Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft
File:                     knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json)
Hash identifier:          Bx45IZdUhDORZXO5Dc2x/6EnlxF590rj18MAKYtVWtU=
Subject key identifier:   FB:71:4C:A4:B7:29:D0:6F:EC:0D:AA:B2:E8:DB:7D:C1:9A:69:10:D4
Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D
Certificate issuer:       /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D
Certificate serial:       070D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft
Manifest number:          0704
Signing time:             Fri 08 Aug 2025 22:17:13 +0000
Manifest this update:     Fri 08 Aug 2025 22:17:13 +0000
Manifest next update:     Fri 15 Aug 2025 22:17:13 +0000
Files and hashes:         1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: PtMWWqVmFOY0LN8TLY04CWMSCrgLRLefeWC27N2T4/w=)
                          2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl
                          rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1805 (0x70d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D
        Validity
            Not Before: Aug  8 22:17:13 2025 GMT
            Not After : Aug 15 22:17:13 2025 GMT
        Subject: CN=68967769-42f4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:6c:7e:bc:42:f0:67:7b:34:f4:64:ad:61:d1:
                    64:d5:c2:a2:34:bf:ec:17:be:82:da:71:4b:ba:d4:
                    e1:2a:4a:39:fe:42:56:fa:2d:1c:04:c9:3c:f1:09:
                    3b:28:ae:99:cf:7d:02:e2:29:30:40:96:cb:f0:63:
                    4a:6d:19:7e:de:df:58:6c:ad:ca:dd:8d:f2:42:b6:
                    e3:4e:2a:ed:71:d8:18:7d:60:ef:a9:73:8f:29:71:
                    43:62:da:32:88:a8:39:95:b4:ef:9c:fb:93:98:3a:
                    d4:48:ef:22:d7:69:b7:11:00:06:07:a4:7f:9e:58:
                    bd:9a:7b:e9:4e:09:26:14:32:81:0f:23:53:d5:b0:
                    3d:83:40:39:d2:41:cb:1c:ea:c5:35:78:d4:3c:09:
                    0e:c1:13:64:03:b9:cd:89:05:fc:d0:6b:9d:e0:8a:
                    db:b1:ad:0e:41:0e:83:ce:e3:fa:cc:62:50:9b:9d:
                    53:db:55:65:01:c3:e5:06:9b:ef:fc:2c:ea:b8:e3:
                    e2:2f:c6:8a:8c:7c:be:c3:a4:d9:e8:4f:65:dd:9e:
                    9f:24:85:0d:99:d9:73:82:53:9f:65:d2:4a:c9:a7:
                    d6:a4:e0:13:cf:3e:a4:20:8b:cd:c3:dc:bb:58:18:
                    9b:e2:36:16:b0:98:49:3a:77:61:a3:25:1b:eb:2d:
                    78:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:71:4C:A4:B7:29:D0:6F:EC:0D:AA:B2:E8:DB:7D:C1:9A:69:10:D4
            X509v3 Authority Key Identifier:
                keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:7e:12:25:c4:52:70:6f:3c:69:e6:aa:96:8b:b8:e7:09:ff:
         bd:8d:e9:74:5e:98:17:e7:67:29:60:fa:e1:a9:fd:0a:74:d6:
         d4:3b:20:8a:09:3e:9a:36:f7:08:ae:e4:4d:20:11:a6:c8:a1:
         ce:50:5c:9d:73:ba:ad:c9:6a:c2:28:c6:78:4f:3f:34:01:c0:
         07:74:aa:88:b0:7f:93:43:0c:d7:68:14:17:62:17:8e:0a:cd:
         19:91:cd:61:6c:2e:92:be:ef:7c:2d:53:fe:30:8b:59:4e:81:
         22:92:d2:5f:ad:ca:97:1f:bf:4f:57:71:91:7a:8a:4e:84:e8:
         ad:f2:a0:cd:4a:13:4d:94:55:4a:a8:4b:7a:a3:b6:de:0d:db:
         14:67:d3:5d:d8:36:8f:53:63:8e:dd:f6:61:1d:04:58:86:05:
         e6:5d:b8:e0:60:51:36:63:ae:04:c9:bf:74:96:66:8c:28:b2:
         e9:8e:02:ff:4e:05:40:1f:66:61:dd:8d:5d:1a:c6:40:93:5c:
         03:18:d5:55:f5:4c:cd:fb:3d:07:b2:09:15:e3:a0:b1:39:c3:
         f6:97:94:63:be:12:2a:a2:5a:3b:6c:9e:a1:d5:ac:1f:28:c6:
         a3:44:81:8b:da:97:c0:f2:82:bd:e2:d1:e9:ae:ca:2f:8e:6a:
         ca:12:00:29
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw
NjY5NjQ4M0QwHhcNMjUwODA4MjIxNzEzWhcNMjUwODE1MjIxNzEzWjAYMRYwFAYD
VQQDEw02ODk2Nzc2OS00MmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3Gx+vELwZ3s09GStYdFk1cKiNL/sF76C2nFLutThKko5/kJW+i0cBMk88Qk7
KK6Zz30C4ikwQJbL8GNKbRl+3t9YbK3K3Y3yQrbjTirtcdgYfWDvqXOPKXFDYtoy
iKg5lbTvnPuTmDrUSO8i12m3EQAGB6R/nli9mnvpTgkmFDKBDyNT1bA9g0A50kHL
HOrFNXjUPAkOwRNkA7nNiQX80Gud4Irbsa0OQQ6DzuP6zGJQm51T21VlAcPlBpvv
/CzquOPiL8aKjHy+w6TZ6E9l3Z6fJIUNmdlzglOfZdJKyafWpOATzz6kIIvNw9y7
WBib4jYWsJhJOndhoyUb6y14QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtxTKS3
KdBv7A2qsujbfcGaaRDUMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx
N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT
RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f
SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAYfhIlxFJwbzxp5qqWi7jnCf+9jel0XpgX52cpYPrhqf0KdNbUOyCK
CT6aNvcIruRNIBGmyKHOUFydc7qtyWrCKMZ4Tz80AcAHdKqIsH+TQwzXaBQXYheO
Cs0Zkc1hbC6Svu98LVP+MItZToEiktJfrcqXH79PV3GReopOhOit8qDNShNNlFVK
qEt6o7beDdsUZ9Nd2DaPU2OO3fZhHQRYhgXmXbjgYFE2Y64Eyb90lmaMKLLpjgL/
TgVAH2Zh3Y1dGsZAk1wDGNVV9UzN+z0HsgkV46CxOcP2l5RjvhIqolo7bJ6h1awf
KMajRIGL2pfA8oK94tHprsovjmrKEgAp
-----END CERTIFICATE-----
Generated at Sat Aug 9 23:11:52 2025 by rpki-client