Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
File:                     SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json)
Hash identifier:          wJKuLFVGasWaORn6BXmEwW/Jh66avH7Lynhj7TOymeQ=
Subject key identifier:   6A:AE:B9:34:A0:59:69:39:FB:F9:70:1E:C1:31:82:FC:0B:5D:FA:EC
Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61
Certificate issuer:       /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761
Certificate serial:       01E3
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
Manifest number:          01DF
Signing time:             Tue 29 Apr 2025 02:50:14 +0000
Manifest this update:     Tue 29 Apr 2025 02:50:13 +0000
Manifest next update:     Tue 06 May 2025 02:50:13 +0000
Files and hashes:         1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: oWNF9CtpwXzm7ZAtV66n5UjouXO0NQTWNvNAW42B6vM=)
                          2: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 88kWEiY/06EoXdAjoPmCFzf4ibe9Kqek376AzBNc9lE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl
                          rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 06 May 2025 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 483 (0x1e3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761
        Validity
            Not Before: Apr 29 02:50:13 2025 GMT
            Not After : May  6 02:50:13 2025 GMT
        Subject: CN=68103e66-72c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:a5:7d:11:06:f2:c0:20:1a:c3:db:33:39:22:
                    60:fc:b7:4d:5e:f5:4a:91:58:6d:76:e0:24:d2:dc:
                    ba:73:da:e7:ff:a7:70:0d:5f:8d:72:45:ac:ea:41:
                    be:e0:97:87:47:67:74:10:9b:6f:02:56:60:68:72:
                    79:b1:fa:88:16:de:fc:4c:da:72:88:40:9c:4b:c6:
                    19:eb:1f:a7:46:e2:95:56:1a:72:e3:f5:e6:cc:84:
                    05:7b:18:67:bb:52:d9:5d:0b:3e:31:39:b5:30:a2:
                    fe:32:3a:61:d3:db:78:b7:f5:6c:53:8f:86:1c:31:
                    08:10:16:63:04:73:22:c5:24:7e:da:a4:eb:28:fa:
                    c6:9e:8f:7d:99:15:00:8e:1a:21:82:e9:6a:1e:7d:
                    0e:d3:eb:e2:6c:ae:49:07:4c:45:7e:62:1c:be:3e:
                    c4:ee:25:df:8d:73:26:2a:2e:9c:3a:5a:20:69:8b:
                    6c:13:d4:ee:7c:a2:88:ea:52:36:73:da:5a:00:05:
                    56:b2:43:fb:2c:19:f6:42:17:9a:c9:cc:52:de:2b:
                    5c:5a:c0:6f:64:34:52:00:ea:4c:cf:26:90:f0:6f:
                    de:a3:e9:41:11:c9:1e:ba:56:7a:73:1c:7b:e0:52:
                    38:1b:4b:c0:04:20:24:0a:98:98:d4:3b:b3:0b:26:
                    0f:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:AE:B9:34:A0:59:69:39:FB:F9:70:1E:C1:31:82:FC:0B:5D:FA:EC
            X509v3 Authority Key Identifier:
                keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:06:93:c0:21:fe:13:04:dd:84:8c:7a:2f:a7:29:62:ff:73:
         97:b6:30:ea:bc:5a:19:0b:f3:1a:66:c3:e1:b0:12:77:38:b4:
         0e:58:54:b2:38:77:8f:03:8e:20:48:fd:df:9f:17:99:be:d4:
         a6:a6:3a:3b:a7:55:04:01:06:56:78:34:c0:d4:1a:a0:55:d9:
         33:70:94:71:07:10:34:c7:ba:a3:e1:56:9d:99:47:7c:d8:23:
         d5:bf:56:ca:46:07:29:5e:98:06:30:fc:5c:26:5f:9d:0c:22:
         f1:7e:89:dd:eb:3c:7f:12:d3:ee:ae:0d:86:8e:a0:a3:a0:7a:
         52:be:d6:9d:0b:84:91:cc:a4:72:4f:58:be:df:00:03:62:5b:
         d1:a8:9a:70:5e:fb:26:92:a6:78:b6:ed:aa:0c:2c:f0:76:65:
         1f:51:08:24:81:c5:4c:fd:33:1e:84:1c:0f:ec:47:69:2b:ed:
         e4:8b:3e:1a:c6:45:bc:64:6f:40:44:96:6b:7f:82:27:11:69:
         85:36:48:e1:77:f8:f3:23:6f:9d:40:a0:7b:d4:9f:4d:5d:b2:
         00:ed:2d:41:23:ce:64:55:4e:5b:c6:ac:3e:6d:fd:76:1a:1a:
         fa:7e:7f:1a:45:0b:25:85:b6:e2:ca:a9:7b:42:db:59:a8:95:
         43:31:6a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 10:17:52 2025 by rpki-client