Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft
File:                     bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json)
Hash identifier:          fAb7d/yDKkcuIB/F/ldgBXZODTOEqpO85XO2ynOBads=
Subject key identifier:   8B:A8:60:A1:00:14:03:83:8B:79:13:8E:18:16:E6:A0:7F:CC:B6:56
Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65
Certificate issuer:       /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65
Certificate serial:       263F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft
Manifest number:          2626
Signing time:             Fri 08 Aug 2025 15:46:38 +0000
Manifest this update:     Fri 08 Aug 2025 15:46:37 +0000
Manifest next update:     Fri 15 Aug 2025 15:46:37 +0000
Files and hashes:         1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: TKlzX2bfJyiS6Er6U+Lp5qXlqDCsrj3K925NFoanTqs=)
                          2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: mvyjt+3dRIE1/Krz/XL4fNVu3c2fcm82NTuO/MfHBcQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl
                          rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9791 (0x263f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65
        Validity
            Not Before: Aug  8 15:46:37 2025 GMT
            Not After : Aug 15 15:46:37 2025 GMT
        Subject: CN=68961bde-fd65
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:e9:d3:37:a5:4f:ec:aa:89:46:ff:23:17:b2:
                    0b:8d:88:78:97:ce:e8:fc:44:0a:6f:b1:a0:a3:1c:
                    d8:86:48:cb:7f:81:25:a0:00:f8:ff:eb:78:cd:87:
                    28:ca:62:fc:af:8f:78:94:76:c3:1c:4d:34:84:2e:
                    fc:e5:a5:a6:38:a6:f2:f6:51:06:f9:c9:18:04:fa:
                    ab:28:7b:67:ca:ab:36:e4:76:14:37:5f:5d:91:f2:
                    3e:5f:b1:0f:d0:30:97:69:62:78:dc:70:2f:cf:d3:
                    c9:6b:d4:01:02:92:49:ec:16:11:cd:b7:80:f2:67:
                    24:a1:0a:4e:52:dc:72:59:55:91:ca:a8:02:a0:0f:
                    52:5f:ad:c7:95:35:33:76:58:eb:d6:5b:18:19:0c:
                    a4:9a:f8:e9:e6:e5:30:61:d8:63:21:b2:01:f3:f9:
                    d1:0a:c7:af:4f:3a:e8:a7:73:35:83:89:5d:0a:97:
                    06:c9:4b:9b:13:59:62:29:81:bf:d3:ca:62:39:56:
                    1d:9e:41:5e:0e:18:6c:d5:5e:9d:68:0b:f9:86:59:
                    1f:19:ca:ca:47:7c:1b:ba:36:09:54:7a:3d:62:e4:
                    fd:4f:a1:ca:8c:55:28:0e:93:11:67:ee:08:0e:bd:
                    bd:da:e8:47:9b:4d:cb:c8:68:36:82:ac:eb:21:5d:
                    d6:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:A8:60:A1:00:14:03:83:8B:79:13:8E:18:16:E6:A0:7F:CC:B6:56
            X509v3 Authority Key Identifier:
                keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:91:a0:ef:fb:a4:30:81:89:bc:42:2e:7c:4f:40:4d:f9:6c:
         8a:ae:2a:bf:66:46:e9:4b:60:1b:2c:ba:8c:a2:db:36:f9:4d:
         b3:f5:3a:11:a4:de:f4:4a:51:ce:ff:9a:55:e5:69:2f:34:43:
         1d:28:18:15:60:2e:ed:3c:30:c8:74:34:c0:66:c3:7b:4a:1b:
         02:a7:e4:ed:b5:ca:f2:35:5e:42:bf:06:dc:41:8f:a2:e3:f7:
         cf:d4:6d:9b:22:39:50:ce:bd:66:5e:df:fa:33:4d:12:28:36:
         50:a5:1c:a3:cf:2e:09:fc:7e:7e:f1:0b:c1:7c:c8:06:ae:75:
         05:49:d9:bf:24:5a:8c:34:cc:0c:f4:68:eb:75:e4:0b:05:df:
         2e:19:33:15:01:4b:50:eb:bc:6a:24:d1:6d:dc:8a:ba:b7:d4:
         27:b5:11:6a:ec:c7:c3:34:17:8f:29:87:96:60:52:5e:da:ae:
         17:9e:2d:02:68:30:48:90:9d:7f:23:30:91:0f:74:c9:70:58:
         92:68:3b:9f:94:0b:f1:e4:88:54:a2:90:25:3d:5f:92:78:35:
         f8:c5:09:66:56:52:11:fa:48:c1:99:e1:78:d3:2c:a4:65:ff:
         61:ef:99:7d:f0:5e:5a:42:7f:76:b8:9d:13:d0:ec:81:3b:23:
         82:d1:24:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:05:16 2025 by rpki-client