Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
File:                     NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json)
Hash identifier:          FBr4fZbTtKDkDc+52LeC6dsVxVQ0Jtpz1H5MBxnqEf0=
Subject key identifier:   45:68:F1:3D:A4:7B:B0:ED:DE:F1:C9:AA:49:46:A6:A0:B7:1B:B0:3B
Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D
Certificate issuer:       /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D
Certificate serial:       012E
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
Manifest number:          0127
Signing time:             Sun 03 Aug 2025 05:04:30 +0000
Manifest this update:     Sun 03 Aug 2025 05:04:29 +0000
Manifest next update:     Sun 10 Aug 2025 05:04:29 +0000
Files and hashes:         1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: Ugr45D5h6nXTDWGPf4iOHmT0T/gOVjx0bSrugT+Jt+0=)
                          2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=)
                          3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl
                          rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 10 Aug 2025 05:04:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 302 (0x12e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D
        Validity
            Not Before: Aug  3 05:04:29 2025 GMT
            Not After : Aug 10 05:04:29 2025 GMT
        Subject: CN=688eeddd-6efa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:87:e8:2a:83:df:36:90:ba:43:e4:58:24:2e:
                    04:58:46:e7:56:07:cc:34:e0:aa:fb:d9:37:72:cd:
                    09:af:7a:de:74:ac:5b:06:9a:30:4a:a3:48:4c:46:
                    56:94:5f:14:1d:33:f6:95:ce:fd:10:cf:62:20:94:
                    b5:36:a2:d6:a3:50:dc:9b:23:3b:d4:10:67:ad:ca:
                    39:01:19:ce:68:8c:42:21:71:45:f7:f2:47:69:0c:
                    c8:26:25:3a:d2:cf:fd:a7:f5:b9:2f:f7:df:60:5e:
                    bd:61:60:d7:b7:3b:77:2f:13:6c:6d:f0:b8:4a:6a:
                    e0:bc:ac:19:35:43:4d:5f:ad:89:b5:92:13:90:9b:
                    a5:20:65:4c:d8:c4:b0:5a:de:0a:a8:f0:46:56:05:
                    0d:74:c3:55:5d:c4:67:4b:09:4d:73:97:f6:cf:c6:
                    62:eb:f0:2f:da:1e:75:dd:14:da:7b:eb:7e:33:b2:
                    f6:f6:17:5d:a8:1d:a4:e5:86:5a:19:62:2f:85:29:
                    a5:70:86:98:ce:c5:ec:7f:cb:2c:d1:b5:ad:f5:d6:
                    6e:ba:c9:4e:bc:60:cf:97:82:3d:33:7d:e2:2d:5b:
                    5a:c5:fd:2a:e4:21:1e:cb:fc:13:9b:2b:4e:38:11:
                    f7:bf:a3:14:90:d6:77:a9:67:f0:04:d0:88:6a:fd:
                    a9:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:68:F1:3D:A4:7B:B0:ED:DE:F1:C9:AA:49:46:A6:A0:B7:1B:B0:3B
            X509v3 Authority Key Identifier:
                keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:6f:93:f0:4e:ab:36:6a:36:8f:69:9b:8a:f6:9e:53:7a:c7:
         6e:a1:9e:3a:be:d3:de:92:89:56:2a:75:cc:4a:8c:17:1c:3f:
         12:87:4e:0a:f3:6d:4c:d5:70:11:eb:7f:d0:08:6c:fc:80:3d:
         16:96:c4:04:3e:44:80:6d:a0:cc:45:97:1d:7d:fe:59:d6:ee:
         60:f3:f1:83:e5:24:49:78:91:a4:66:1a:e2:21:df:79:cf:08:
         db:7e:eb:61:20:6e:6a:a7:0e:fd:0c:27:63:09:81:9b:46:31:
         57:a6:17:a9:f4:87:89:d9:1d:dd:57:d1:5e:d9:92:55:7a:2a:
         56:06:7c:c4:db:19:f2:2e:6d:92:7f:8c:5e:88:7f:ce:5c:fd:
         48:fb:22:a8:a5:20:c0:9f:95:f3:8c:5f:c0:f4:cc:24:8a:3c:
         4f:db:de:7b:25:23:de:ba:da:2b:66:f9:89:37:38:fd:3a:92:
         57:51:0b:0f:b7:54:0d:6d:14:6d:fc:a6:d4:29:5e:4f:ee:26:
         c0:50:af:36:0f:90:b9:d9:79:cc:6d:ce:75:fd:00:b2:97:0f:
         4d:f4:1b:57:db:1f:c9:78:b1:5f:42:86:a7:72:3d:50:78:f2:
         73:57:3a:c5:75:67:f1:99:28:c4:09:6f:9e:02:11:80:c8:07:
         05:5d:f4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:57:42 2025 by rpki-client