Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
File:                     bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json)
Hash identifier:          edaXUGJAVKzyt6ps8XeLB+wEY+u+MXOqwn9k23nPzpA=
Subject key identifier:   83:7E:0D:9F:E8:06:C8:16:AC:58:A5:D5:84:07:BD:73:7D:09:5F:51
Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38
Certificate issuer:       /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838
Certificate serial:       03F5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
Manifest number:          03EE
Signing time:             Tue 29 Apr 2025 01:08:26 +0000
Manifest this update:     Tue 29 Apr 2025 01:08:26 +0000
Manifest next update:     Tue 06 May 2025 01:08:26 +0000
Files and hashes:         1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: D/52Pt7VZPCCff7JpU6w06Kc8Z8AXGVaOyV/seRkEwI=)
                          2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl
                          rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 06 May 2025 01:08:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1013 (0x3f5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838
        Validity
            Not Before: Apr 29 01:08:26 2025 GMT
            Not After : May  6 01:08:26 2025 GMT
        Subject: CN=6810268a-905c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:41:27:95:9c:44:60:0c:0d:ad:dd:69:7c:1c:
                    64:86:3b:ec:6e:60:ee:c2:a6:8f:1f:de:14:78:6d:
                    7f:ac:7e:2b:6f:cb:8f:b5:e7:7f:26:e3:12:56:45:
                    79:ab:40:f5:fa:0a:4c:9b:97:19:aa:c9:20:b2:16:
                    26:4c:f9:09:70:61:79:bb:55:67:85:ad:25:d7:58:
                    06:1c:17:12:76:44:06:5b:2e:1a:30:29:26:98:45:
                    32:05:0d:7a:c6:ad:d3:cb:2a:18:f1:46:06:d8:9a:
                    ac:72:52:92:7e:ae:e0:d4:98:1b:68:aa:0c:62:bb:
                    de:27:55:3a:d2:bc:9f:8e:2a:ca:66:62:5f:83:55:
                    1d:9e:60:dc:c6:b5:3a:cb:6a:34:4e:61:a3:27:0c:
                    e3:f4:b4:06:ed:f1:d6:3a:b5:aa:be:38:ef:2a:04:
                    2d:82:31:c7:d2:8c:9c:86:df:80:98:c8:36:a7:6e:
                    e1:2f:ea:de:5e:1e:a9:d0:d4:d2:1a:4f:0b:8a:0d:
                    d1:67:0b:4b:b2:a4:12:7b:ee:65:c0:da:4a:2a:04:
                    b8:f4:26:59:22:ab:7a:59:a6:46:09:69:de:37:6b:
                    f5:b3:17:97:1c:c9:12:a7:30:bf:cc:0b:85:08:58:
                    a3:74:c1:41:bf:e3:d2:63:52:c5:83:17:35:53:7a:
                    8d:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:7E:0D:9F:E8:06:C8:16:AC:58:A5:D5:84:07:BD:73:7D:09:5F:51
            X509v3 Authority Key Identifier:
                keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:b7:b7:52:26:aa:d6:e7:61:94:25:96:35:59:35:9e:10:24:
         9e:51:3f:1d:38:1d:f1:f5:7a:e9:84:2c:83:f2:67:49:77:1c:
         58:d5:ea:96:ee:61:67:15:71:58:7e:46:3c:4a:65:cb:65:e0:
         8f:62:61:08:61:ca:0f:3d:3f:f1:c6:30:8a:b3:fa:9f:e5:09:
         6b:0c:e0:f4:4c:76:bb:eb:51:ff:6e:a5:41:b3:f8:e6:f6:77:
         c5:69:fc:fa:30:4f:b9:49:c7:c5:eb:3c:ca:fb:d0:8b:e8:b1:
         c5:d2:cb:6d:c8:bd:24:c4:5b:79:c9:04:e1:2b:fa:1d:7e:d6:
         1f:cd:f2:e3:9b:8e:bb:e7:8f:e4:69:cf:86:bc:a2:a8:0a:f6:
         c3:45:4d:0b:4e:5c:10:16:3b:dd:f5:bd:8b:4f:e5:1d:c3:ec:
         ba:b3:49:1b:a1:17:b5:ee:0f:04:80:1a:95:d6:ee:80:9f:0a:
         a4:1b:9d:75:d4:12:f1:8a:56:b3:f5:81:d4:f0:2b:5e:73:cc:
         88:4b:7d:41:bd:d2:2e:a9:17:b9:27:1d:65:6d:64:1b:e9:73:
         25:ec:d2:1e:f3:c6:a6:27:47:7e:e0:3b:6f:1e:e8:f4:ac:ab:
         6e:93:d0:67:c1:35:26:c3:42:3c:d9:6a:a5:9f:a7:66:39:28:
         b6:0b:1e:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0
MTFDNzY4MzgwHhcNMjUwNDI5MDEwODI2WhcNMjUwNTA2MDEwODI2WjAYMRYwFAYD
VQQDEw02ODEwMjY4YS05MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwkEnlZxEYAwNrd1pfBxkhjvsbmDuwqaPH94UeG1/rH4rb8uPted/JuMSVkV5
q0D1+gpMm5cZqskgshYmTPkJcGF5u1Vnha0l11gGHBcSdkQGWy4aMCkmmEUyBQ16
xq3TyyoY8UYG2JqsclKSfq7g1JgbaKoMYrveJ1U60ryfjirKZmJfg1UdnmDcxrU6
y2o0TmGjJwzj9LQG7fHWOrWqvjjvKgQtgjHH0oycht+AmMg2p27hL+reXh6p0NTS
Gk8Lig3RZwtLsqQSe+5lwNpKKgS49CZZIqt6WaZGCWneN2v1sxeXHMkSpzC/zAuF
CFijdMFBv+PSY1LFgxc1U3qNUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIN+DZ/o
BsgWrFil1YQHvXN9CV9RMB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3
N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh
RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE
aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAit7dSJqrW52GUJZY1WTWeECSeUT8dOB3x9XrphCyD8mdJdxxY1eqW
7mFnFXFYfkY8SmXLZeCPYmEIYcoPPT/xxjCKs/qf5QlrDOD0THa761H/bqVBs/jm
9nfFafz6ME+5ScfF6zzK+9CL6LHF0sttyL0kxFt5yQThK/odftYfzfLjm46754/k
ac+GvKKoCvbDRU0LTlwQFjvd9b2LT+Udw+y6s0kboRe17g8EgBqV1u6AnwqkG511
1BLxilaz9YHU8Ctec8yIS31BvdIuqRe5Jx1lbWQb6XMl7NIe88amJ0d+4DtvHuj0
rKtuk9BnwTUmw0I82Wqln6dmOSi2Cx7+
-----END CERTIFICATE-----
Generated at Wed Apr 30 00:53:00 2025 by rpki-client