Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft
File:                     tOfjRK3ONthPHzq8zRSyTBUSu6o.mft (raw, json)
Hash identifier:          ImJr7kvJi3JTi8SVh6r4KcaKeGQJPIZJUqIyaag7rCc=
Subject key identifier:   4A:14:0B:BF:D7:88:94:06:E5:F0:41:A4:CA:A3:AF:C8:4D:8C:E1:4A
Authority key identifier: B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA
Certificate issuer:       /CN=A911BDA9/serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA
Certificate serial:       B5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft
Manifest number:          B4
Signing time:             Thu 03 Jul 2025 06:09:56 +0000
Manifest this update:     Thu 03 Jul 2025 06:09:56 +0000
Manifest next update:     Thu 10 Jul 2025 06:09:56 +0000
Files and hashes:         1: tOfjRK3ONthPHzq8zRSyTBUSu6o.crl (hash: 9EJsUMM/BMzumjXQ49sItFBxsbvoIX5E+fDryfeJyhs=)
                          2: 723720464ABE11EFA87EE85BC4F9AE02.roa (hash: 3HXgfR2xDybCR9JbXAm4K9BmBrTeyB6NLob5uNWXRyE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl
                          rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 181 (0xb5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911BDA9, serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA
        Validity
            Not Before: Jul  3 06:09:56 2025 GMT
            Not After : Jul 10 06:09:56 2025 GMT
        Subject: CN=68661eb4-cde1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:58:63:d4:7f:81:35:02:df:ab:78:e9:8a:df:
                    ff:dd:62:da:08:db:cb:d2:53:67:61:0a:c4:17:f0:
                    01:a9:81:b3:53:2f:54:87:cc:c9:91:5a:8c:f2:41:
                    39:23:e4:69:f6:9b:29:ab:b1:15:17:a2:ad:84:e8:
                    8a:63:b3:57:ca:f7:c8:f9:1a:55:9f:ba:50:2d:86:
                    bb:08:cd:0b:40:18:78:c6:a0:03:3b:47:5e:f1:62:
                    79:1c:da:40:f0:59:d2:8c:cd:53:90:83:46:3e:c9:
                    d1:30:6a:e0:3e:0a:7b:c4:82:43:0e:35:e7:e3:a0:
                    0b:ea:f0:c8:79:63:9d:10:56:89:72:f5:8a:45:ab:
                    9e:e5:7e:66:2d:dc:17:e9:ca:6c:e2:71:f9:87:94:
                    5e:23:4f:f8:5f:f8:66:16:27:e0:ba:2e:76:41:45:
                    25:8f:0a:ab:da:8c:c2:9a:12:28:39:e8:27:38:b7:
                    ab:d4:c0:38:cf:9c:97:7d:77:f7:f0:a4:99:fd:bb:
                    41:ea:f9:9d:b4:85:43:45:51:35:30:bb:2e:93:af:
                    95:a1:d0:b0:7c:27:cb:c2:b4:41:87:68:b4:c3:f1:
                    b5:f9:a2:78:f7:e4:99:36:bb:d6:1e:f2:2c:f3:28:
                    c5:d0:7f:ce:48:f7:10:4a:07:ce:6c:2b:6a:78:a5:
                    ac:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:14:0B:BF:D7:88:94:06:E5:F0:41:A4:CA:A3:AF:C8:4D:8C:E1:4A
            X509v3 Authority Key Identifier:
                keyid:B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b9:70:fe:ad:09:96:33:98:ab:b2:95:58:4c:51:ca:41:4e:f1:
         a8:be:d6:41:28:61:97:4c:78:7b:3f:42:bb:44:a0:b1:f2:0b:
         a1:f0:f2:ce:bd:90:f6:82:57:11:4a:b7:7a:b9:b5:01:22:25:
         96:4a:6b:b9:47:5b:d0:04:1d:a2:29:e0:f6:5d:7c:05:30:90:
         f2:1c:5d:72:70:0e:4d:0d:61:0b:20:81:f7:70:a5:1d:bd:09:
         2c:ea:b0:fe:6f:41:9a:1c:a9:74:5a:0d:d5:79:eb:07:27:98:
         ae:b6:d5:e1:58:3c:66:28:18:46:4a:32:9d:22:dc:c3:08:e9:
         f2:b7:f3:2a:91:45:3a:22:68:da:e7:11:a4:9c:74:ad:86:41:
         66:77:8c:44:b5:2d:c8:64:91:72:ce:12:dd:30:7a:37:22:78:
         41:00:79:1a:4a:4b:e2:b3:b3:d0:b9:15:54:c4:19:da:2a:52:
         8e:63:1d:15:77:55:df:d4:26:0e:28:96:72:7e:98:c8:9c:3c:
         77:00:a1:0e:27:4f:00:47:cc:e1:db:a3:8d:97:a7:55:9c:ce:
         d7:ab:30:c9:24:ff:c4:e9:8a:70:17:c8:87:23:0c:96:eb:2a:
         8c:c7:8d:45:1f:51:66:80:1c:38:bc:6b:73:d9:8f:fa:36:ca:
         e8:31:d5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 14:57:51 2025 by rpki-client