Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft
File:                     diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json)
Hash identifier:          I/D+08S5mHikwBZ+Rfwf1O0SXoEWkBIpM8nhQmJBsKM=
Subject key identifier:   C6:58:55:3E:DC:9D:35:35:87:A8:E7:6D:69:AD:77:3F:46:F6:FF:C0
Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC
Certificate issuer:       /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC
Certificate serial:       6C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft
Manifest number:          6B
Signing time:             Sat 09 Aug 2025 07:26:04 +0000
Manifest this update:     Sat 09 Aug 2025 07:26:04 +0000
Manifest next update:     Sat 16 Aug 2025 07:26:04 +0000
Files and hashes:         1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: 2+8A26UJ3i4gSIhlFZDItI6tcMm+v3jxv/ho0xDDC6U=)
                          2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl
                          rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 108 (0x6c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC
        Validity
            Not Before: Aug  9 07:26:04 2025 GMT
            Not After : Aug 16 07:26:04 2025 GMT
        Subject: CN=6896f80c-e89f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:33:23:e0:07:63:92:ce:67:17:29:43:d3:4a:
                    89:d4:82:eb:35:0a:11:89:af:de:b7:55:ef:92:ad:
                    32:19:17:a7:a0:06:f8:3a:ab:a7:d1:2d:53:0c:5a:
                    52:97:10:62:ce:20:c8:bd:3a:2e:ae:9a:2e:34:e4:
                    ea:31:1b:c7:b5:a4:e3:84:9b:69:c2:e1:c9:da:6d:
                    ef:5b:1b:13:f0:81:46:46:74:af:c3:a2:a0:cc:44:
                    e9:fa:05:ed:d2:53:36:3f:2d:40:cf:39:df:84:34:
                    9b:68:06:a1:15:8c:06:31:62:03:ab:2c:5a:8e:25:
                    08:bc:70:51:6c:a2:b6:57:0c:a6:41:52:a4:32:2c:
                    ec:e5:8d:3e:11:9a:d9:f7:1f:57:e0:28:04:3d:63:
                    c9:8e:18:e2:4e:8b:43:e6:24:a5:40:39:1e:ea:bf:
                    c7:d5:6f:c7:f1:14:b1:14:d3:e8:0b:24:9e:19:0c:
                    e3:4e:a2:be:3f:c4:6b:61:5b:62:b5:2b:c8:73:4c:
                    6d:7f:23:f4:dc:98:85:0e:95:d2:7f:8b:0d:6b:c3:
                    74:84:2e:cd:7f:60:da:d5:87:b2:cc:d7:a0:84:4b:
                    8b:2d:df:00:31:56:20:9f:7f:e9:4e:f4:ce:01:5d:
                    fc:a1:9d:b8:64:a7:1c:b1:1c:32:26:05:e7:da:56:
                    e4:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:58:55:3E:DC:9D:35:35:87:A8:E7:6D:69:AD:77:3F:46:F6:FF:C0
            X509v3 Authority Key Identifier:
                keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:59:5e:9c:1b:d0:00:13:84:19:9b:2b:ec:25:b1:aa:49:68:
         98:af:10:dd:ed:1b:9a:0c:b8:07:cf:03:d1:73:6f:92:0a:e9:
         6d:d8:d8:e6:fb:cf:cb:18:91:dc:4d:a6:59:ed:3d:d2:22:eb:
         3d:4f:c2:31:7b:bc:19:da:df:76:ed:2a:c8:93:23:b5:da:8d:
         71:64:5a:8c:c4:39:9c:32:a7:14:2c:8e:91:61:38:5a:3f:4b:
         f8:79:07:21:c2:48:21:64:3e:60:5d:5e:85:8d:3b:26:2d:10:
         7c:44:3b:6e:9c:e9:c6:42:0d:bb:f7:6f:c7:94:53:b3:73:47:
         f3:c5:c9:f9:22:c1:8a:4f:f8:1b:52:75:6a:86:23:a1:1b:89:
         34:66:8f:48:d0:10:78:40:ff:bf:ec:7a:1c:42:79:2e:cd:4f:
         b5:24:c0:71:4b:12:4d:5b:dc:0d:9c:b2:fe:2c:6e:61:d6:e4:
         71:68:2b:07:21:44:1e:fa:b7:0a:0c:4c:f9:62:f5:38:07:79:
         e2:07:11:cf:ac:23:8e:11:ff:31:82:b0:18:f4:e5:5f:1e:39:
         16:43:e3:cf:f2:3c:00:6d:21:5c:0b:48:a5:e9:82:7f:ca:aa:
         6a:3d:f2:5d:5f:11:88:c8:25:d7:30:01:75:06:bd:97:f1:de:
         39:aa:51:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 06:03:12 2025 by rpki-client