Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft
File:                     ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json)
Hash identifier:          cLc9CG8mnAla9D+F00S+WBMUabOafxdfsz8pTc0QILU=
Subject key identifier:   B9:82:7D:8E:12:68:18:1C:8F:C2:5E:34:5C:AE:E3:ED:0E:9A:5A:42
Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC
Certificate issuer:       /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC
Certificate serial:       34B4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft
Manifest number:          34B4
Signing time:             Sun 10 Aug 2025 14:43:30 +0000
Manifest this update:     Sun 10 Aug 2025 14:43:30 +0000
Manifest next update:     Sun 17 Aug 2025 14:43:30 +0000
Files and hashes:         1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: qnWVyzkHLmYTBcoD0qc/NwcOeotuu7eo5rzEwSE49JI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl
                          rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13492 (0x34b4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC
        Validity
            Not Before: Aug 10 14:43:30 2025 GMT
            Not After : Aug 17 14:43:30 2025 GMT
        Subject: CN=6898b012-9ccf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:c4:dd:39:4b:fd:e3:f8:7f:5d:a1:cb:bf:c8:
                    a9:c5:65:f5:92:6b:86:ce:5a:38:34:15:75:09:59:
                    a3:a3:8d:72:9f:8d:e7:2b:45:ba:3b:4e:79:03:e4:
                    8c:ff:4f:67:15:18:ea:e2:21:a1:51:f1:b4:bc:6a:
                    c4:74:ec:fe:c5:5c:25:c0:ff:21:a5:97:d8:72:98:
                    07:6c:36:26:e8:9c:04:85:48:94:a5:28:4a:ec:81:
                    14:89:b4:32:20:ba:76:4c:7a:97:b4:f2:3b:54:d8:
                    d8:da:98:35:eb:7a:e5:c6:8d:a8:41:86:96:82:3f:
                    8f:d3:96:8b:7e:91:41:d4:33:1b:17:08:be:ec:aa:
                    d3:7d:9f:dc:c0:39:a9:78:91:6d:b3:80:e1:45:d5:
                    e6:2c:72:f1:26:87:29:da:f2:0a:66:7c:40:fe:c8:
                    4a:56:53:e5:9d:31:35:25:2e:fd:96:de:74:ae:37:
                    2d:2b:f0:be:c6:a5:44:8c:7a:d6:66:11:64:95:65:
                    c3:7a:20:e2:b9:7c:a5:dd:e9:1f:ad:47:27:b4:42:
                    4b:45:6c:59:02:71:33:3e:27:e5:e4:4b:88:7f:d6:
                    13:c4:8a:46:74:b1:3d:7c:b6:e7:ab:50:37:2c:74:
                    11:56:03:e3:49:39:ba:c0:19:e3:cf:c2:e3:e3:fd:
                    82:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:82:7D:8E:12:68:18:1C:8F:C2:5E:34:5C:AE:E3:ED:0E:9A:5A:42
            X509v3 Authority Key Identifier:
                keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:cd:3c:98:74:c8:77:cf:b5:59:34:1a:3e:e9:40:f5:c8:57:
         c2:3e:ef:8c:f2:da:d2:2f:12:f4:c2:f9:c7:ab:fd:51:b5:e0:
         30:ef:68:c9:43:d7:da:01:5d:7e:42:50:fd:29:93:66:e1:18:
         07:b2:5b:93:c9:08:36:63:5a:f4:db:d5:da:b5:69:a9:c0:b8:
         db:61:b7:5e:86:9b:87:3a:8b:c6:a1:ed:32:79:e9:7b:4f:e0:
         ff:6d:90:bf:89:37:b3:4b:52:0b:98:f5:c6:5e:95:ba:a8:e1:
         a8:ab:f9:88:e8:db:6d:2d:28:7d:b7:dc:b1:9a:bf:15:dd:f4:
         d6:14:ff:94:82:c1:f2:33:77:8e:11:3c:ee:4d:cd:4a:c0:89:
         81:da:8f:fc:81:0b:a6:99:0e:7a:d5:f9:20:5c:f3:fe:db:3b:
         dc:30:42:1c:d0:19:84:17:d1:12:aa:e0:e0:d4:26:9b:d9:77:
         62:20:2b:dd:3c:d9:78:68:e6:cf:39:68:0e:fb:6c:8f:4b:68:
         22:f3:3f:f4:b7:36:f8:a4:9e:ee:0a:6f:c5:a0:aa:e8:de:c1:
         11:34:79:fc:12:20:1a:d5:df:76:c5:ef:5e:cf:c8:cb:12:2d:
         78:66:c8:d4:ab:e8:f6:df:c8:c9:a4:dd:10:10:b2:6f:1f:61:
         f8:ec:8a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:08:15 2025 by rpki-client