Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft
File:                     LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft (raw, json)
Hash identifier:          q0RdBSakNjyKJd+6xGJfzWxdDrEOYnX5auMZwRrQI9c=
Subject key identifier:   75:8B:15:AD:F1:DB:48:C5:7F:0A:89:B1:7F:1A:E7:20:72:58:A7:2E
Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77
Certificate issuer:       /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677
Certificate serial:       053F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft
Manifest number:          0522
Signing time:             Tue 05 Aug 2025 00:04:59 +0000
Manifest this update:     Tue 05 Aug 2025 00:04:58 +0000
Manifest next update:     Tue 12 Aug 2025 00:04:58 +0000
Files and hashes:         1: LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl (hash: JAijG68M92VKtXTlsuZGdcHzcKIFGKDxsCOdrYceCzg=)
                          2: D8CA5BF0D91811EFA4F02F4EC4F9AE02.roa (hash: 0EFgLjyojEn+oExrioyWCuc3c6/85UK37c3kRT/1o4k=)
                          3: F0F715D8D91811EFAD9B2462C4F9AE02.roa (hash: 0eC5c42+O3/zR7ToxD38Dr0t546Zok3PpDvZy47K3EU=)
                          4: 1347AA9019FE11ECB459B141C4F9AE02.roa (hash: fCn+m1Y3s4qDIZUNYo4x+QJzX9KNTkFwagXKOoylYkw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl
                          rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 00:04:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1343 (0x53f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91356BB, serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677
        Validity
            Not Before: Aug  5 00:04:58 2025 GMT
            Not After : Aug 12 00:04:58 2025 GMT
        Subject: CN=68914aab-435f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:d6:dd:e6:74:b3:7f:28:e9:0a:64:09:bc:ab:
                    15:e0:a5:66:d6:0c:fa:7e:18:88:aa:fe:2d:d9:16:
                    3d:b8:05:87:1d:ac:57:64:a7:2d:2e:3e:57:24:3a:
                    b0:1c:60:40:d5:ae:de:17:f4:f4:fa:1b:6f:a3:7e:
                    4b:62:d8:56:05:15:fc:0a:e5:e3:08:fd:2c:87:f3:
                    30:41:a9:53:21:f8:7a:04:e1:26:f9:a3:13:8c:95:
                    4e:21:c9:0c:a7:f6:cf:d6:33:67:d8:7d:41:0f:65:
                    eb:88:99:18:bc:ab:75:db:bd:33:52:a3:bd:06:c9:
                    0d:4f:b1:c3:7e:53:15:c1:ef:54:1b:93:ba:43:ff:
                    a1:1b:4a:a2:44:e9:e0:a3:89:50:f3:1b:2f:6c:46:
                    62:58:03:c5:41:c3:07:fd:2e:60:13:3e:cf:e3:b4:
                    1b:b9:65:96:00:bb:10:c1:04:ee:d7:75:c4:d5:c8:
                    ad:18:86:9e:e8:b9:59:02:ff:3a:01:b4:2c:05:a5:
                    75:75:c8:4e:74:d5:a6:26:fc:44:f2:79:d6:ae:01:
                    d6:8e:e4:93:fb:a3:45:45:49:1d:95:a3:d1:ce:41:
                    ac:00:60:a0:b3:67:a7:0b:8e:34:e4:f3:8f:12:72:
                    66:19:f3:aa:4a:cd:47:7a:ec:aa:25:69:d8:f1:d3:
                    63:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:8B:15:AD:F1:DB:48:C5:7F:0A:89:B1:7F:1A:E7:20:72:58:A7:2E
            X509v3 Authority Key Identifier:
                keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:34:a7:39:c1:b4:e7:cc:84:4b:21:71:02:c7:1c:81:b2:17:
         5f:2b:b0:54:1e:35:79:61:b5:11:85:97:14:80:22:a9:cd:b3:
         e4:88:b3:0b:6d:aa:ad:8d:7e:38:60:81:d6:3e:69:16:bc:4b:
         74:ba:e1:62:0a:18:1f:cd:41:be:9e:c3:96:3a:6c:23:79:42:
         aa:14:5b:8b:a2:31:52:89:a5:c9:e4:b5:cd:9b:ea:4a:ed:bd:
         07:72:88:90:be:30:45:a0:1a:6b:07:2e:c6:0a:ef:ff:92:f0:
         f3:c0:33:9b:b3:d4:67:ae:86:d4:9b:ca:71:5d:89:e0:85:79:
         b2:b4:06:26:25:6f:ff:eb:4b:6b:e7:57:c2:08:58:8e:11:3f:
         96:13:a1:7e:d5:04:63:ee:4d:dd:00:ee:87:75:61:af:00:36:
         65:49:a1:6c:f2:aa:d5:b7:25:0a:ed:cb:10:5a:97:9f:94:30:
         c5:ce:44:83:1e:c8:d2:23:e2:5a:b3:27:5f:cb:6e:4d:a4:c5:
         65:b9:05:cf:0c:b7:fc:70:4b:4d:99:2e:c0:9e:40:e3:b3:29:
         55:ac:8a:7c:63:77:e6:18:29:6a:1c:d3:cb:19:c8:01:26:26:
         fa:3d:1b:7b:6c:bb:4c:ca:39:29:36:7a:6e:80:a0:fc:ef:ac:
         f7:03:1a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:06:40 2025 by rpki-client