Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft
File:                     Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json)
Hash identifier:          O5d8le3nN8hUI2+s3RsGleqHLycvfQ9MKb0PIg7SnKQ=
Subject key identifier:   92:71:5E:DB:40:27:33:F0:61:12:7E:5C:42:8D:18:D3:BD:BA:4D:8C
Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1
Certificate issuer:       /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1
Certificate serial:       0427
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft
Manifest number:          0423
Signing time:             Fri 25 Apr 2025 00:09:26 +0000
Manifest this update:     Fri 25 Apr 2025 00:09:25 +0000
Manifest next update:     Fri 02 May 2025 00:09:25 +0000
Files and hashes:         1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: /nJQQsXEoBwCyZ1glTo3x3lPaafhK25yVHD7tlgzdgs=)
                          2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl
                          rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 00:09:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1063 (0x427)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1
        Validity
            Not Before: Apr 25 00:09:25 2025 GMT
            Not After : May  2 00:09:25 2025 GMT
        Subject: CN=680ad2b6-76cf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:ae:ee:d4:0b:4f:f2:6e:05:6e:87:d3:a4:17:
                    38:49:26:cf:d5:e4:eb:b5:56:82:9b:64:1d:d3:9d:
                    fa:48:80:6d:c6:73:d7:29:48:8d:ea:d8:76:4b:a4:
                    db:7a:79:d1:45:8b:99:73:b7:2a:26:4b:24:72:70:
                    6d:53:7b:7b:19:cf:4c:80:92:bc:ab:6c:5c:46:34:
                    75:47:54:ba:43:cd:e0:21:91:d3:90:9d:45:07:8f:
                    66:6a:c2:13:15:6a:ff:13:20:f3:12:f7:fd:7b:08:
                    0a:c9:11:c2:75:bc:ff:fe:4a:25:a4:ce:d4:57:3d:
                    10:7c:ba:be:9a:c4:39:04:34:85:fe:70:e1:83:ef:
                    d6:3c:0a:8c:01:59:7d:51:e1:6e:b8:cc:88:9b:ee:
                    01:41:5f:55:ec:a8:5c:a8:eb:12:86:e3:6c:e5:c4:
                    e8:38:b8:b6:5f:5c:c3:4c:9f:13:51:76:66:ab:70:
                    f3:d3:4f:63:59:37:b6:f0:2d:bf:85:1c:04:b4:6c:
                    d0:09:f1:e1:13:d4:14:9e:1c:cc:ce:bd:ab:3a:28:
                    2f:5e:1a:6d:28:17:9f:e4:1a:9e:d4:71:27:ad:96:
                    ab:9c:ef:0b:72:ed:15:fd:40:2e:63:bb:c2:74:a9:
                    dc:6b:72:71:cc:ae:82:1b:0b:45:45:a7:a7:fd:bd:
                    3c:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:71:5E:DB:40:27:33:F0:61:12:7E:5C:42:8D:18:D3:BD:BA:4D:8C
            X509v3 Authority Key Identifier:
                keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:84:a7:24:43:52:5a:f2:73:83:83:fa:d3:39:3b:b8:60:c4:
         aa:8f:d7:3f:8c:ac:4a:d9:79:7d:f1:86:dd:bd:d4:7c:d6:7d:
         81:89:31:98:ef:99:69:0c:90:15:91:7c:99:90:70:3d:1e:a8:
         f6:0b:70:ae:3e:07:ad:d3:ea:cb:9e:11:f3:79:9c:30:ca:0a:
         f4:8d:2c:10:9f:13:49:04:c5:89:05:98:74:6d:75:06:f4:36:
         09:ef:3a:47:19:1d:d0:f9:32:88:21:4a:d3:b4:a2:49:3e:27:
         c4:bc:97:2a:33:5f:d8:28:2e:be:82:30:bd:1a:da:3f:99:ed:
         e8:9d:8e:f6:ea:a7:d6:e9:b3:da:1a:5a:5d:15:5d:a4:13:63:
         e5:9b:f6:8a:1d:ea:98:77:20:93:bf:82:62:d9:5c:4f:c4:45:
         09:80:b4:37:31:81:f9:80:1f:31:b3:1e:4b:45:de:11:34:b3:
         24:56:d6:66:40:77:6b:0a:e1:6b:10:f3:f6:95:ba:7c:4b:17:
         6f:44:28:cd:36:14:10:2b:04:73:00:90:85:86:d3:c2:46:07:
         6a:38:45:91:9d:d3:56:23:e7:47:08:01:a0:f9:de:9a:2f:46:
         5f:06:f4:b7:5f:74:e9:34:ac:cd:a6:c2:6d:0e:e3:eb:e0:61:
         8f:0f:40:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:58:55 2025 by rpki-client