Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft
File:                     -bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft (raw, json)
Hash identifier:          IgYK0URdcW9VC8wrG8mbBPzt2Jog1qG24CVFDt6osc8=
Subject key identifier:   2D:22:F7:71:BA:F8:C6:55:AC:48:66:63:57:E4:68:8D:D9:37:8F:7D
Authority key identifier: F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6
Certificate issuer:       /CN=A9121D73/serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6
Certificate serial:       0BCE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft
Manifest number:          0BC4
Signing time:             Sun 10 Aug 2025 18:56:24 +0000
Manifest this update:     Sun 10 Aug 2025 18:56:23 +0000
Manifest next update:     Sun 17 Aug 2025 18:56:23 +0000
Files and hashes:         1: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl (hash: 7xEoieN/wkypSbpI23kQkyOmJZpKkb24EfTWx/2/TJQ=)
                          2: 01A8B084262811EA8269E33EC4F9AE02.roa (hash: 3edR8k68PlyDLwSNioDrZi097Di1Z0qsLBIpivE7sS8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl
                          rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3022 (0xbce)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9121D73, serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6
        Validity
            Not Before: Aug 10 18:56:23 2025 GMT
            Not After : Aug 17 18:56:23 2025 GMT
        Subject: CN=6898eb58-92dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:00:01:c7:53:d6:12:ee:9b:4f:a1:6e:07:e7:
                    f4:77:ea:d8:18:b4:a9:ec:4f:f2:ab:d6:e2:c7:5c:
                    8d:75:8d:95:11:8d:e8:8a:7a:99:a4:74:ea:1e:9f:
                    56:12:b3:49:ce:ef:c5:68:52:87:df:7e:dd:d8:d9:
                    0a:16:92:77:a9:c2:18:47:15:da:d2:0f:5c:9b:5d:
                    36:b0:a5:13:c1:4b:eb:e8:da:d4:8a:9f:9c:0b:a6:
                    0a:ce:4e:4b:4c:b9:ee:2b:9f:1b:02:aa:ee:ec:b3:
                    45:3e:49:1c:4a:a9:07:f7:f7:a2:56:13:de:2a:c0:
                    a6:28:da:55:d1:17:cc:9e:8d:b2:2d:28:2c:f5:22:
                    51:7e:74:b0:5a:b6:e5:27:17:54:29:07:bb:43:68:
                    65:e6:a0:6b:37:e7:04:44:dc:33:3b:ac:52:0b:8b:
                    57:6d:0a:d4:d1:3a:62:85:4d:aa:87:d6:70:f7:7f:
                    38:8c:0b:33:15:cb:48:6a:7d:30:82:64:85:c5:ec:
                    9f:f1:26:0c:c0:84:c6:ad:04:c0:d2:88:44:bb:1d:
                    fb:fe:1f:8b:a5:f1:7a:d2:50:e0:db:f3:40:ee:a4:
                    cb:01:d4:ce:85:a5:f9:12:13:70:fa:09:eb:7f:f7:
                    a4:b1:cf:ec:09:66:e7:fb:f8:47:b3:09:93:af:31:
                    31:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:22:F7:71:BA:F8:C6:55:AC:48:66:63:57:E4:68:8D:D9:37:8F:7D
            X509v3 Authority Key Identifier:
                keyid:F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:6b:6e:8a:d9:e9:e6:32:bd:e0:14:dc:19:21:d5:16:e8:84:
         83:60:e7:35:73:74:5e:32:f8:68:64:31:60:c0:d4:2c:c9:cf:
         9c:ec:04:1d:a4:95:35:ff:04:b1:65:ef:11:da:1e:22:aa:56:
         72:9f:42:a0:69:c4:97:26:b1:61:8f:b2:c5:69:a4:fe:6d:2a:
         5c:0c:d0:bb:dd:dc:38:39:0c:2e:c6:be:cd:f7:e1:23:40:a3:
         c8:32:4a:39:93:9b:5a:ec:bf:c3:eb:23:43:d8:5c:30:da:c6:
         8b:2e:c4:76:67:5c:68:80:ec:2e:ca:d2:3e:d9:85:24:03:a1:
         5d:5e:23:9a:a5:5c:d3:7c:6a:c9:49:2d:b0:ab:d8:19:ff:c6:
         86:a4:8e:de:35:cc:58:cf:89:ae:74:e9:86:08:03:dd:2b:f9:
         f4:86:ae:f6:f1:3b:8a:15:a6:01:72:8c:00:e8:1d:90:15:d9:
         dc:29:f0:fb:b6:1b:4a:51:b2:c6:fd:4a:07:37:f5:6d:91:4d:
         39:77:34:ed:8d:6a:dc:99:63:d5:45:4c:a6:1c:b8:ce:a1:60:
         c6:84:12:61:6e:2d:0c:07:ec:c0:d0:f9:4a:db:1a:ed:ed:a3:
         25:11:ea:55:41:bf:9c:74:9d:83:c5:61:35:23:1d:85:04:d1:
         3b:41:6d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:51:14 2025 by rpki-client