Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft
File:                     HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json)
Hash identifier:          yQRZYZIgxBQXJFXFO4SL7o4oCnz8BktRPdlQTMYpWP4=
Subject key identifier:   46:48:5B:A4:FB:F6:41:EF:4D:AA:77:72:2B:08:AF:AF:98:78:C5:F1
Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D
Certificate issuer:       /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D
Certificate serial:       0376
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft
Manifest number:          0372
Signing time:             Tue 05 Aug 2025 01:28:04 +0000
Manifest this update:     Tue 05 Aug 2025 01:28:03 +0000
Manifest next update:     Tue 12 Aug 2025 01:28:03 +0000
Files and hashes:         1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: UJsFv2T1CKQGd3MGxRD+UBL9r5d8i00KJbPHXhP6P58=)
                          2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl
                          rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 01:28:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 886 (0x376)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D
        Validity
            Not Before: Aug  5 01:28:03 2025 GMT
            Not After : Aug 12 01:28:03 2025 GMT
        Subject: CN=68915e24-fe7a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:f7:7c:42:31:b0:aa:f8:55:6a:cc:bb:01:38:
                    67:7c:e7:f3:6a:00:eb:65:2d:d0:1c:45:c4:4f:fc:
                    2f:e0:cc:76:c9:75:42:45:8c:f5:01:34:6a:f4:9f:
                    11:d3:af:6a:78:a9:5b:d3:52:29:b0:e0:33:c4:8c:
                    2a:3a:eb:91:93:48:e8:e1:44:05:df:0a:70:88:b0:
                    f7:14:54:a0:20:2c:75:82:11:e5:d3:00:ce:54:d0:
                    dd:ca:d8:8f:94:bc:11:1f:36:84:9a:9c:bb:74:14:
                    12:f9:a8:06:58:ac:76:16:0d:91:c1:60:05:4f:de:
                    18:4d:ef:fe:3c:b5:f4:b5:b8:59:10:8a:d7:f5:0f:
                    ed:5f:e7:1e:b9:05:1f:fc:47:34:60:14:90:45:8c:
                    25:da:50:04:a0:be:a7:d6:31:0e:c8:89:cc:05:e5:
                    d5:2c:1b:8a:58:30:d8:02:ab:95:d5:f4:14:78:e1:
                    f1:79:fe:24:88:58:3e:a9:52:c8:ea:7b:60:59:fd:
                    ee:1c:34:76:2a:52:37:a8:9f:66:01:c4:ad:cd:a8:
                    08:8b:71:e6:91:0f:50:c9:c1:95:dd:03:a5:a6:99:
                    8d:27:ec:38:6d:01:25:60:72:1b:9d:47:4b:41:3c:
                    27:99:6a:36:72:e4:a5:7e:e1:30:bd:99:55:13:d1:
                    35:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:48:5B:A4:FB:F6:41:EF:4D:AA:77:72:2B:08:AF:AF:98:78:C5:F1
            X509v3 Authority Key Identifier:
                keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:e4:39:28:90:a1:ee:10:57:bd:f9:ed:df:36:b7:cf:1d:4c:
         11:66:13:b7:36:70:63:89:7d:fb:05:81:13:6d:7b:bc:d9:04:
         71:17:f2:07:ec:6c:8e:c7:2d:71:86:ff:25:e6:56:87:22:68:
         d3:4a:2a:ee:c6:77:97:6a:f3:b6:5a:50:d5:bb:ba:58:25:7a:
         5b:0b:c0:3f:b8:c8:94:f0:24:1d:4f:d7:ea:b3:6c:10:22:0b:
         e9:50:31:94:91:33:37:2f:a5:94:5b:8d:c4:9b:8d:57:8a:ca:
         5a:fe:9b:20:c5:02:6d:87:20:d0:3c:2c:a4:f5:6c:55:bd:2f:
         8c:aa:18:76:31:fb:c0:cd:8c:8c:f5:47:e8:44:66:19:2a:30:
         e5:ef:69:5d:18:4e:01:99:22:d3:13:80:60:ad:bc:05:ab:75:
         26:bb:fc:64:bc:82:9c:54:ec:fb:fb:ce:da:e2:69:fa:fe:90:
         ce:e5:97:fe:e1:ec:88:de:04:a1:fc:a5:97:9f:5d:a2:6a:55:
         35:a8:22:bf:c7:8e:a4:1a:0e:64:45:b0:2b:66:bc:cf:72:69:
         aa:0f:bc:ca:79:62:62:86:0c:57:1e:fd:46:34:67:31:4c:1d:
         a9:26:77:6d:29:55:12:2f:b5:07:96:2b:19:97:54:4e:2f:86:
         c0:a4:40:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:08:36 2025 by rpki-client