Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft
File:                     nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json)
Hash identifier:          bvS3SDE8tR9RpsIqP04e9gRYk4E70wXIOqJR9DJ9l3g=
Subject key identifier:   6D:0F:25:67:11:A1:E6:93:5B:C2:70:8A:FE:B8:6F:2C:B2:9E:CC:74
Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32
Certificate issuer:       /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32
Certificate serial:       0117
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft
Manifest number:          FF
Signing time:             Tue 05 Aug 2025 05:54:11 +0000
Manifest this update:     Tue 05 Aug 2025 05:54:11 +0000
Manifest next update:     Tue 12 Aug 2025 05:54:11 +0000
Files and hashes:         1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: k0AQxc2NUFz50YCrTOPDqfQGs5ZgvO51AJ5AFyLRkQY=)
                          2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=)
                          3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl
                          rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 05:54:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 279 (0x117)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32
        Validity
            Not Before: Aug  5 05:54:11 2025 GMT
            Not After : Aug 12 05:54:11 2025 GMT
        Subject: CN=68919c83-2bb3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:bb:0a:15:e4:88:68:90:53:a9:1d:f2:98:8d:
                    60:f0:62:a2:7a:ad:8b:d3:35:7b:34:45:db:84:44:
                    5f:a7:36:8c:8d:2a:9f:c7:68:13:38:79:c2:54:14:
                    80:20:d9:64:86:a5:ad:3e:3e:b1:2a:3f:22:ec:41:
                    62:c7:05:76:ed:98:05:1b:30:3f:29:ac:66:75:b0:
                    42:00:0e:a2:23:aa:7f:51:ea:e6:68:bc:47:25:66:
                    83:b9:be:3f:e9:ae:fc:5a:6e:46:04:42:63:25:92:
                    f2:9d:d3:ac:bd:70:4d:de:8c:ed:d7:68:cf:07:57:
                    39:6d:69:58:d6:4a:74:ff:39:e9:ab:ce:01:a0:4d:
                    e2:e9:49:56:22:68:b8:6e:36:57:a8:db:56:89:06:
                    15:e5:00:01:3b:ea:ac:57:ff:b9:ec:3b:1d:0f:7c:
                    cf:58:17:db:d2:6a:ed:1d:39:97:de:97:ab:16:d6:
                    fd:7a:54:16:03:8c:83:df:b7:8e:9e:6c:89:62:f5:
                    45:ec:a3:51:b7:92:9e:b1:f3:32:ce:17:f0:f0:38:
                    dd:55:62:85:b0:47:f8:a0:da:a4:3f:51:f8:66:42:
                    9d:d2:17:19:51:a8:54:58:34:ad:36:da:de:f4:a3:
                    b5:3f:49:2e:5f:9c:bc:0b:91:45:5d:96:f2:bf:08:
                    7d:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:0F:25:67:11:A1:E6:93:5B:C2:70:8A:FE:B8:6F:2C:B2:9E:CC:74
            X509v3 Authority Key Identifier:
                keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:3b:5a:8e:02:13:c2:15:5d:1b:4d:ac:d5:82:38:1a:07:bc:
         02:49:46:75:7a:97:2f:59:74:c8:01:83:86:86:f4:10:bd:f1:
         11:82:72:0a:00:c9:cc:34:f6:1a:66:53:23:dd:df:b4:a2:16:
         d7:30:71:cd:24:ee:d9:63:8b:93:a6:e1:63:5b:bf:13:c5:ea:
         9b:11:e4:30:1c:dd:ab:ac:58:26:f2:23:30:1a:1c:50:c3:54:
         96:40:34:0a:bc:43:47:52:70:eb:81:c5:f6:22:50:d1:dc:5f:
         76:db:e1:b0:6d:fb:01:a7:08:bd:e7:49:6a:a6:6a:db:b3:59:
         68:1a:57:56:b3:6d:ec:ff:a0:65:3d:eb:94:60:34:14:2e:c4:
         bb:a1:a2:41:95:41:d1:ad:75:2e:d6:27:f1:7f:07:e2:49:ff:
         0a:71:9a:2c:bc:01:cb:df:e4:b4:b1:49:f9:fa:0a:75:97:ce:
         a0:06:b2:47:e7:9b:eb:64:58:d2:31:0d:49:dd:54:ca:2e:6f:
         a4:e4:7c:24:12:ff:cd:ed:77:8b:1e:95:73:81:0e:ea:8f:05:
         e5:aa:b5:8d:c2:6c:e5:5a:c3:f5:c8:a3:35:02:09:ee:99:49:
         f0:7e:a1:a3:b3:da:ed:44:5b:64:6f:09:8e:c6:b5:c6:8d:37:
         1f:96:7a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:09:07 2025 by rpki-client