Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft
File:                     gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json)
Hash identifier:          hds/KQWZs/pW8eDddShyc3Xa1mXbdKofZJZE/F1gy30=
Subject key identifier:   13:34:53:48:5D:4A:0F:E3:B5:C9:DA:F7:F4:60:49:5B:D4:49:A9:4C
Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F
Certificate issuer:       /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F
Certificate serial:       01C7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft
Manifest number:          01C4
Signing time:             Sat 09 Aug 2025 03:18:47 +0000
Manifest this update:     Sat 09 Aug 2025 03:18:46 +0000
Manifest next update:     Sat 16 Aug 2025 03:18:46 +0000
Files and hashes:         1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: ngvDDDm91poYbnnOrNJBF7sOY1egYvv4de2BN6DGAXA=)
                          2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: dWU1gPzZFM9Cw+SS2wudvR0l02XzByvndbpoX+ljoqk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl
                          rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 455 (0x1c7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F
        Validity
            Not Before: Aug  9 03:18:46 2025 GMT
            Not After : Aug 16 03:18:46 2025 GMT
        Subject: CN=6896be17-cfa4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:4c:8d:c4:44:18:a0:7d:77:11:1f:72:97:29:
                    1e:3b:5c:24:ab:92:d1:10:e1:58:4a:80:a9:19:5a:
                    3a:fe:ff:b8:c3:72:d7:ff:3f:6c:ad:03:ff:4c:33:
                    aa:84:06:b1:c7:ec:69:c9:6f:49:62:c5:5c:c8:2c:
                    52:68:b1:3c:3c:cf:52:40:49:69:47:d9:6e:63:d2:
                    b4:55:2e:a8:4c:f5:8f:fa:7e:35:85:3c:5b:55:c5:
                    c5:ec:31:87:50:9f:7a:fe:79:e8:1c:dc:58:80:dd:
                    a7:ef:f7:ad:e5:27:57:5f:e1:77:e2:e2:df:46:ee:
                    94:49:7d:61:04:84:47:20:a2:33:f0:ce:03:11:57:
                    11:de:54:f5:75:95:5b:09:2a:76:9b:a0:61:b9:ba:
                    e8:e9:aa:2c:1e:e6:19:ba:25:31:db:aa:fb:0e:ad:
                    ba:40:fd:f1:46:5e:1b:e8:a2:80:70:c0:a2:a8:02:
                    73:84:64:eb:c2:18:3c:0d:d8:73:88:49:98:3b:e9:
                    b9:40:3d:22:2e:76:63:73:fe:04:23:b5:43:f7:9d:
                    8d:1d:aa:2b:1f:7d:68:3b:f2:80:d3:d8:9b:e4:ba:
                    5a:28:9b:29:98:78:0a:56:82:ec:05:36:20:db:04:
                    47:8c:eb:34:dd:88:73:e7:88:39:b1:c0:4b:70:62:
                    3c:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:34:53:48:5D:4A:0F:E3:B5:C9:DA:F7:F4:60:49:5B:D4:49:A9:4C
            X509v3 Authority Key Identifier:
                keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c8:4f:4e:51:e8:96:20:8d:88:be:6b:24:f2:81:63:fc:32:ea:
         9e:df:f6:c8:7e:59:55:27:5b:98:fb:10:3f:af:82:f7:4a:d4:
         ac:bb:84:47:84:4a:5f:2a:19:5b:23:09:39:af:78:39:f4:34:
         a7:3e:74:7c:83:1e:46:46:93:22:f3:ad:f1:1d:23:c5:9d:cc:
         7f:8f:4c:39:96:7b:6b:8e:38:c5:a4:b1:ee:21:a0:3a:1c:c9:
         71:b9:0c:cd:2c:24:b1:95:e7:0d:07:80:5e:48:8a:02:e4:bb:
         c7:89:e0:f5:25:e5:83:45:8f:2b:70:2f:39:6a:be:f5:95:82:
         f1:5f:8d:ed:2f:ba:a8:16:b0:fe:19:41:83:e2:eb:e9:26:27:
         df:50:db:1b:ac:bf:db:7c:ac:4c:eb:1c:c0:36:4e:ab:e0:53:
         9c:61:35:9b:55:c0:41:21:dc:41:ae:e8:f6:90:cd:64:83:f5:
         0d:9c:66:43:d8:b1:6a:79:d2:a6:2a:aa:8c:15:f0:2a:3a:1b:
         d5:82:fe:2f:90:de:48:e6:28:37:80:c7:f7:f5:79:ec:c6:7e:
         a1:38:bb:17:b1:95:9d:e0:39:b9:2f:1c:7a:49:92:f4:9d:4c:
         c9:1d:eb:d3:92:ad:9e:4a:e4:01:3e:e6:01:16:2d:a8:e2:8c:
         d6:03:94:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:23:40 2025 by rpki-client