Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft
File:                     42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json)
Hash identifier:          BNhiw/WwXD8MHaqTnKP0CdOPY+vsmkjtbKf6/BRgaj4=
Subject key identifier:   F0:FD:89:C9:BA:5A:9F:DA:22:78:B5:59:22:92:34:0D:BD:7F:7B:A6
Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6
Certificate issuer:       /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6
Certificate serial:       45
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft
Manifest number:          43
Signing time:             Tue 01 Jul 2025 08:15:08 +0000
Manifest this update:     Tue 01 Jul 2025 08:15:08 +0000
Manifest next update:     Tue 08 Jul 2025 08:15:08 +0000
Files and hashes:         1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: Tc/ytPBTd158hX/3SacDGCIZ32FC0/Lw0n6pBdbdOik=)
                          2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl
                          rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 08 Jul 2025 08:15:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 69 (0x45)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6
        Validity
            Not Before: Jul  1 08:15:08 2025 GMT
            Not After : Jul  8 08:15:08 2025 GMT
        Subject: CN=6863990c-33c8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:4c:38:6c:b2:5d:20:ff:17:03:d0:c6:cd:cc:
                    df:21:68:2c:d1:47:e7:fc:3c:6e:d7:b2:00:91:0b:
                    c8:2e:18:ad:df:40:8a:a8:27:7f:b1:d6:69:c1:78:
                    75:00:13:3b:2b:55:cc:39:89:a2:78:02:c1:4d:2e:
                    60:f6:27:b0:c3:39:c4:19:39:42:4f:b2:6d:12:8a:
                    99:41:bd:69:85:06:03:63:81:87:60:a6:3f:e9:95:
                    a8:9a:4e:2b:7f:83:c4:5a:57:bb:8d:d3:76:b3:29:
                    32:16:2a:f2:9a:e2:47:d2:ca:4e:f2:13:77:72:7c:
                    77:02:cb:d5:78:2e:e2:18:ff:3c:fb:c2:f7:5c:fc:
                    d8:47:9b:71:58:44:d0:08:3a:59:07:58:99:ab:38:
                    bd:be:5d:09:0c:e1:48:ce:6e:97:0a:7c:37:b2:77:
                    2c:b3:8b:8d:15:96:c8:70:26:45:2b:45:09:34:da:
                    5b:ba:79:ec:74:2c:81:71:90:3e:cc:03:23:65:23:
                    05:57:ac:c4:53:83:68:b1:4f:95:c1:08:ef:f5:e9:
                    1d:82:03:ba:80:db:8c:94:27:67:3e:7e:08:2e:ae:
                    f3:e7:25:72:aa:d6:53:7d:44:dd:7d:8d:af:7f:83:
                    da:e9:ba:0d:47:ef:95:6d:f0:49:11:cf:f2:68:3b:
                    a8:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:FD:89:C9:BA:5A:9F:DA:22:78:B5:59:22:92:34:0D:BD:7F:7B:A6
            X509v3 Authority Key Identifier:
                keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:e7:47:ea:e0:e2:71:e2:0a:32:5d:81:bf:b7:52:1b:80:90:
         41:09:4c:90:ce:e1:07:f4:a9:a5:f5:f2:ee:4f:c6:10:e6:a4:
         8c:79:a6:f0:46:4a:30:11:d6:d9:6e:fe:86:12:fc:fc:1b:71:
         f8:f7:b6:ae:31:47:e9:e1:24:87:09:a0:4f:73:9f:9c:39:92:
         27:ac:18:54:41:80:fe:cc:75:38:6e:b9:e9:9b:a3:3b:96:bb:
         af:9b:55:6d:5d:84:19:17:01:8c:38:4d:c8:7b:ce:98:31:7b:
         fe:03:52:c2:a8:4f:3d:07:99:80:98:38:b0:1f:01:53:52:71:
         01:a7:1c:b8:4e:bd:48:3e:30:d9:9d:b8:e5:cb:dc:ae:be:5a:
         9a:50:64:f3:31:6f:01:91:2a:27:23:31:86:3e:f5:f4:99:b5:
         02:7a:f4:91:e8:a4:90:06:31:b2:9f:33:5d:f9:e6:2a:2f:ee:
         e2:c4:a4:b3:78:6e:90:99:88:85:a5:2c:e8:99:b5:66:b6:d0:
         48:32:af:e1:2c:05:ef:7c:3c:c4:50:88:2b:10:ee:03:7f:39:
         52:3e:3d:3b:ca:55:69:31:35:20:05:b4:72:1d:ac:f5:45:e5:
         cf:8e:65:aa:d1:c6:6e:61:ed:49:c6:70:d9:e1:cc:89:d1:ad:
         af:93:20:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 21:54:39 2025 by rpki-client