Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
File:                     ER6YG60wGDD3weWQzBqotIImDtg.mft (raw, json)
Hash identifier:          s12vc8MUVwepHKLhSdXDKeWp0faVylHsX1NJCTrSWZ0=
Subject key identifier:   F0:BE:07:CD:69:7F:12:F7:E0:A8:B2:39:9A:DE:58:6B:27:EE:B4:3D
Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8
Certificate issuer:       /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8
Certificate serial:       1C5F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
Manifest number:          1C46
Signing time:             Fri 08 Aug 2025 16:20:44 +0000
Manifest this update:     Fri 08 Aug 2025 16:20:44 +0000
Manifest next update:     Fri 15 Aug 2025 16:20:44 +0000
Files and hashes:         1: ER6YG60wGDD3weWQzBqotIImDtg.crl (hash: WA7xs4MydEAC32Zk5TaYvGRBxSSc1fR5aw/ofa5Cz/k=)
                          2: 14564AB0E83311E6A72DC543C4F9AE02.roa (hash: 4+gvlbrCKPYHxXa5P1wV2CMHV3TVWTeug3ZLXYBNytU=)
                          3: 20C4803669A011EA9055BD0EC4F9AE02.roa (hash: nzh03mGpFuWBuJjX4zOpsk0cBliW2iPs211HjGanKnk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl
                          rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7263 (0x1c5f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F0FE2, serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8
        Validity
            Not Before: Aug  8 16:20:44 2025 GMT
            Not After : Aug 15 16:20:44 2025 GMT
        Subject: CN=689623dc-8070
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:d2:0d:76:6e:aa:a0:6d:82:38:66:43:fe:60:
                    2e:5e:6f:6b:eb:89:17:26:26:b6:2f:40:4e:df:a7:
                    ee:93:7e:e9:99:9a:4e:fe:a4:ad:2d:fc:bf:cf:06:
                    5f:a5:8e:3c:fb:88:eb:01:6d:da:5d:df:dd:1f:17:
                    86:5a:c8:4e:8d:ef:96:9e:22:37:af:68:33:7a:c4:
                    33:ac:c4:77:64:2d:12:da:ef:7e:e7:e3:b3:30:78:
                    3b:a0:7e:c2:b4:2d:37:ff:8e:40:78:14:ee:c8:6d:
                    6b:9c:5e:ee:0d:d0:83:3a:bf:b2:2d:f6:a1:3e:15:
                    2f:65:f6:ae:91:63:31:51:2f:ca:f4:55:7d:fc:1d:
                    f0:f2:2e:43:a5:2c:2b:e0:86:b6:08:aa:06:47:ab:
                    0b:27:f9:0e:78:86:9a:ba:18:9d:34:4c:f6:5a:ac:
                    2b:4c:58:76:00:6c:f3:7f:8e:5e:21:09:b8:88:70:
                    5a:c1:5f:da:27:58:06:9d:4e:65:9c:41:ad:b2:79:
                    01:a1:fe:ea:28:b2:f5:4d:bd:96:dc:a9:d9:8f:d2:
                    85:62:91:59:db:f3:b2:6e:24:fb:ad:ec:d5:3a:ad:
                    c5:a4:d5:00:86:26:4b:97:4d:1d:b9:6f:42:9a:08:
                    19:83:30:48:ff:3a:89:c5:af:a3:3e:0e:c8:2c:16:
                    4f:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:BE:07:CD:69:7F:12:F7:E0:A8:B2:39:9A:DE:58:6B:27:EE:B4:3D
            X509v3 Authority Key Identifier:
                keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:67:8b:76:21:62:7e:a8:1e:de:ef:37:be:e7:47:b4:df:b9:
         a9:3e:22:42:03:da:2a:d3:6c:db:07:16:27:27:04:a3:c9:02:
         39:9f:a9:ea:38:45:ea:6f:67:a4:df:3a:ca:57:7b:50:e2:53:
         fb:85:ce:50:23:cd:85:1f:a3:8a:a7:e2:65:33:be:ab:2b:c1:
         e3:4e:cf:8c:fe:24:6f:7f:20:37:e4:94:e6:b0:44:2d:72:29:
         c7:cb:37:44:23:83:bf:5e:4c:cd:ce:04:87:6e:42:cf:5c:36:
         ca:95:b7:a0:dd:2d:3c:8d:10:f2:d7:3c:bb:3f:92:ab:4d:6a:
         17:da:a3:a7:90:37:fb:7d:9f:10:d0:fa:64:6f:b2:5e:a2:c6:
         9d:06:a4:fb:c7:52:03:09:77:36:bc:b4:3c:df:b9:0f:48:52:
         ab:4b:4d:24:3d:03:b3:2e:99:4b:83:33:cf:e0:a2:c4:d6:fa:
         00:56:30:9c:4e:9c:08:27:a5:4a:e2:2d:f5:8c:7c:54:6c:ba:
         55:9a:4e:c6:c4:95:86:6f:60:04:e6:20:45:91:99:1f:84:f5:
         a0:aa:c9:e2:b8:db:44:2b:c0:cd:1d:fd:d3:04:00:26:53:d0:
         8f:42:c7:8a:0f:8d:49:62:82:6e:5e:f8:fe:37:bf:9b:f1:26:
         21:fd:4a:b3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICHF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjBGRTIxMTAvBgNVBAUTKDExMUU5ODFCQUQzMDE4MzBGN0MxRTU5MENDMUFBOEI0
ODIyNjBFRDgwHhcNMjUwODA4MTYyMDQ0WhcNMjUwODE1MTYyMDQ0WjAYMRYwFAYD
VQQDEw02ODk2MjNkYy04MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7dINdm6qoG2COGZD/mAuXm9r64kXJia2L0BO36fuk37pmZpO/qStLfy/zwZf
pY48+4jrAW3aXd/dHxeGWshOje+WniI3r2gzesQzrMR3ZC0S2u9+5+OzMHg7oH7C
tC03/45AeBTuyG1rnF7uDdCDOr+yLfahPhUvZfaukWMxUS/K9FV9/B3w8i5DpSwr
4Ia2CKoGR6sLJ/kOeIaauhidNEz2WqwrTFh2AGzzf45eIQm4iHBawV/aJ1gGnU5l
nEGtsnkBof7qKLL1Tb2W3KnZj9KFYpFZ2/OybiT7rezVOq3FpNUAhiZLl00duW9C
mggZgzBI/zqJxa+jPg7ILBZPzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPC+B81p
fxL34KiyOZreWGsn7rQ9MB8GA1UdIwQYMBaAFBEemButMBgw98HlkMwaqLSCJg7Y
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZFMi8yRkY5QkIyMkU4
MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dERDN3ZVdRekJxb3RJSW1E
dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0VSNllHNjB3R0REM3dlV1F6QnFvdElJbUR0Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
MEZFMi8yRkY5QkIyMkU4MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dE
RDN3ZVdRekJxb3RJSW1EdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBqZ4t2IWJ+qB7e7ze+50e037mpPiJCA9oq02zbBxYnJwSjyQI5n6nq
OEXqb2ek3zrKV3tQ4lP7hc5QI82FH6OKp+JlM76rK8HjTs+M/iRvfyA35JTmsEQt
cinHyzdEI4O/XkzNzgSHbkLPXDbKlbeg3S08jRDy1zy7P5KrTWoX2qOnkDf7fZ8Q
0Ppkb7JeosadBqT7x1IDCXc2vLQ837kPSFKrS00kPQOzLplLgzPP4KLE1voAVjCc
TpwIJ6VK4i31jHxUbLpVmk7GxJWGb2AE5iBFkZkfhPWgqsniuNtEK8DNHf3TBAAm
U9CPQseKD41JYoJuXvj+N7+b8SYh/Uqz
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:22:21 2025 by rpki-client