Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
File:                     bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json)
Hash identifier:          hQz3LsZxqJy8tNLZDdrR43P1BqHC0jkuStSSw5s4hxE=
Subject key identifier:   B7:C4:93:AA:C5:99:AF:58:CC:05:B6:90:75:C5:8D:48:48:15:6C:0F
Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02
Certificate issuer:       /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002
Certificate serial:       03E0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
Manifest number:          03AC
Signing time:             Tue 05 Aug 2025 01:27:55 +0000
Manifest this update:     Tue 05 Aug 2025 01:27:54 +0000
Manifest next update:     Tue 12 Aug 2025 01:27:54 +0000
Files and hashes:         1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: UQxRGPtAifEFUYd7OIjyuac0YLO4hHJLnCEz8Fs0uCE=)
                          2: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: uzprXmLZAeVeFEFGMakzKpKMKq1iIlqcTuQSaK0YrGo=)
                          3: AD17704445F611EE97DF317CC4F9AE02.roa (hash: sdrVSjIs8Qd6YgjT3RuNMeG76kE1PDfBoWYkgwiCgcM=)
                          4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: r7+Epywiay/UAmGWjEXTbZ6MxuYjSj6zJi2sl5IN5FE=)
                          5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: YgWtLAFjeyb8EUf6jgk5P6z3rHF4ij9vs7WYRKlGxPw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl
                          rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 01:27:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 992 (0x3e0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002
        Validity
            Not Before: Aug  5 01:27:54 2025 GMT
            Not After : Aug 12 01:27:54 2025 GMT
        Subject: CN=68915e1a-1be9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:5c:46:01:84:ce:d0:38:7b:85:25:09:67:33:
                    5d:21:45:72:82:4c:df:8a:dd:a1:e9:7f:de:fd:f5:
                    57:10:f6:16:82:1b:1f:9c:9a:e5:fd:e2:81:32:d4:
                    bb:74:4a:0c:87:a8:05:63:8a:3f:a9:e2:74:a3:9d:
                    fe:cb:48:f1:42:d5:8e:f5:86:2e:ad:f8:70:7f:f4:
                    a9:5d:25:65:a2:63:13:59:fc:4f:c8:bb:b9:77:ab:
                    d7:ad:f4:6d:62:10:1c:a8:c3:ef:f5:65:e9:83:f8:
                    0f:e1:b0:a0:ee:4a:89:cf:f5:af:88:15:da:5f:e6:
                    e2:b0:37:46:74:2f:e0:38:ca:40:e0:7a:7f:65:d0:
                    6d:72:fe:cc:40:b0:77:41:7d:ee:57:e4:bd:1d:31:
                    01:fe:93:a2:3f:a5:8b:14:f7:61:bc:d2:44:f2:d7:
                    3b:f8:35:5a:1e:3f:98:ac:09:41:66:44:70:2b:86:
                    36:35:95:5a:d7:13:da:8a:ba:26:cd:17:22:6b:82:
                    00:a4:ad:65:d1:a3:72:69:f3:4c:9f:73:d8:8c:b8:
                    f7:7a:3d:cd:33:d6:b6:c4:1c:0f:24:38:68:ae:9e:
                    38:80:44:37:3e:79:a8:92:ea:90:46:d8:db:c0:1e:
                    f5:52:eb:5c:3c:04:20:21:c6:b1:84:68:9a:74:60:
                    da:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:C4:93:AA:C5:99:AF:58:CC:05:B6:90:75:C5:8D:48:48:15:6C:0F
            X509v3 Authority Key Identifier:
                keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:df:15:f8:ea:f1:bd:30:c3:cc:78:e2:5d:2e:c7:41:6b:ce:
         ee:1d:3d:df:c6:0e:25:16:a4:78:23:3f:73:c4:8d:8e:be:1a:
         aa:55:ee:d8:83:8b:32:96:5b:7e:1a:62:1b:27:5d:ef:42:7e:
         37:35:ae:47:9d:78:dc:7d:bb:bc:5b:71:73:f6:c9:bf:08:8b:
         e5:09:16:34:13:73:65:cc:2e:b9:08:08:33:95:6b:33:52:36:
         70:c9:07:9a:d8:01:f8:9c:40:60:7b:f5:c6:30:6b:9f:2f:87:
         8b:56:25:69:fc:6e:38:ed:2a:69:94:2b:0b:3b:76:cd:f6:51:
         b3:5a:ce:31:c7:08:eb:5f:75:e5:f3:69:3d:ac:e3:74:9d:8c:
         f3:78:a5:58:bf:08:39:d7:c7:d6:62:c3:88:94:f8:5a:cc:38:
         44:7f:b3:12:cc:07:86:3c:92:69:e8:c5:1c:3e:d9:21:37:c1:
         f6:70:b9:8c:51:6f:56:3d:c0:90:e8:d0:2a:b4:0b:1d:b2:43:
         da:ea:2d:43:e4:32:5e:3b:01:3c:8c:9d:c7:f3:f8:2d:23:c7:
         88:87:d0:69:3c:ab:32:73:91:46:21:a1:58:db:38:94:93:ae:
         a6:16:d8:a5:ef:18:61:71:af:e4:b7:4d:d9:48:0d:f4:fa:16:
         14:12:e0:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:38:02 2025 by rpki-client