Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft
File:                     hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json)
Hash identifier:          xmd/JE+yp7tdQDz4a40TuOEvDS3TeG+fdtLtMJBQZ78=
Subject key identifier:   1C:81:C7:8C:84:0C:AC:6E:40:57:BE:72:13:80:7A:FC:12:39:F6:A7
Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64
Certificate issuer:       /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364
Certificate serial:       17FB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft
Manifest number:          17FB
Signing time:             Fri 08 Aug 2025 16:42:08 +0000
Manifest this update:     Fri 08 Aug 2025 16:42:07 +0000
Manifest next update:     Fri 15 Aug 2025 16:42:07 +0000
Files and hashes:         1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: D4eipJ3ewQeiMTN8uxjD6GPCoCHPlAlkD1nW/hgu7aw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl
                          rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6139 (0x17fb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918FEF3, serialNumber=84722DBD42267BDDD59B88415299253531E06364
        Validity
            Not Before: Aug  8 16:42:07 2025 GMT
            Not After : Aug 15 16:42:07 2025 GMT
        Subject: CN=689628df-1432
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:b2:ab:a5:c7:79:2d:0c:75:c2:57:27:bf:24:
                    a2:e4:65:e2:c8:34:26:88:6a:05:c9:9c:c8:fc:97:
                    6d:10:a0:45:f9:bf:a4:9b:d1:08:29:c6:0c:85:6f:
                    fe:9c:a0:6e:8f:bd:c0:20:5c:c8:19:92:48:70:e7:
                    17:0c:fc:d3:f8:f3:f5:8e:2d:f1:5b:45:73:81:f1:
                    5d:8d:f9:66:c2:cd:0b:f2:b8:42:ad:ab:a3:be:8b:
                    b4:92:8b:e4:70:06:8b:b9:a2:b1:8f:d5:3f:82:d0:
                    74:47:18:eb:e3:f2:ae:e4:7a:c1:07:d7:ad:39:59:
                    2f:62:ee:cc:97:59:72:a1:a9:f4:43:72:35:56:b1:
                    2a:52:bb:6b:83:4b:d2:b8:bb:7a:c4:fb:5a:67:63:
                    0b:c0:48:a4:19:33:c5:bb:d7:15:2b:d6:bb:96:f5:
                    d7:79:b6:74:b9:39:a7:7e:b1:ab:10:19:0b:e6:2f:
                    43:ba:ab:da:40:6e:1f:6f:ca:3f:42:76:dc:4f:7f:
                    7b:c3:96:25:fa:8f:db:fc:ce:7a:58:b2:3e:40:6e:
                    aa:73:0d:68:de:44:73:d8:15:e2:ec:a0:16:2b:8c:
                    a8:c7:09:85:9c:e3:93:6d:f8:e2:4b:7d:e8:2a:51:
                    8e:e3:d2:ec:2a:a7:67:15:45:3b:c7:46:ac:c8:a3:
                    a6:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:81:C7:8C:84:0C:AC:6E:40:57:BE:72:13:80:7A:FC:12:39:F6:A7
            X509v3 Authority Key Identifier:
                keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:c7:60:02:d2:01:0e:3c:9a:38:81:ee:ec:15:de:66:11:51:
         01:a1:f4:45:8c:8f:40:ca:2d:3d:f6:86:4a:d9:21:fb:c3:c5:
         9c:db:ef:d1:4e:81:3e:87:10:38:18:b7:0b:7e:cb:52:ce:28:
         8a:5a:47:91:37:bc:1b:ad:06:98:fd:ad:c5:74:28:4d:84:cb:
         72:12:10:52:5c:12:8c:cc:cc:bb:d5:24:de:92:13:41:a0:b6:
         8f:bc:0d:bc:c5:69:68:e9:2d:bb:ee:bf:c0:52:1e:9c:49:ef:
         67:e1:64:60:8b:00:22:ac:72:f0:30:cc:59:b9:e1:0e:17:88:
         0b:53:46:c6:48:20:86:a8:c3:7d:bb:23:17:62:c8:72:77:35:
         c5:bd:52:f2:07:22:37:4e:c4:22:72:31:7c:f7:07:dc:19:71:
         c0:36:f5:10:e1:25:b3:ed:31:76:14:21:f0:68:1a:41:2f:06:
         82:97:56:b9:a4:a5:c4:e4:e9:26:49:e3:4b:84:e1:cb:14:97:
         20:88:5f:d4:5d:90:eb:a6:72:0e:e4:c6:30:23:91:fa:2e:ef:
         90:ce:a2:ea:88:d6:79:87:4d:01:16:3f:59:ab:b1:b0:47:1b:
         51:78:4b:99:cb:7b:3e:a2:01:d4:e2:52:13:ad:4b:bf:07:4d:
         0d:3d:2c:0c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICF/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1
MzFFMDYzNjQwHhcNMjUwODA4MTY0MjA3WhcNMjUwODE1MTY0MjA3WjAYMRYwFAYD
VQQDEw02ODk2MjhkZi0xNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs7Krpcd5LQx1wlcnvySi5GXiyDQmiGoFyZzI/JdtEKBF+b+km9EIKcYMhW/+
nKBuj73AIFzIGZJIcOcXDPzT+PP1ji3xW0VzgfFdjflmws0L8rhCraujvou0kovk
cAaLuaKxj9U/gtB0Rxjr4/Ku5HrBB9etOVkvYu7Ml1lyoan0Q3I1VrEqUrtrg0vS
uLt6xPtaZ2MLwEikGTPFu9cVK9a7lvXXebZ0uTmnfrGrEBkL5i9DuqvaQG4fb8o/
QnbcT397w5Yl+o/b/M56WLI+QG6qcw1o3kRz2BXi7KAWK4yoxwmFnOOTbfjiS33o
KlGO49LsKqdnFUU7x0asyKOmuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByBx4yE
DKxuQFe+chOAevwSOfanMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE
MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ
MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5
M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQChx2AC0gEOPJo4ge7sFd5mEVEBofRFjI9Ayi099oZK2SH7w8Wc2+/R
ToE+hxA4GLcLfstSziiKWkeRN7wbrQaY/a3FdChNhMtyEhBSXBKMzMy71STekhNB
oLaPvA28xWlo6S277r/AUh6cSe9n4WRgiwAirHLwMMxZueEOF4gLU0bGSCCGqMN9
uyMXYshydzXFvVLyByI3TsQicjF89wfcGXHANvUQ4SWz7TF2FCHwaBpBLwaCl1a5
pKXE5OkmSeNLhOHLFJcgiF/UXZDrpnIO5MYwI5H6Lu+QzqLqiNZ5h00BFj9Zq7Gw
RxtReEuZy3s+ogHU4lITrUu/B00NPSwM
-----END CERTIFICATE-----
Generated at Sat Aug 9 23:12:49 2025 by rpki-client