Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft
File:                     xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json)
Hash identifier:          DZ/RI3Z4iWEYw5ZZjfYrm0l0tnGpDexiKkHSRfZSb2Y=
Subject key identifier:   0F:3C:D3:61:1B:C8:3E:66:5B:B1:2C:F6:23:0B:07:93:72:4E:7C:35
Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42
Certificate issuer:       /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42
Certificate serial:       F4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft
Manifest number:          EF
Signing time:             Sat 09 Aug 2025 05:45:39 +0000
Manifest this update:     Sat 09 Aug 2025 05:45:39 +0000
Manifest next update:     Sat 16 Aug 2025 05:45:39 +0000
Files and hashes:         1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: lq15i7xkW2MG1UhZItI4kkBhB8rbqJBjhOyArPSa63g=)
                          2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: 5edOTZ9WpkItw4RWOBwB3WoAQbD4XzuXBzAkLSr3s8Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl
                          rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 244 (0xf4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42
        Validity
            Not Before: Aug  9 05:45:39 2025 GMT
            Not After : Aug 16 05:45:39 2025 GMT
        Subject: CN=6896e083-9ef4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:72:b3:21:6a:49:a5:95:61:75:39:2e:d6:39:
                    35:af:8c:0a:64:0f:e8:47:e1:bb:42:f5:01:51:b8:
                    42:c2:6c:55:88:45:f6:6f:0a:40:45:d5:bc:16:4b:
                    dc:29:42:40:bd:40:aa:17:ab:bc:07:96:32:48:0c:
                    96:96:e0:16:be:5d:4f:8b:2c:16:7b:e2:a6:36:41:
                    6e:c6:f9:c6:97:9d:01:45:37:4d:b6:5e:80:cc:86:
                    d6:10:f5:c3:09:b5:cb:28:98:c0:c9:e9:1b:51:93:
                    bb:d5:67:99:ba:1c:bd:40:ac:2e:f6:df:e5:f8:25:
                    23:80:15:c2:b9:1f:1c:15:66:4d:8c:fd:f0:ca:5e:
                    0d:11:94:5f:1d:9a:e8:7f:ba:7d:3c:fb:41:27:32:
                    23:2b:ae:11:f5:0c:fa:95:19:c7:f8:0f:73:98:0b:
                    b4:ea:59:c9:7c:b9:4f:b2:cb:26:17:f7:fc:fd:82:
                    9c:db:7e:c0:88:ec:17:8b:b3:af:04:64:84:60:94:
                    34:b8:28:8a:59:60:d9:94:48:00:f0:21:3c:6b:69:
                    01:76:e5:9c:ee:81:99:d4:4f:73:14:c5:52:cb:6c:
                    fa:f8:42:70:cc:85:5b:42:73:87:5c:20:f6:0f:87:
                    91:52:06:e0:21:e2:4d:97:8b:05:16:24:f4:8a:25:
                    d5:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:3C:D3:61:1B:C8:3E:66:5B:B1:2C:F6:23:0B:07:93:72:4E:7C:35
            X509v3 Authority Key Identifier:
                keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:f5:55:44:dc:2e:cd:99:4d:15:1f:f6:29:b4:d3:50:73:16:
         af:f9:b0:15:f3:a1:33:f6:42:28:ff:d6:ea:1c:20:c4:12:f0:
         a9:e4:57:86:5c:b2:5e:ae:05:1d:32:d2:ed:bd:ca:76:bb:f4:
         d4:33:2c:fc:1b:d9:da:7a:34:00:81:c5:1c:a5:82:51:21:f1:
         33:64:4c:6f:62:a6:1f:03:59:07:2a:50:c6:a2:70:f8:78:f8:
         0e:aa:1f:b4:40:03:17:11:02:3a:01:6e:69:c2:30:d7:b5:06:
         92:69:3f:fd:30:79:e2:f8:db:76:ef:4f:f6:be:30:07:a9:03:
         ca:70:51:fd:54:4b:34:34:6a:71:44:df:30:20:4b:46:a2:61:
         1d:97:2e:e9:27:34:ce:75:17:9a:a3:7b:10:f8:53:7c:19:fe:
         fa:2e:95:e8:17:3d:91:62:62:4f:78:b3:0d:eb:d7:b8:c5:7c:
         46:dc:a5:be:b9:62:35:75:a6:d3:94:a6:94:8b:b6:22:57:f6:
         59:6e:7e:6d:d8:15:06:06:74:a6:5d:83:38:19:e6:cc:e4:21:
         ab:3b:fe:7f:76:c9:ab:05:d3:8a:3b:9b:89:9f:e4:0c:c9:89:
         ca:b5:15:a8:ca:bf:e2:25:22:d1:b9:b5:55:73:99:4b:77:65:
         e6:99:f7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:48:15 2025 by rpki-client