Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft
File:                     FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json)
Hash identifier:          iK9v4kQu7+LxhfAdCeFrwR1J0iGjcw7oHBHbN4/3wXY=
Subject key identifier:   E8:FD:9A:A6:32:AF:F1:22:B5:C2:4E:B4:E0:DA:6B:65:6D:88:F0:7E
Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A
Certificate issuer:       /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A
Certificate serial:       01C6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft
Manifest number:          01C3
Signing time:             Thu 07 Aug 2025 03:24:08 +0000
Manifest this update:     Thu 07 Aug 2025 03:24:08 +0000
Manifest next update:     Thu 14 Aug 2025 03:24:08 +0000
Files and hashes:         1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: D9llEWPR/Zo1X9jrfZcxNPPbyzoNlqQMAiTEJF9K4Q8=)
                          2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl
                          rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 03:24:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 454 (0x1c6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A
        Validity
            Not Before: Aug  7 03:24:08 2025 GMT
            Not After : Aug 14 03:24:08 2025 GMT
        Subject: CN=68941c58-6072
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:81:bc:b7:e0:67:41:e9:11:35:5d:b3:46:02:
                    77:16:9c:89:67:58:9a:15:c3:59:5e:81:38:39:b8:
                    49:63:bd:df:ac:b6:a0:6d:12:6f:9c:9a:a6:9d:92:
                    69:28:e5:e3:ac:87:eb:cd:8a:6f:0a:e0:77:2b:81:
                    db:4b:9e:2c:95:b8:e7:9a:d5:0a:f0:ed:09:4d:51:
                    ca:fa:62:6d:c9:a6:93:8c:4b:34:b0:f8:3e:02:11:
                    1b:45:38:ff:f9:c9:54:11:1e:6a:0f:72:ee:91:fd:
                    ff:e1:b5:0f:67:fe:fe:6b:49:47:3f:6c:27:68:ae:
                    b1:e9:12:98:f5:b2:39:21:b2:a7:f0:96:fc:17:94:
                    10:99:69:04:20:ea:1b:86:c7:20:b0:98:8a:3c:c2:
                    7e:7c:fa:da:7a:3a:6f:14:81:27:c0:01:25:6c:0c:
                    38:a7:88:da:07:19:d3:34:c1:1c:95:dc:e8:32:4d:
                    78:c3:67:d4:6d:3f:63:d0:a4:99:18:3c:0a:7f:ed:
                    a1:7d:89:03:83:4f:eb:b6:30:06:96:90:4d:fd:05:
                    46:ff:6e:6b:41:b4:4b:19:26:ec:c6:25:26:58:5b:
                    b7:59:50:4d:3d:c9:93:a2:3a:e8:4b:7c:01:f0:05:
                    f1:ff:f0:9f:16:80:dc:53:23:6d:8a:73:12:9e:6a:
                    00:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:FD:9A:A6:32:AF:F1:22:B5:C2:4E:B4:E0:DA:6B:65:6D:88:F0:7E
            X509v3 Authority Key Identifier:
                keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:36:a9:aa:7b:41:42:e4:a7:6e:cd:b2:c2:8f:59:40:39:d8:
         b7:ea:b5:53:a3:fb:a8:0d:95:40:a2:e4:f9:ff:e2:fa:eb:d7:
         e3:77:9d:07:99:6c:ec:4e:cb:79:08:08:a5:5f:43:5b:75:cd:
         2e:64:ea:2f:8f:6a:c0:75:94:17:ba:39:c6:3b:37:59:8f:0d:
         97:fe:85:94:b2:db:3d:37:5f:2c:04:6b:fe:15:70:d1:94:8f:
         ed:3f:34:31:97:7f:73:d1:95:20:70:12:43:2d:18:b4:22:56:
         92:1f:46:c1:52:8c:e4:de:b3:d6:06:79:4e:72:38:95:46:e5:
         00:45:b2:3b:0c:0b:02:58:97:c4:33:01:c4:fa:90:8d:b6:34:
         f7:a3:4b:53:79:05:d8:38:e7:ed:9f:72:cf:6d:67:fe:e4:9d:
         11:53:80:55:e3:69:d6:eb:00:99:3f:e4:7d:15:77:86:57:b6:
         9d:59:7a:50:22:ed:7c:3a:f2:f5:df:e0:63:3a:93:da:2b:34:
         55:ff:ff:c1:e5:18:2d:6c:65:c2:be:a6:2c:85:83:ab:56:41:
         98:19:7f:47:cd:6c:6f:2a:0f:fd:a0:8b:19:87:a2:83:62:eb:
         0f:39:01:1a:2c:aa:65:5e:34:41:a4:8e:bc:32:96:9f:b9:a4:
         da:07:98:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:24:04 2025 by rpki-client