Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft
File:                     wvKOnRiEOcT-afY6TKptpCSWKR0.mft (raw, json)
Hash identifier:          ecklaF3NcnT7SCNGqpBMuWZJuHBZb1cRsawSiEGzJ8E=
Subject key identifier:   B8:A7:A6:08:74:08:17:B1:2F:4F:BE:EE:3D:5E:BE:CD:7B:C6:A7:06
Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D
Certificate issuer:       /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D
Certificate serial:       0564
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft
Manifest number:          0542
Signing time:             Sun 03 Aug 2025 00:02:42 +0000
Manifest this update:     Sun 03 Aug 2025 00:02:42 +0000
Manifest next update:     Sun 10 Aug 2025 00:02:42 +0000
Files and hashes:         1: wvKOnRiEOcT-afY6TKptpCSWKR0.crl (hash: NUqgAwkhjjULxhrZicbvA8mJSfAR5bbMaf7ZezNMBvA=)
                          2: 35A768B8563B11EC94608B5BC4F9AE02.roa (hash: PT6HAQnCKQ1h24wBLOcqnEqZNrhbuPQnC+z2D3m/yIA=)
                          3: 24AE273C2D1111EE85C59810C4F9AE02.roa (hash: fJSwaqO5xx9Q9RIgs6JtYncNmKK6M8gTn37HYZrh54Y=)
                          4: BFFF6C4A07D911EDA41A0B25C4F9AE02.roa (hash: p2UL6GD3BL6Vbs5hBii2dCX7XInOsF8w0LqpGVSuwTU=)
                          5: C08B939607D911EDA41A0B25C4F9AE02.roa (hash: mYVTb3naQfgNMS7fIevSh0fymgDfaPtpkRpDdX0Fp/8=)
                          6: 2379396E35DA11F08BAAE414C4F9AE02.roa (hash: 918uflqRaxL4teDIN56OfUziBRRQmbbgHsTgJ3UnMS8=)
                          7: BCE8827C4EB011ECA708A867C4F9AE02.roa (hash: 6UFCXsHGkBs9mNJ/P0P2x3t8KMswz8UkcFEG5pRtYR0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl
                          rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 10 Aug 2025 00:02:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1380 (0x564)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D
        Validity
            Not Before: Aug  3 00:02:42 2025 GMT
            Not After : Aug 10 00:02:42 2025 GMT
        Subject: CN=688ea722-1758
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:11:82:d8:d2:21:c9:ce:56:b4:03:aa:e6:cd:
                    3c:76:3e:3f:df:7d:47:22:46:a0:22:db:7f:29:51:
                    79:da:66:1d:5f:08:7a:d8:47:62:cd:c2:f3:d6:a0:
                    1d:01:39:6b:12:cd:5a:fe:c3:b9:32:99:15:fd:e6:
                    76:0c:ec:89:8f:70:c6:68:a4:3f:b9:6b:18:2d:77:
                    f4:01:33:0e:7b:03:b2:a9:11:8c:38:28:89:0f:18:
                    3c:3c:70:86:98:89:ba:cc:57:7e:89:df:66:14:e0:
                    d0:f7:12:53:77:87:39:82:e2:06:20:b0:ab:fc:cb:
                    5f:6d:a9:09:4d:62:e0:c5:26:a7:92:12:21:d3:ce:
                    86:47:b5:e9:16:40:4a:71:b3:9c:4e:3b:0b:6a:90:
                    56:71:b8:8d:ed:8c:02:1e:27:f4:b5:c0:2b:79:83:
                    5b:58:81:b2:b4:0a:06:82:e8:f6:c0:0f:8b:93:4b:
                    c1:81:65:1f:ce:bc:1c:cc:e3:40:d1:7d:9d:4f:7a:
                    15:ac:40:52:66:7d:c3:d3:a8:d1:5a:2a:00:e5:d9:
                    f6:7e:3a:e8:a2:8f:fe:07:b9:2d:b8:9f:ab:11:89:
                    cb:26:f0:18:99:6f:c9:8a:72:7c:20:4e:b2:0b:51:
                    f3:e3:6b:cd:87:dd:77:2e:ba:e2:33:2b:53:52:3a:
                    a2:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:A7:A6:08:74:08:17:B1:2F:4F:BE:EE:3D:5E:BE:CD:7B:C6:A7:06
            X509v3 Authority Key Identifier:
                keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:06:58:60:9d:ff:1f:d1:14:fa:b3:52:c4:a0:67:6f:9a:db:
         d9:8f:f7:cd:1d:f5:f4:18:93:1b:4e:fe:c1:d2:bb:a0:36:84:
         bb:59:03:5f:37:98:99:8e:83:df:12:e7:b7:f4:3b:0d:a9:d0:
         95:e4:a6:a0:88:d0:9f:65:ed:6b:54:e7:dd:eb:48:fe:73:02:
         2b:71:75:16:42:fc:6b:d5:26:30:4e:84:7d:f1:a5:24:69:92:
         79:02:29:63:7e:21:54:40:16:cf:83:25:82:1f:d6:66:ad:f4:
         0b:4e:73:cb:c2:79:cc:61:0c:9f:b0:2c:f1:38:bf:96:2f:b5:
         fd:d2:fd:67:ef:a5:63:1b:a9:60:53:eb:92:56:4e:41:4e:cd:
         84:ce:50:4d:a6:24:d6:9c:5a:ff:0d:81:3f:f2:62:f3:26:cd:
         d0:99:06:7c:73:73:c5:44:50:8e:93:48:dc:39:93:7c:3d:92:
         b5:b8:75:ae:46:6b:07:1b:af:a9:fc:d0:c0:bd:c9:9d:de:e3:
         d5:05:02:e5:b9:c6:31:3f:14:d8:8e:ce:1e:4a:58:f6:6a:4e:
         50:bb:e5:26:37:59:22:7b:b7:dd:0d:93:f3:04:08:90:d9:56:
         3c:93:02:16:9c:f5:9e:ed:bd:c4:4d:4a:23:28:9f:7c:64:52:
         7f:70:8b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 04:04:42 2025 by rpki-client