Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
File:                     r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json)
Hash identifier:          ZXYJkWsSMzcjdpkAkJ/MMd6cVbxSMMLjYHKZ33ss7c4=
Subject key identifier:   77:07:E7:30:29:26:7D:DD:B3:B0:F2:40:F5:0C:01:54:1A:64:5E:66
Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B
Certificate issuer:       /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B
Certificate serial:       0559
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
Manifest number:          0553
Signing time:             Sun 08 Jun 2025 23:01:23 +0000
Manifest this update:     Sun 08 Jun 2025 23:01:22 +0000
Manifest next update:     Sun 15 Jun 2025 23:01:22 +0000
Files and hashes:         1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: 9AJ3x385oXwRaCUZrH1izYn8Xrn3ZTc2AMXdjtykHRk=)
                          2: B52EA19A6E0B11ECA6057963C4F9AE02.roa (hash: sRAPrM6e/yJbsGZwUamXGzz2TWejjmVOjZsdsTU0i6Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl
                          rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 23:01:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1369 (0x559)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B
        Validity
            Not Before: Jun  8 23:01:22 2025 GMT
            Not After : Jun 15 23:01:22 2025 GMT
        Subject: CN=68461642-0d62
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:d6:3d:11:a9:b3:63:96:e7:6e:a8:d3:dd:5b:
                    7f:bf:c6:1a:43:aa:de:c9:5d:be:18:2e:40:46:4d:
                    dd:3b:b6:90:d1:2f:e8:e9:4f:c5:89:d2:2f:a1:75:
                    64:e8:a8:da:43:5b:8e:85:ff:2a:ac:66:89:1c:49:
                    2b:28:9b:8e:fe:26:db:c3:0e:ce:ca:d9:5f:44:40:
                    cd:35:36:2a:98:2b:58:f5:41:ec:ad:b0:d4:f1:a2:
                    4b:98:0e:7f:58:41:52:4d:f8:4c:25:07:d4:49:92:
                    82:3f:f8:f3:5b:2f:61:e4:00:d5:48:5c:83:f3:1e:
                    8d:49:51:ad:a3:53:66:ab:94:04:8d:8b:f8:dc:09:
                    fa:85:71:c8:85:0c:43:6c:11:db:56:4c:61:cf:70:
                    b0:ce:6c:e7:d8:86:44:65:cd:1b:7f:dc:92:f1:53:
                    3e:72:2c:e5:78:e8:e3:72:bc:54:bd:17:25:16:96:
                    cd:0d:be:17:1e:0b:f0:aa:39:2b:3a:ce:9e:38:fa:
                    6b:b7:e9:a3:3a:b8:9c:cd:26:79:76:e1:d8:2b:8a:
                    7c:c8:f0:84:1f:87:b2:d9:71:d1:4c:3b:c9:98:98:
                    94:46:62:59:bf:7f:7d:84:78:bb:7b:50:c2:73:5b:
                    bb:05:c3:f5:fc:4f:3b:60:fe:f8:dd:64:c5:50:ed:
                    8a:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:07:E7:30:29:26:7D:DD:B3:B0:F2:40:F5:0C:01:54:1A:64:5E:66
            X509v3 Authority Key Identifier:
                keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:49:5f:74:c8:a4:d2:a4:d4:0b:c7:22:b2:e9:40:ea:ac:82:
         f5:da:c2:50:20:74:d3:44:81:b2:bd:c6:ca:f8:74:13:e6:a1:
         dd:65:19:3a:a5:a0:24:42:de:3d:6e:2a:b5:f7:13:3b:b9:47:
         2e:57:3a:84:95:6a:f1:53:a7:36:87:77:42:b3:c2:bd:e2:6d:
         0d:7f:51:35:be:37:43:d6:36:a0:9e:0e:03:88:3d:6c:42:4a:
         a5:7a:6f:d8:1b:21:8d:d2:44:59:0d:f1:12:ee:0a:54:ba:63:
         1d:e2:3b:ca:6b:f2:ce:f8:56:d0:98:8c:7d:cf:14:f3:13:49:
         18:e7:9c:e8:30:e8:6a:a6:96:05:35:bc:90:79:12:3b:94:83:
         0f:40:05:45:05:76:2f:46:c4:68:4c:5d:48:b8:cf:90:96:fd:
         8c:61:96:b7:7f:c5:e2:8d:b7:04:56:5c:63:46:4b:1e:a1:71:
         04:8d:25:8f:50:c5:e4:1d:43:e3:aa:01:48:44:c6:cf:ed:e2:
         21:e5:f4:3b:24:5d:e7:25:8d:2d:16:3a:94:cc:80:2b:1d:7a:
         dd:5b:ff:85:9d:7d:d5:80:42:00:f4:93:68:7a:a2:84:d4:1d:
         dc:6a:c4:a4:e4:dc:c8:0f:07:aa:e3:22:b4:e3:b8:c1:84:bf:
         e6:96:51:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 15:05:20 2025 by rpki-client