Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft
File:                     xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json)
Hash identifier:          nfRtQzo67epYQE0E5/pDXb93GHkOYYtZBrS52fITxAk=
Subject key identifier:   BC:C9:41:64:E3:7C:51:B2:9C:2C:43:BB:ED:84:D1:29:AF:87:97:18
Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A
Certificate issuer:       /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A
Certificate serial:       F6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft
Manifest number:          F1
Signing time:             Tue 05 Aug 2025 05:48:30 +0000
Manifest this update:     Tue 05 Aug 2025 05:48:29 +0000
Manifest next update:     Tue 12 Aug 2025 05:48:29 +0000
Files and hashes:         1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: FZt3PvEedjSTysr0nHQ6kFjbDV/bAJx2Rl6cpXOgmjE=)
                          2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: C3Ga1a9eb1Df3VllPQUKdb207TqBrmGNq5XYCS2u3O0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl
                          rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 05:48:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 246 (0xf6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A
        Validity
            Not Before: Aug  5 05:48:29 2025 GMT
            Not After : Aug 12 05:48:29 2025 GMT
        Subject: CN=68919b2e-e138
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:3e:3c:21:84:d2:c5:96:81:54:42:a5:54:b5:
                    8b:6f:8e:26:f7:ba:83:f4:3a:f3:74:85:de:1b:42:
                    52:d1:1e:a2:fa:2d:1a:ef:23:fd:16:1f:50:ed:09:
                    00:2c:2c:42:f8:10:ec:10:b2:34:ff:8e:45:79:72:
                    6d:09:6a:11:fb:ff:62:e6:e6:45:f0:b6:d7:63:af:
                    6b:f0:f2:83:04:b0:5d:fe:fc:32:21:6b:e0:82:61:
                    72:9a:99:76:18:dd:7a:7f:d2:59:af:1c:87:50:fa:
                    f7:54:29:27:96:b3:55:f9:d5:d2:70:fe:20:3b:cb:
                    d4:e8:4e:5e:f0:4d:81:8f:e1:16:15:ae:5f:e9:8d:
                    1d:c8:fc:ca:1c:99:4b:1e:eb:3a:6a:7b:29:86:0a:
                    5a:f0:ba:41:4a:3c:d1:55:c1:c0:dc:8f:60:62:1b:
                    d9:0b:aa:c2:71:c1:a3:8f:76:42:c3:e0:0a:c0:e4:
                    cb:82:42:98:cb:d5:65:b0:b0:bb:10:63:6b:28:00:
                    75:1c:78:40:b4:9a:51:52:91:19:58:f0:7a:cb:20:
                    a8:a2:5a:d8:87:7d:4a:73:dc:22:17:4b:ac:2c:52:
                    50:5d:60:4c:1a:ec:4d:e3:38:cd:1a:89:ca:4a:e0:
                    3c:1b:cd:dc:0e:69:ea:e0:59:5f:4a:86:fa:6d:85:
                    5e:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:C9:41:64:E3:7C:51:B2:9C:2C:43:BB:ED:84:D1:29:AF:87:97:18
            X509v3 Authority Key Identifier:
                keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:26:dd:0f:b6:72:60:e8:28:42:96:f2:76:2f:77:87:50:95:
         ac:16:f7:02:f5:6a:15:98:ec:ff:b3:c2:ec:ba:9b:c1:54:ba:
         78:c8:c7:c9:04:5d:e8:ca:68:7d:92:0d:32:72:e8:76:bd:bf:
         2b:c3:f1:0e:26:7f:65:e8:c7:16:98:41:4f:50:d0:b2:32:3c:
         75:a4:68:61:52:58:c0:c9:c8:bf:f1:df:42:fa:d6:ef:41:54:
         e1:87:e3:92:98:4f:66:fa:af:61:ce:bf:62:1e:26:c8:62:47:
         66:a5:19:bf:09:57:8f:c5:61:ec:65:1a:f6:cd:d6:b8:dd:f6:
         94:d4:30:c1:4b:46:2f:e9:8b:1a:62:a1:c9:9a:b1:97:ab:5a:
         bb:00:e3:ad:27:6a:23:84:c1:db:fc:8a:9f:cc:cb:96:78:1b:
         49:87:62:2e:e7:9a:06:ea:d1:2f:bb:3c:fd:78:e9:7a:df:80:
         99:91:93:c4:bb:40:58:ae:16:a1:05:25:25:e8:bc:20:24:a4:
         8b:ca:d3:be:1b:ab:61:8f:f5:a5:43:e4:09:70:b6:17:d8:3c:
         10:29:03:2f:39:b4:d8:ae:93:4c:d6:b2:f6:7c:0a:36:0e:61:
         ed:20:62:ab:4a:c9:59:b5:44:51:82:e5:24:65:71:19:09:b1:
         15:1a:9f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:06:17 2025 by rpki-client