Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
File:                     c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json)
Hash identifier:          uJE2t2nbcDUOmC5VBAy0yYP7VA3iS5m2GEc/b9TuGTU=
Subject key identifier:   AE:AC:0B:87:88:40:6F:DE:49:FE:AC:03:01:97:5E:E4:F7:23:91:1D
Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10
Certificate issuer:       /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10
Certificate serial:       0334
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
Manifest number:          0330
Signing time:             Fri 25 Apr 2025 00:51:17 +0000
Manifest this update:     Fri 25 Apr 2025 00:51:17 +0000
Manifest next update:     Fri 02 May 2025 00:51:17 +0000
Files and hashes:         1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: 1xbY28q+UFHlSGofH/uVfXs5mXyy0O8DDTJLEtvORXY=)
                          2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: Py8gHJNmqLpByr4I29rw6Mm8G9sMV9RnjA0oEGne9CY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl
                          rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 00:51:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 820 (0x334)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91366F8, serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10
        Validity
            Not Before: Apr 25 00:51:17 2025 GMT
            Not After : May  2 00:51:17 2025 GMT
        Subject: CN=680adc85-8cf6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:d8:5e:13:23:b2:01:24:7a:b8:cd:cf:77:9c:
                    2c:57:6b:c8:3f:20:6a:f2:93:41:78:c3:c5:bb:51:
                    ef:04:b4:3e:04:6f:4d:03:c5:75:95:49:18:69:a1:
                    06:79:eb:cf:af:5b:23:5e:75:e3:6a:19:0b:ae:66:
                    b8:67:05:ab:04:1a:13:b0:a3:cd:96:58:06:13:8c:
                    ab:de:25:00:d7:4b:64:a5:43:41:fa:f2:9e:cd:ef:
                    45:b1:cd:d1:fb:70:7e:80:ee:2c:42:e0:e8:e0:5b:
                    4c:b1:dc:38:85:a9:d9:f8:5f:a5:50:9d:1a:96:a8:
                    88:46:cd:5f:0a:75:68:b1:1d:3d:30:ea:c0:d2:60:
                    a8:6c:ef:0f:52:94:df:b3:84:21:4c:d4:72:25:31:
                    d4:26:2a:90:0d:e2:0a:15:0d:be:b7:1e:d7:0d:27:
                    71:60:4b:c9:89:55:68:cc:59:bd:c8:e2:5d:80:e9:
                    bd:ca:9c:cd:20:c0:dd:18:4c:00:b3:74:68:b4:98:
                    d6:74:af:55:79:8e:a2:e9:9e:12:b1:e3:e8:0a:6c:
                    75:4d:d9:4a:a2:03:0b:19:0a:cd:0e:42:fe:87:3d:
                    e1:c4:44:59:8e:6c:8f:64:67:44:76:b7:f5:a9:2c:
                    ef:b1:74:81:d3:53:91:0f:47:49:4e:c4:63:01:63:
                    6d:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:AC:0B:87:88:40:6F:DE:49:FE:AC:03:01:97:5E:E4:F7:23:91:1D
            X509v3 Authority Key Identifier:
                keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:f7:0c:b1:21:ac:55:e0:63:36:31:86:1b:92:e2:80:f8:e0:
         ab:c6:c8:18:3e:77:8d:3e:02:f9:ec:16:aa:1f:ac:57:03:0e:
         27:93:e6:1d:9a:2e:4a:32:12:c7:3a:50:82:9a:6c:ec:08:c5:
         5b:d7:59:f1:13:1e:50:ee:ec:8e:52:a0:9a:14:36:67:71:b2:
         34:5b:44:85:77:8a:34:46:d5:c8:69:31:b2:7c:a0:ed:93:cc:
         2e:78:17:11:49:1f:02:90:09:ee:74:e6:4e:ad:9c:aa:26:f7:
         92:5e:ab:28:9f:4c:7c:93:db:41:5c:0e:06:58:cd:27:18:e2:
         a1:95:e5:3b:33:ce:44:c9:3f:08:67:84:2d:c9:c1:88:f2:a3:
         04:ab:c0:ab:55:80:86:23:84:96:92:1d:1d:86:24:71:0f:7f:
         33:67:f7:93:05:cc:5b:01:9f:76:a2:93:74:66:c2:3f:7e:98:
         f7:24:c4:90:85:af:19:62:73:f5:22:90:9c:e2:f4:88:72:5e:
         89:7e:2d:a3:d2:38:78:eb:08:19:5c:78:d7:c0:89:8b:35:4a:
         be:a3:1c:9e:90:8d:41:da:4b:77:d9:8c:bd:5a:c8:1a:de:b5:
         d6:da:ff:2c:59:07:cb:05:b6:b5:87:b7:2e:c3:c8:e9:d2:c8:
         07:8f:1f:81
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG
OEJENjBDMTAwHhcNMjUwNDI1MDA1MTE3WhcNMjUwNTAyMDA1MTE3WjAYMRYwFAYD
VQQDEw02ODBhZGM4NS04Y2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsdheEyOyASR6uM3Pd5wsV2vIPyBq8pNBeMPFu1HvBLQ+BG9NA8V1lUkYaaEG
eevPr1sjXnXjahkLrma4ZwWrBBoTsKPNllgGE4yr3iUA10tkpUNB+vKeze9Fsc3R
+3B+gO4sQuDo4FtMsdw4hanZ+F+lUJ0alqiIRs1fCnVosR09MOrA0mCobO8PUpTf
s4QhTNRyJTHUJiqQDeIKFQ2+tx7XDSdxYEvJiVVozFm9yOJdgOm9ypzNIMDdGEwA
s3RotJjWdK9VeY6i6Z4SsePoCmx1TdlKogMLGQrNDkL+hz3hxERZjmyPZGdEdrf1
qSzvsXSB01ORD0dJTsRjAWNt7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6sC4eI
QG/eSf6sAwGXXuT3I5EdMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF
NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE
QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
NjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpU
LUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBY9wyxIaxV4GM2MYYbkuKA+OCrxsgYPneNPgL57BaqH6xXAw4nk+Yd
mi5KMhLHOlCCmmzsCMVb11nxEx5Q7uyOUqCaFDZncbI0W0SFd4o0RtXIaTGyfKDt
k8wueBcRSR8CkAnudOZOrZyqJveSXqson0x8k9tBXA4GWM0nGOKhleU7M85EyT8I
Z4QtycGI8qMEq8CrVYCGI4SWkh0dhiRxD38zZ/eTBcxbAZ92opN0ZsI/fpj3JMSQ
ha8ZYnP1IpCc4vSIcl6Jfi2j0jh46wgZXHjXwImLNUq+oxyekI1B2kt32Yy9Wsga
3rXW2v8sWQfLBba1h7cuw8jp0sgHjx+B
-----END CERTIFICATE-----
Generated at Sat Apr 26 12:58:13 2025 by rpki-client