Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
File:                     zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json)
Hash identifier:          2Q9xcCRPCvNQodQCq0I9ZuI8dipPMrFRggxPbCQ+kdg=
Subject key identifier:   B5:43:A9:20:EA:40:5D:E2:E9:0A:C0:9C:01:60:DF:39:8C:32:66:5B
Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09
Certificate issuer:       /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409
Certificate serial:       116C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
Manifest number:          114D
Signing time:             Wed 06 Aug 2025 17:22:08 +0000
Manifest this update:     Wed 06 Aug 2025 17:22:08 +0000
Manifest next update:     Wed 13 Aug 2025 17:22:08 +0000
Files and hashes:         1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: 20Dzb9OlVHyAnzOXIN2aCWAQOrT91cddDc1rBz/s20E=)
                          2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: LI5814/1mo8RhGHDIyDmTnyAaT8jPK8eiZW8nnVoECM=)
                          3: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: KE984DbFRTO0XDJnJvkUh9nTQI9OdADddfHh/b8sXns=)
                          4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: tG0xAoHX5Jrg4VXIV0PMgN27hGtGNiwPzNpPEMcc5ZU=)
                          5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: NlRxG3SgenSihBb1Uz1mdp6In7PIY3SWzoat7OXr7O8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl
                          rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 13 Aug 2025 17:22:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4460 (0x116c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409
        Validity
            Not Before: Aug  6 17:22:08 2025 GMT
            Not After : Aug 13 17:22:08 2025 GMT
        Subject: CN=68938f40-0515
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:2e:8b:84:1f:36:ef:b7:52:dd:f5:d1:42:3f:
                    2d:0b:82:af:1a:66:24:33:74:49:e3:dc:53:1f:64:
                    27:01:e3:12:53:4e:ca:e5:e9:fb:c7:57:4c:2a:6f:
                    f1:6d:1a:8f:91:a6:2b:f6:24:66:2c:24:0b:b4:16:
                    9c:d3:47:7c:11:4e:91:1d:48:95:c1:08:d7:55:3d:
                    17:ae:ad:86:25:f7:54:3f:d0:50:a6:83:97:e1:34:
                    e1:37:d4:c7:6d:a4:34:a5:0e:26:60:fc:0c:ce:6e:
                    ab:2d:c7:9b:e0:27:2f:2d:fb:34:ed:ef:07:00:24:
                    fc:e6:af:fc:d9:2e:f9:65:ae:7c:24:4f:28:8b:c6:
                    40:b3:6d:23:4c:50:92:85:a8:71:87:50:61:3d:4e:
                    4e:65:c4:38:de:c0:94:25:4b:27:12:62:b3:5e:37:
                    4f:b2:0e:89:e5:09:4b:23:cc:c7:7d:9c:b2:5d:58:
                    21:6d:f6:2d:0e:49:d7:88:e6:cc:e5:83:96:a6:76:
                    44:4e:15:ac:bf:51:10:5c:3f:b0:15:76:af:f4:40:
                    d9:e1:3d:e8:f9:66:7a:2b:d8:be:21:db:15:f8:98:
                    88:ff:e3:77:0c:dc:14:57:ef:9b:0a:8b:7d:2f:ab:
                    dd:c5:2c:d1:10:18:0f:0c:02:11:93:3f:b2:5f:71:
                    b2:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:43:A9:20:EA:40:5D:E2:E9:0A:C0:9C:01:60:DF:39:8C:32:66:5B
            X509v3 Authority Key Identifier:
                keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:3f:76:bf:96:aa:94:33:39:ef:37:6a:26:26:e6:d1:fe:5a:
         de:d1:2c:f5:9e:10:59:3b:6f:0c:3d:82:ce:a0:29:04:4f:71:
         56:b2:ad:c5:a7:1c:93:f2:67:80:bb:2c:70:20:1a:de:31:f5:
         ad:ba:ad:18:03:a1:6f:aa:72:83:0a:b6:d8:25:77:40:3e:b0:
         9b:83:67:50:3d:2c:03:66:96:3c:fd:fc:17:ee:0f:b8:c7:1b:
         db:34:a1:95:5e:8a:56:ec:1b:72:06:00:15:88:82:71:48:13:
         40:2a:25:92:c8:5f:c3:4d:57:2a:35:89:bc:25:f4:ae:11:cd:
         6d:50:2c:b6:f1:3a:4f:89:e8:07:72:35:4f:80:db:11:50:37:
         1c:92:58:b8:75:bd:e8:df:2a:c5:24:3a:27:e3:81:0a:9a:6b:
         e0:98:10:cb:c6:f1:9f:25:9c:f7:be:a8:a6:29:af:b7:48:8f:
         1f:24:ef:29:2e:48:74:8c:c1:ae:97:f3:c1:13:96:12:9d:79:
         df:75:9d:00:8c:b6:c1:ba:7a:70:13:22:49:57:91:4f:6f:da:
         be:85:22:30:3f:41:6f:68:e0:eb:07:9e:fb:22:9f:ed:83:9f:
         55:39:61:c8:b5:5c:31:34:92:61:71:ff:e3:d1:7d:ba:22:9b:
         3b:11:9c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:29:05 2025 by rpki-client