Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
File:                     Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json)
Hash identifier:          JBAxgfvru8Qa97Te/qBPRtrxYS0IhXON48QvgtIbFPk=
Subject key identifier:   00:06:80:4E:28:A0:3F:B9:32:4E:F6:7C:8F:79:F4:74:43:32:69:7D
Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86
Certificate issuer:       /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286
Certificate serial:       0134
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
Manifest number:          012E
Signing time:             Fri 25 Apr 2025 03:41:47 +0000
Manifest this update:     Fri 25 Apr 2025 03:41:47 +0000
Manifest next update:     Fri 02 May 2025 03:41:47 +0000
Files and hashes:         1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: yjRdjT79uWDvr5qYX7shQOqtunhiSj8Uz/4jS4A12u8=)
                          2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=)
                          3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl
                          rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 03:41:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 308 (0x134)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286
        Validity
            Not Before: Apr 25 03:41:47 2025 GMT
            Not After : May  2 03:41:47 2025 GMT
        Subject: CN=680b047b-506b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:ee:b5:7a:5a:26:bc:6f:e9:9c:46:7d:a0:67:
                    47:fa:63:65:2e:e3:35:66:d9:d7:0e:b4:5e:59:62:
                    74:14:1f:d8:6c:ed:ec:9a:82:80:3f:9d:d1:4e:d3:
                    b0:ce:50:5f:ea:2e:61:b5:37:25:81:19:56:95:8a:
                    9e:59:78:3e:09:df:dd:98:56:e7:14:66:e9:97:98:
                    8c:37:57:fd:00:ae:3a:29:e7:d1:cd:2c:10:21:7c:
                    4f:1f:42:94:49:0b:c3:55:bd:2a:55:e3:75:e2:7e:
                    0d:3b:ff:c7:df:fc:33:9a:1d:07:5c:61:1b:c7:ac:
                    26:9e:85:ba:cd:5e:ff:27:78:c3:c8:1e:0f:9b:06:
                    24:2a:a3:03:12:f6:ea:5c:29:12:9d:1c:d7:95:63:
                    0b:c5:44:49:7d:3b:03:76:bf:6e:e9:23:e2:6a:e1:
                    a2:89:aa:7c:8d:c1:7e:79:29:e3:58:9f:ed:28:8b:
                    97:e0:6b:64:6c:da:4e:81:4e:01:80:cd:b7:f3:66:
                    14:bf:50:f8:14:5b:5d:32:c0:29:14:d3:aa:b8:86:
                    ce:75:09:dc:c6:5a:14:92:01:0a:6b:4b:37:07:6a:
                    d8:7f:6f:39:84:ad:ee:d9:81:58:0f:d2:d8:6b:7d:
                    bc:75:45:dc:0c:93:8f:04:76:43:9a:bd:6b:8b:84:
                    14:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:06:80:4E:28:A0:3F:B9:32:4E:F6:7C:8F:79:F4:74:43:32:69:7D
            X509v3 Authority Key Identifier:
                keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:33:b5:b0:87:7e:ca:e2:6f:6d:72:f9:07:b9:e8:f5:15:25:
         db:a4:b9:fc:e4:73:1f:c8:76:ab:9d:3a:59:71:7a:59:fb:b3:
         f9:82:25:22:01:a5:f5:60:d7:d3:d2:7f:d5:ad:1d:1f:84:da:
         55:72:06:75:8d:f4:49:ae:9e:e7:59:1b:d7:4c:ae:ba:43:7b:
         ee:02:72:f6:8b:a4:db:17:d0:8a:3a:b7:35:27:8f:3f:b8:6d:
         a6:80:4f:59:8d:ab:4d:f3:1e:c8:32:d2:85:0b:59:90:1a:04:
         50:f5:83:de:c0:f6:83:b7:b3:6c:24:cf:33:88:ee:91:57:c6:
         55:86:15:9e:9b:1f:f7:e5:96:c7:e4:ea:73:2d:9a:4b:0a:ad:
         41:e6:40:e2:b1:19:16:f1:75:de:7a:b0:14:9e:74:86:7f:9a:
         c7:10:81:8e:63:e7:e6:f1:b0:11:d0:99:ca:f8:30:e8:12:ff:
         7b:89:29:da:fa:f0:e1:17:8e:89:e9:09:10:fe:1c:2f:7f:fc:
         23:10:12:a4:91:dc:51:d4:a6:88:b4:69:98:fc:16:45:f1:14:
         ca:2e:98:65:06:f7:92:2c:36:ad:b5:68:5d:3b:2b:ed:a8:52:
         09:bd:a8:00:95:40:e6:36:cc:61:36:fe:38:7b:a9:b1:15:12:
         bf:c6:1a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:59:35 2025 by rpki-client