Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft
File:                     RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft (raw, json)
Hash identifier:          CWrl1s+Q5zsCRRryChagsRM3NIzAz7CZ5DiP/oKR6q0=
Subject key identifier:   36:FD:64:38:9A:E0:9D:E0:D9:85:EB:8B:8C:0F:EB:15:48:42:F2:F0
Authority key identifier: 44:F8:D1:53:B7:7B:09:2B:11:ED:F0:0A:93:E4:BB:64:09:1C:24:47
Certificate issuer:       /CN=A91F3C11/serialNumber=44F8D153B77B092B11EDF00A93E4BB64091C2447
Certificate serial:       09A8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft
Manifest number:          09A8
Signing time:             Fri 08 Aug 2025 15:03:00 +0000
Manifest this update:     Fri 08 Aug 2025 15:03:00 +0000
Manifest next update:     Fri 15 Aug 2025 15:03:00 +0000
Files and hashes:         1: RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl (hash: tTw3gjAsV6jVFJ6BQsIC//CeA+qNqVNbso4zsgmunKQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl
                          rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2472 (0x9a8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F3C11, serialNumber=44F8D153B77B092B11EDF00A93E4BB64091C2447
        Validity
            Not Before: Aug  8 15:03:00 2025 GMT
            Not After : Aug 15 15:03:00 2025 GMT
        Subject: CN=689611a4-b1a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:c3:cb:9a:f6:ae:5e:ae:f8:c5:75:34:82:43:
                    4c:5f:9d:47:b6:99:1d:40:ff:7b:24:10:3c:6e:e4:
                    64:51:24:0a:d8:6a:4e:57:d8:f1:c3:f5:60:f3:09:
                    07:79:c4:eb:2d:04:17:00:fe:2f:6c:7a:df:e4:2c:
                    6b:67:6d:48:07:73:a8:af:e6:6e:0c:a7:96:8e:61:
                    8a:bf:ae:d2:97:92:d7:45:f4:6a:27:f2:18:bd:80:
                    6a:85:34:03:23:60:06:85:47:9d:e4:8d:ee:34:0c:
                    f4:d0:ee:a0:23:79:79:9b:28:af:c2:f0:79:eb:6c:
                    f4:f3:4e:5d:94:c0:40:a7:67:c6:6c:1e:e5:3e:64:
                    24:4e:4f:fb:7c:7f:10:4b:85:09:38:17:11:73:9a:
                    d3:87:69:eb:b0:79:50:8f:43:eb:a1:af:89:22:38:
                    03:93:f5:e4:b4:7c:97:2f:41:d2:b4:58:7a:78:6e:
                    3a:30:99:f6:af:f9:93:dc:fb:54:ac:1a:39:94:2e:
                    43:2b:94:62:44:4e:81:c0:e4:37:a5:15:05:d2:e2:
                    85:b9:65:06:60:a2:c2:18:71:dd:5b:3b:eb:13:c5:
                    4f:b3:8a:0b:4d:47:5a:4b:f1:71:a0:97:01:e0:85:
                    d9:36:e5:20:1c:cd:8b:10:9b:9f:38:02:7d:8c:19:
                    3d:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:FD:64:38:9A:E0:9D:E0:D9:85:EB:8B:8C:0F:EB:15:48:42:F2:F0
            X509v3 Authority Key Identifier:
                keyid:44:F8:D1:53:B7:7B:09:2B:11:ED:F0:0A:93:E4:BB:64:09:1C:24:47

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c8:2f:ae:2a:2f:37:df:0c:c0:d1:b4:08:7f:6f:73:1a:d4:9a:
         c6:32:47:8c:3f:f2:66:52:21:b5:e6:91:3d:4d:94:b9:c7:98:
         8a:a9:51:b8:f7:59:3c:11:4d:fd:f0:fa:bc:3b:c8:cc:0a:b4:
         e8:43:8b:5c:c2:f0:cf:bb:6b:01:4a:85:cc:83:4b:de:4d:78:
         db:9e:36:ad:b6:41:7b:69:3a:43:c7:33:7a:04:0a:50:a5:e3:
         2f:ac:b2:42:1f:b0:ca:55:27:5e:0a:55:23:77:36:c6:f4:a3:
         52:f1:d7:59:e4:72:b4:40:c6:40:c8:fd:79:9b:8b:eb:c2:de:
         17:fb:4e:09:5f:96:6e:5d:73:97:ac:22:de:13:4e:22:db:0a:
         d0:11:a1:76:0e:7b:15:ff:b7:20:97:07:42:c5:1c:ae:db:fc:
         d9:9f:d0:eb:2c:c6:56:08:2e:2b:15:d6:27:ea:94:4a:eb:09:
         1f:0f:a5:a7:00:c0:81:87:db:c7:d5:60:ff:16:46:cf:04:f1:
         d4:32:3d:95:7e:9f:87:87:c3:c3:fa:3b:2f:a5:8a:29:a4:32:
         8d:4d:4c:08:7e:d1:7f:13:d1:72:33:a1:65:51:c8:ad:47:35:
         62:a1:94:1e:f1:b5:f6:2d:3d:be:32:8a:ff:98:ee:99:57:19:
         38:2c:4e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:23 2025 by rpki-client