Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
File:                     SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json)
Hash identifier:          W1T5YeOdCrjfsNV6M29hH3nap3VTdz2xd36iEBTjltE=
Subject key identifier:   D2:14:CC:7F:52:77:F7:71:1A:19:2F:DA:EC:49:65:23:47:3C:FF:49
Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61
Certificate issuer:       /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761
Certificate serial:       01E1
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
Manifest number:          01DD
Signing time:             Fri 25 Apr 2025 01:57:27 +0000
Manifest this update:     Fri 25 Apr 2025 01:57:26 +0000
Manifest next update:     Fri 02 May 2025 01:57:26 +0000
Files and hashes:         1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: CrOc5yeYuIKjzFZxqM50nhuXjHMQP/ZyQy0k7I6cR+s=)
                          2: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 88kWEiY/06EoXdAjoPmCFzf4ibe9Kqek376AzBNc9lE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl
                          rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 01:57:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 481 (0x1e1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761
        Validity
            Not Before: Apr 25 01:57:26 2025 GMT
            Not After : May  2 01:57:26 2025 GMT
        Subject: CN=680aec07-3298
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:7a:ae:e9:82:c5:fb:fd:f2:4f:c9:04:39:6f:
                    34:be:81:bd:42:6e:3c:45:d2:0f:0c:1e:b0:40:59:
                    59:50:3c:04:50:39:81:f2:0d:3e:e4:a0:09:bb:79:
                    af:f9:d8:38:ff:b3:e4:ea:b3:04:35:3c:c9:ce:56:
                    5b:96:50:a8:66:88:70:5c:8d:81:6c:a2:23:46:24:
                    33:11:44:fb:e3:5e:87:b5:52:c0:7c:1c:23:c5:51:
                    f6:d7:d7:7e:33:64:8a:35:cb:e1:fd:39:0d:ca:c6:
                    de:50:40:52:9c:b8:67:a6:ca:c6:b9:f7:f5:0b:6b:
                    1a:64:27:67:eb:0e:cf:c6:8d:3a:da:6c:0a:3c:18:
                    0a:d7:42:bc:5a:82:63:dc:6a:a7:92:d6:a5:7d:b2:
                    7a:05:68:6d:b7:33:45:f0:38:a2:48:ff:11:54:37:
                    58:20:fd:fc:78:0c:d8:ab:2a:f4:05:53:2c:c9:78:
                    7e:3f:52:7f:7c:ea:76:13:c3:6d:ad:d1:de:f3:fe:
                    52:a0:52:af:f0:68:f5:8e:8e:99:eb:50:36:ee:52:
                    b4:d5:b0:1b:71:ab:dd:1b:b6:7d:e3:eb:5e:1d:62:
                    4b:c1:75:f1:03:04:cb:38:9f:3f:45:17:2c:33:0d:
                    ad:a5:47:75:7a:82:81:40:58:5c:68:00:99:14:43:
                    3e:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:14:CC:7F:52:77:F7:71:1A:19:2F:DA:EC:49:65:23:47:3C:FF:49
            X509v3 Authority Key Identifier:
                keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:36:7e:4d:15:98:df:ed:13:b2:26:cb:4e:62:ed:84:76:cc:
         a2:1a:ab:a3:8b:66:77:0a:9c:66:59:5e:98:b2:bf:e9:17:1e:
         b7:92:66:67:29:34:4d:7b:0d:c1:13:bb:1b:54:fa:01:16:13:
         62:16:ac:2b:66:c8:45:67:d5:e8:5d:13:1d:26:b7:52:65:75:
         d3:12:b3:18:05:21:f3:c1:48:94:21:7f:fc:f1:f0:61:f8:4c:
         dd:ff:6a:a9:88:9f:f8:c4:d8:af:c6:69:90:fc:9c:e9:48:d9:
         3b:b9:eb:d8:80:45:66:ba:e6:24:e1:03:3e:73:1e:25:ba:e5:
         31:d4:92:2f:ca:12:4f:f7:09:59:75:a7:71:e2:a2:2d:0e:bc:
         0c:5b:b3:89:a3:6e:2a:07:f2:42:98:af:2f:6c:87:db:79:75:
         46:ab:04:47:07:ef:0d:0e:c6:1f:e7:0f:1c:8b:c0:a0:e5:3b:
         df:4e:eb:bd:c6:88:13:b7:a2:9f:fb:53:78:36:18:85:40:8d:
         17:ea:5e:9d:46:be:c8:7d:52:8c:1b:b9:d7:57:6e:91:f7:14:
         a6:ac:59:f3:01:ed:64:ea:ab:ef:7f:ae:db:a8:e9:96:5f:9b:
         c4:6c:2e:4a:f3:d1:11:f3:03:bf:66:ba:65:32:b3:17:b6:e5:
         7e:6e:76:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:59:19 2025 by rpki-client