Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
File:                     bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json)
Hash identifier:          NMURTKtPvUCGOsEXQRVUSEPSpIS19+ZSxnyw4FRoQY0=
Subject key identifier:   6C:AC:34:37:05:96:15:A1:B0:A8:BA:9B:C5:B7:B7:92:53:AC:D9:AE
Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38
Certificate issuer:       /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838
Certificate serial:       03F3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
Manifest number:          03EC
Signing time:             Fri 25 Apr 2025 00:17:42 +0000
Manifest this update:     Fri 25 Apr 2025 00:17:42 +0000
Manifest next update:     Fri 02 May 2025 00:17:42 +0000
Files and hashes:         1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: LOusXvxVeYrUyNB9VDcXLb5PyB50zKo3WlBoTdsYhwc=)
                          2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl
                          rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 00:17:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1011 (0x3f3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838
        Validity
            Not Before: Apr 25 00:17:42 2025 GMT
            Not After : May  2 00:17:42 2025 GMT
        Subject: CN=680ad4a6-7ed2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:76:d8:30:c9:19:d8:01:8b:bf:1b:85:ea:83:
                    a7:be:73:48:0d:c5:2f:da:5b:c9:bb:eb:97:73:48:
                    17:ba:c2:86:a6:e5:d9:fc:22:c6:e1:9b:8a:13:94:
                    6b:4b:55:25:1b:77:5e:87:46:cb:bb:72:e8:94:c5:
                    14:ea:30:ab:57:1a:cb:cb:e1:eb:8f:4c:84:2e:60:
                    6b:b9:01:93:b0:38:bc:1f:a3:4b:1d:62:9c:68:6b:
                    43:a6:91:58:6a:59:6e:ab:dd:0b:71:b0:b1:0f:29:
                    70:ff:60:b2:8a:e2:60:51:36:43:6e:5c:38:d9:34:
                    27:62:f6:32:92:77:9b:7e:44:e4:73:26:8d:d8:82:
                    51:a0:2e:f3:cf:6f:c2:16:e6:9d:c5:41:cb:6e:f1:
                    0b:aa:da:ef:ce:0e:c5:ca:bd:82:26:fa:a1:45:22:
                    c8:c1:8d:63:f9:9e:8d:96:57:d7:b6:96:00:bc:e0:
                    15:63:0f:bc:0d:01:9f:82:fc:ca:df:f9:e9:d3:e4:
                    b2:5e:4e:a6:f2:34:05:02:c6:e4:41:4a:4d:7d:0b:
                    b4:5b:2d:b4:98:07:f5:ec:18:6a:ef:2a:18:ba:13:
                    5c:ef:c6:52:c1:d7:f2:e6:58:80:b5:04:a5:13:cc:
                    66:b5:8d:bc:a2:31:50:77:d1:0c:f2:34:9e:92:53:
                    65:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:AC:34:37:05:96:15:A1:B0:A8:BA:9B:C5:B7:B7:92:53:AC:D9:AE
            X509v3 Authority Key Identifier:
                keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:67:fe:9b:3d:e1:c4:e9:37:18:18:d1:99:b6:d6:0a:63:e6:
         03:18:01:08:1d:14:89:9a:8b:32:15:ef:12:68:30:e5:5d:b2:
         80:4d:1b:c3:ff:6f:bf:c7:5e:0d:be:25:5f:43:7d:cd:e4:f5:
         cd:1a:95:0b:d5:55:62:9d:04:15:5b:29:3a:cd:64:44:5b:4c:
         c1:9b:04:86:2e:bc:b5:26:90:12:d4:67:78:4b:4f:3c:b3:94:
         60:87:7c:e2:85:5e:b1:7c:c0:b4:bc:da:17:7f:ba:49:c8:d9:
         9d:cc:21:3b:a8:db:8a:6a:ae:cb:15:0a:97:20:8d:d0:c6:43:
         dc:01:10:4e:fd:a2:f8:37:02:1a:31:91:79:a4:5e:b2:97:15:
         3d:31:16:31:2d:b4:f9:09:7a:cd:65:29:00:7d:7b:18:0b:96:
         74:05:02:e7:6d:82:42:98:2f:d0:57:47:7a:e6:d9:92:67:0b:
         cf:af:59:fd:d1:fc:7a:f2:69:6d:84:e9:26:95:3e:13:82:bb:
         d2:e4:33:02:11:f5:a7:34:d8:b3:23:ec:b6:58:dc:1c:ba:3b:
         ea:eb:55:67:62:31:15:9a:30:3a:4b:df:fe:87:8b:36:cf:e1:
         30:b5:68:42:95:b7:ff:80:14:25:e4:89:75:d5:4f:20:a2:f8:
         0f:8d:7c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:58:54 2025 by rpki-client