Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
File:                     MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json)
Hash identifier:          uHE5yj4/NfiIISjfTupDroQKjweWTwEF1SNCs83o3QM=
Subject key identifier:   70:B2:D5:37:65:E3:F5:16:69:BC:8B:0F:D0:F2:5A:FF:6B:01:24:9D
Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66
Certificate issuer:       /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66
Certificate serial:       78
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
Manifest number:          77
Signing time:             Fri 25 Apr 2025 05:45:30 +0000
Manifest this update:     Fri 25 Apr 2025 05:45:29 +0000
Manifest next update:     Fri 02 May 2025 05:45:29 +0000
Files and hashes:         1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: 15a5ebJ80Yowx5IKuY7Kmbn1LJKKw51JgZs3d9/5VGk=)
                          2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl
                          rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 05:45:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 120 (0x78)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66
        Validity
            Not Before: Apr 25 05:45:29 2025 GMT
            Not After : May  2 05:45:29 2025 GMT
        Subject: CN=680b2179-5c8e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:0d:a0:1c:05:ab:89:da:c5:b2:6f:36:dd:ba:
                    e9:67:a0:d5:51:ed:e6:cb:54:0f:e4:1e:c6:8b:1d:
                    2c:14:0c:c7:23:70:cc:5a:d4:66:99:d6:a1:1f:e1:
                    39:dd:f1:37:40:8e:28:3d:81:95:eb:99:76:ed:63:
                    53:8e:16:2c:f5:f8:18:1f:df:0d:3e:89:18:63:fe:
                    da:00:d8:18:7a:d5:c9:0f:96:63:39:07:0b:d9:ef:
                    4c:bc:e4:a1:45:b6:19:46:b0:9f:f3:54:2d:a3:eb:
                    18:2a:a4:2e:e2:cc:29:27:97:4a:57:90:4f:61:0a:
                    96:c7:18:c0:c8:9e:f1:eb:3c:c6:d5:2d:6f:15:53:
                    36:cb:8e:85:26:e2:4a:f8:50:37:9c:5b:b3:ed:eb:
                    f2:04:bd:21:87:ec:5a:63:38:03:e1:64:73:8f:6c:
                    28:f8:d9:b2:0b:b2:bd:12:4a:7d:bf:c9:2b:6d:03:
                    f6:c5:56:a7:10:0d:2b:5d:22:83:f8:ec:57:e1:eb:
                    00:ad:e9:55:71:d9:cd:18:83:5a:d1:1a:cd:b7:0c:
                    7c:f8:c8:a3:c1:0a:cb:48:7b:f1:28:03:d1:d3:b4:
                    b0:8e:a1:14:af:38:ec:b6:c0:b8:7e:1b:5b:60:a3:
                    5f:b4:ef:7c:9e:90:bd:52:01:77:a5:73:72:e9:4a:
                    6a:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:B2:D5:37:65:E3:F5:16:69:BC:8B:0F:D0:F2:5A:FF:6B:01:24:9D
            X509v3 Authority Key Identifier:
                keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:c4:a7:da:d6:3e:0f:ac:4a:85:bb:0b:a6:f9:20:28:90:06:
         6b:6c:5a:c5:ec:0b:74:01:ff:20:57:8f:0c:33:23:3d:40:b2:
         f5:1b:10:63:5c:13:ab:f4:e9:1c:86:68:00:bc:1e:89:4e:a2:
         17:bf:02:9e:31:aa:74:b2:4f:75:15:7c:d8:56:eb:e2:ce:3f:
         b9:1b:b7:a6:20:35:c6:58:a5:1c:59:05:9f:fc:4b:0e:ef:2f:
         5c:e6:49:c6:09:a7:f3:22:31:0d:2d:18:91:dd:8e:57:fb:17:
         d5:54:81:a1:28:10:93:05:1f:40:20:a9:53:b2:e1:4d:1a:87:
         9a:78:55:96:c6:37:00:f7:b7:12:90:2e:43:00:5c:10:74:4a:
         0a:4d:60:fd:fd:93:ac:31:d1:9f:11:d6:91:a2:6b:06:36:81:
         74:23:b2:c7:1d:fd:0e:77:46:05:32:78:08:c7:18:93:a8:e1:
         1a:d3:20:12:39:2e:17:d3:e3:e5:a4:a8:6a:8e:27:4f:ac:5a:
         35:91:f8:2f:ac:ea:e7:9e:15:36:e8:56:71:e7:86:16:18:f9:
         64:25:af:2c:b5:25:6d:5f:29:be:1d:5d:6a:c9:d7:5d:aa:f1:
         88:3f:21:4d:25:8b:0d:25:02:43:f0:e3:75:6d:f6:55:82:04:
         84:87:49:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:58:28 2025 by rpki-client