:6d:eb:
                    3d:b0:31:df:95:fe:1f:a7:8c:56:ae:ce:d9:d6:6c:
                    80:af:9b:25:3c:52:e5:64:6c:3b:0d:0f:d7:85:30:
                    ac:71:88:62:a8:ca:0e:80:6b:e0:75:52:e7:e9:31:
                    17:c0:3c:46:ad:94:c0:74:e9:52:d9:1d:b5:26:48:
                    32:e3:f7:97:5d:ba:fb:1a:9e:9c:15:9a:3f:1f:f7:
                    ff:b2:8d:85:6e:4a:74:a5:5b:f1:8e:3e:40:09:67:
                    99:c1:ab:3d:63:44:29:3e:19:da:fa:61:5f:15:6d:
                    ed:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:8E:46:B6:E4:DD:16:61:BF:37:97:96:4B:AD:B0:3D:79:EA:0C:22
            X509v3 Authority Key Identifier:
                keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b3:80:95:69:ca:ff:53:c1:f1:2a:ec:c8:41:21:67:ba:b9:c5:
         55:42:0f:97:c9:fc:8b:af:ae:17:ba:97:c7:1a:dd:a9:5d:07:
         eb:05:6d:8c:f8:a4:b5:67:cc:24:22:f3:74:43:32:c6:a2:11:
         22:c0:48:f1:4b:29:59:27:51:32:1e:d1:33:6b:8a:37:ea:0c:
         14:27:8d:fc:58:05:2b:42:65:7a:81:0d:ff:3d:eb:e1:d7:7e:
         a0:6e:6e:66:20:69:fa:42:9a:b7:5a:c0:0e:85:bd:98:56:8b:
         7a:42:b8:37:3d:9f:2d:ad:e1:2b:23:f6:9f:39:73:21:99:74:
         27:30:af:98:66:da:ff:98:ef:41:cd:b9:76:4a:f8:52:7b:ee:
         90:40:6d:5d:52:5b:f1:29:cc:66:f2:72:e3:56:ce:bc:e2:9a:
         f9:7d:2f:a9:68:03:56:e5:2d:ca:5a:8a:e0:70:1c:83:49:33:
         27:03:22:7f:0d:ed:b2:2d:5e:62:72:5a:c5:f8:b0:07:2f:c4:
         76:d3:ce:56:10:7a:b1:cb:97:4b:66:75:f4:0c:49:94:47:8d:
         d0:cc:a8:96:de:f9:44:a8:3d:57:06:15:c0:c5:3d:fd:d9:75:
         4f:ae:80:e8:b0:d3:ac:e3:bc:d5:ef:1d:a9:22:84:7f:e7:42:
         82:32:36:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:57:21 2025 by rpki-client