Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
File:                     iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json)
Hash identifier:          l+b3pvEpTDIGh+Fgg7iwH4IxBM1ti2+akW0bIeBcbMs=
Subject key identifier:   59:23:40:DD:7F:F2:5A:FA:3B:78:5B:9E:50:DD:9B:B4:CC:A0:F5:97
Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A
Certificate issuer:       /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A
Certificate serial:       01DE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
Manifest number:          01D9
Signing time:             Fri 25 Apr 2025 01:57:12 +0000
Manifest this update:     Fri 25 Apr 2025 01:57:12 +0000
Manifest next update:     Fri 02 May 2025 01:57:12 +0000
Files and hashes:         1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: XleRkmfMKkfk9VN1TAwyx8IVvSMmzO3U/JKRBJBN47c=)
                          2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: GwA8WNqmVW1s9tawzkiqtYC7xFjjdtlbsl+Ur+WNSNc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl
                          rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 01:57:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 478 (0x1de)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E6419, serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A
        Validity
            Not Before: Apr 25 01:57:12 2025 GMT
            Not After : May  2 01:57:12 2025 GMT
        Subject: CN=680aebf8-d8e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:40:1b:3d:15:d2:ad:56:b8:9f:55:1a:1b:dd:
                    c7:e5:c3:b3:1a:73:68:fc:c4:72:31:f3:f3:15:f5:
                    67:c7:d7:45:3a:fa:fe:b3:8d:a2:ff:8c:f4:53:89:
                    91:25:2a:e3:36:86:0b:57:f3:49:73:d3:22:65:e3:
                    04:7b:a2:e9:19:0b:b8:ff:39:de:84:15:c2:26:df:
                    83:d4:eb:6a:68:a5:3a:24:34:87:3a:e7:6c:c8:34:
                    b1:73:c9:5f:76:fd:c4:1e:59:98:5b:71:be:48:a9:
                    db:7d:fe:da:a4:e8:c0:a6:1d:b7:50:0e:0c:a7:22:
                    b0:ef:c8:bb:75:27:1c:b6:5e:f9:81:9b:07:0b:9b:
                    a5:e3:0b:14:cd:fd:18:ce:4e:ea:dc:60:7b:05:81:
                    07:f8:0f:23:70:96:8a:d5:75:59:e5:f4:c3:b6:2e:
                    8f:9a:f5:94:c7:85:c7:84:34:2f:03:b0:16:0c:b8:
                    0e:c5:c0:48:83:04:fe:64:1c:94:4f:b3:19:bf:fc:
                    e1:37:9d:0a:1d:6a:46:86:06:44:44:bb:eb:d9:69:
                    17:ab:95:29:89:cf:12:8f:53:1c:48:bd:25:57:cc:
                    0e:bc:fe:05:66:20:4f:f1:c4:64:78:5c:8e:36:8a:
                    27:c2:87:ac:cf:2a:1d:76:8d:77:fe:16:be:d9:4b:
                    a0:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:23:40:DD:7F:F2:5A:FA:3B:78:5B:9E:50:DD:9B:B4:CC:A0:F5:97
            X509v3 Authority Key Identifier:
                keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:d2:d4:33:26:55:02:6d:65:28:ab:61:17:a3:0f:58:b8:a9:
         07:6b:a9:09:05:8b:92:5f:9d:1b:df:02:22:20:a4:48:a9:b5:
         fa:2a:2c:f6:96:0d:a7:7c:82:47:46:36:52:4d:11:ba:9e:d8:
         c8:b4:78:07:7a:ef:32:24:4c:d4:a3:e9:91:1f:d6:98:08:5c:
         cb:f1:cd:2e:42:24:48:99:97:b8:42:7b:25:77:48:3a:50:25:
         1c:b7:e5:a8:23:f6:3e:79:d3:af:a4:5a:cf:df:8e:f8:29:b8:
         11:04:0d:21:b3:bf:45:fe:93:f5:e4:37:66:fc:08:4f:46:47:
         33:8a:1d:5e:33:a2:9d:5b:1f:1e:f2:a9:43:01:70:33:3f:31:
         60:49:7e:dd:51:7b:13:50:1b:e4:94:8a:e2:96:dc:f0:ce:0e:
         6e:32:d9:75:e4:40:60:32:ba:44:9f:25:a4:b9:6f:fc:1a:34:
         6b:23:cb:4a:6b:49:dc:34:30:7a:32:24:dd:a3:73:85:5e:14:
         e7:37:25:8c:81:6c:10:30:6d:c4:42:a4:9e:11:88:e6:37:f2:
         d5:c0:9e:42:24:6f:e8:09:4d:95:c6:bb:46:53:b8:f0:03:9d:
         8d:8b:5c:f0:2e:9e:42:f9:35:1f:ea:eb:b2:c9:0d:62:66:54:
         95:11:1e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:58:40 2025 by rpki-client