Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft
File:                     tNHFfu7y2pEKr3lGCpvLIab80v0.mft (raw, json)
Hash identifier:          nhX/adSDg3QIR+GlnYvbkr/9cgugfB6gwC0IQQXKniQ=
Subject key identifier:   A4:A6:4A:D1:16:A7:D7:39:9B:8C:1C:8D:FD:54:D1:E0:42:CB:F3:BA
Authority key identifier: B4:D1:C5:7E:EE:F2:DA:91:0A:AF:79:46:0A:9B:CB:21:A6:FC:D2:FD
Certificate issuer:       /CN=A916A033/serialNumber=B4D1C57EEEF2DA910AAF79460A9BCB21A6FCD2FD
Certificate serial:       0778
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft
Manifest number:          076C
Signing time:             Mon 04 Aug 2025 21:56:12 +0000
Manifest this update:     Mon 04 Aug 2025 21:56:12 +0000
Manifest next update:     Mon 11 Aug 2025 21:56:12 +0000
Files and hashes:         1: tNHFfu7y2pEKr3lGCpvLIab80v0.crl (hash: P6YatYRPfbDgOSzNttSLogV3bQ95U/GXbkdPxYARlcw=)
                          2: EB0FEBAA295811EBB519AC70C4F9AE02.roa (hash: 23TiuLPxAaSrXTY2xFHwDsaNfyE9NetpuIlQb209liA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.crl
                          rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 21:56:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1912 (0x778)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916A033, serialNumber=B4D1C57EEEF2DA910AAF79460A9BCB21A6FCD2FD
        Validity
            Not Before: Aug  4 21:56:12 2025 GMT
            Not After : Aug 11 21:56:12 2025 GMT
        Subject: CN=68912c7c-5928
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:a9:84:56:8b:60:95:e7:0e:cc:5c:43:5a:67:
                    91:c2:98:28:24:ce:00:69:fb:1f:40:19:84:81:d6:
                    6e:93:06:54:e5:d7:47:5f:7f:0f:38:2c:2c:6a:ed:
                    46:5f:73:d7:da:9c:28:7b:33:1b:b6:aa:b9:0f:3e:
                    40:13:3d:2e:c3:7f:3c:1f:36:21:0a:aa:4d:52:42:
                    67:c2:81:0e:fb:7a:f9:93:80:46:9d:ce:e7:f8:ca:
                    23:0d:55:cd:18:8f:4b:7e:e4:70:95:18:00:8e:69:
                    d6:5f:18:45:3c:d1:69:bf:99:17:bb:b9:83:a2:e7:
                    81:a7:43:0e:5d:eb:ef:cc:cb:04:45:c8:c9:f2:02:
                    0e:4b:da:ac:3c:75:61:60:6b:4e:49:58:af:e6:d1:
                    3d:08:e6:66:a2:fb:9e:aa:07:97:e0:a2:2c:4d:56:
                    80:59:8c:d7:34:26:96:73:3e:3c:72:f3:92:db:10:
                    c0:f6:a3:6b:eb:a5:29:c5:d2:a7:1e:1c:ef:14:60:
                    65:80:e9:0e:9e:3c:27:b9:cc:34:28:47:00:27:5e:
                    08:79:f4:19:ac:5d:60:3d:cd:fb:f5:32:a6:5b:63:
                    92:0a:6c:a2:db:1c:b0:97:98:a3:ef:3e:a3:04:a1:
                    13:c3:aa:61:ba:da:37:66:fc:07:83:11:29:98:97:
                    13:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:A6:4A:D1:16:A7:D7:39:9B:8C:1C:8D:FD:54:D1:E0:42:CB:F3:BA
            X509v3 Authority Key Identifier:
                keyid:B4:D1:C5:7E:EE:F2:DA:91:0A:AF:79:46:0A:9B:CB:21:A6:FC:D2:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:0f:7e:81:b3:cc:58:2f:2b:28:85:2f:cb:03:ff:bd:86:f1:
         5c:5f:85:ff:dc:0f:f5:51:55:05:4f:1e:c8:aa:75:a0:e5:11:
         5f:11:21:46:e0:b8:b2:74:15:4a:90:d8:36:6b:78:0a:30:aa:
         0b:4f:2e:47:0a:8f:5e:9e:55:be:36:20:1b:a9:48:eb:f2:97:
         51:ae:71:5b:7b:17:ff:1c:ea:df:38:6c:bd:0a:84:46:73:57:
         7f:a7:07:85:e5:ce:f8:90:4b:e4:af:3c:c5:a4:6a:69:06:2f:
         bc:8f:03:15:2b:11:4d:16:30:25:46:42:fc:b1:5a:f6:54:81:
         3d:56:22:16:94:10:62:03:21:96:3e:51:b7:2b:6c:7b:b6:e9:
         8e:4a:e9:27:37:d4:c2:f0:5d:af:61:cd:45:f0:c4:1c:65:e8:
         7e:75:10:9f:af:cf:e7:a4:50:f9:22:9d:b4:74:69:b5:a8:c9:
         01:92:8e:bc:cc:15:46:bc:f6:75:06:7f:03:60:10:14:6f:a4:
         6e:5b:cb:38:c8:b3:b0:c1:b9:9d:5c:d8:91:38:40:e5:73:d2:
         ed:a9:f3:4a:b3:87:f7:d3:22:5b:cb:a5:1d:f4:ea:4c:e2:df:
         21:17:5d:b6:65:2c:9a:95:4e:40:2d:85:80:b5:64:cf:f3:79:
         39:f1:f6:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:12:52 2025 by rpki-client