Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
File:                     c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json)
Hash identifier:          L97UDdyJhRq0KPITUfGETo6ug2XLpzLM7n5Bso3f8yc=
Subject key identifier:   67:EB:2E:08:26:7A:6B:1E:01:9C:24:76:B7:E6:B7:81:E5:15:A8:B0
Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10
Certificate issuer:       /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10
Certificate serial:       0335
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
Manifest number:          0331
Signing time:             Sun 27 Apr 2025 00:43:47 +0000
Manifest this update:     Sun 27 Apr 2025 00:43:45 +0000
Manifest next update:     Sun 04 May 2025 00:43:45 +0000
Files and hashes:         1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: d/IJo0FPfMfBTvOolZJ16oi12d12PG2aS0jZOggVB3U=)
                          2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: Py8gHJNmqLpByr4I29rw6Mm8G9sMV9RnjA0oEGne9CY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl
                          rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 04 May 2025 00:43:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 821 (0x335)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91366F8, serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10
        Validity
            Not Before: Apr 27 00:43:45 2025 GMT
            Not After : May  4 00:43:45 2025 GMT
        Subject: CN=680d7dc1-abd4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:89:fc:9c:a5:4b:2f:93:77:a2:92:72:a6:86:
                    c7:ad:d2:20:be:54:49:99:e6:6e:95:bc:e4:4e:61:
                    e3:77:f1:5a:dd:18:37:9e:1a:64:06:37:e9:4b:0c:
                    e8:a5:3c:64:5f:fa:98:3c:f5:93:ab:d7:5b:38:6d:
                    b8:a8:ee:37:7f:3d:30:36:df:ab:67:d1:98:d9:ea:
                    b6:0c:15:08:0a:7a:5a:29:da:a4:0b:09:2d:2e:f3:
                    43:07:e6:55:da:69:22:b0:27:af:5f:c1:01:9c:75:
                    b5:b2:2e:dc:a8:bc:9c:06:d6:d4:9e:d8:2e:62:89:
                    07:63:30:27:18:df:cd:0e:e6:86:ec:ae:c0:6a:b3:
                    e5:31:fd:1b:3b:14:b2:9a:40:c9:b2:1b:0e:bf:37:
                    16:ca:a7:84:17:7a:6d:b3:3c:0f:14:5f:69:e9:e8:
                    0f:72:cc:2c:6f:01:7e:c3:0b:14:31:8d:bf:30:48:
                    05:7c:5b:6b:0d:d6:c3:d6:d3:7d:c4:55:78:2f:52:
                    41:32:df:ad:2f:c7:11:9e:a1:ea:fb:04:0c:00:9f:
                    ec:b4:63:bb:a9:2d:09:9b:83:01:f0:23:5b:c5:ff:
                    e3:1e:53:91:b4:32:39:b1:2d:55:ed:7d:32:8b:7d:
                    af:bb:08:1c:fc:af:c1:3a:94:22:94:c2:fc:9c:e6:
                    17:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:EB:2E:08:26:7A:6B:1E:01:9C:24:76:B7:E6:B7:81:E5:15:A8:B0
            X509v3 Authority Key Identifier:
                keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:54:90:5c:73:12:8f:f1:81:e8:d5:ee:fb:a5:8e:b9:b6:70:
         b6:37:e2:f4:a9:b9:64:3b:db:e5:96:d3:f5:05:20:81:41:fc:
         c0:7d:eb:99:ec:b4:8b:02:20:11:e2:5d:71:96:85:33:0f:33:
         28:eb:d5:e8:5d:a7:68:e0:59:ad:c7:7f:9a:5a:b3:84:9a:3c:
         58:48:71:ae:af:6f:73:24:4d:da:4c:44:e4:53:97:05:45:b6:
         c3:9c:c6:a3:8f:d0:4a:67:3d:03:c7:8b:d2:67:4e:e9:a8:d6:
         ba:96:b8:a8:e4:d1:bc:64:da:79:39:4e:6b:6c:04:30:95:92:
         21:36:8b:f4:de:0d:48:da:ed:fa:4f:ec:2c:b1:18:f8:9d:96:
         55:3d:19:d5:55:19:89:e2:a4:18:c2:ff:ef:2c:be:e1:dd:d0:
         42:f1:25:86:a2:bd:85:50:5f:d9:7b:67:c9:e8:11:79:ac:92:
         57:5d:0a:df:5f:06:04:c4:aa:e3:d6:15:f1:d1:0a:c2:03:47:
         f9:db:9d:78:66:e0:9a:ac:d8:4e:10:c1:0b:66:e9:67:ba:5e:
         2b:be:0c:8d:d2:3e:76:c1:75:e2:5e:6e:3c:1d:dd:d1:32:27:
         bd:eb:fb:b3:09:b0:eb:ba:06:82:21:f4:f0:39:42:05:8a:75:
         48:6d:04:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 03:24:48 2025 by rpki-client