Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft
File:                     oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json)
Hash identifier:          sJ9ZqcDuy207mchpYXTanDqklR9eaAYA5ywff1ICfdI=
Subject key identifier:   CD:88:10:16:3F:59:98:F1:A7:A6:ED:2C:20:AC:FD:63:97:D5:6E:3F
Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09
Certificate issuer:       /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09
Certificate serial:       6F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft
Manifest number:          66
Signing time:             Tue 05 Aug 2025 07:46:45 +0000
Manifest this update:     Tue 05 Aug 2025 07:46:45 +0000
Manifest next update:     Tue 12 Aug 2025 07:46:45 +0000
Files and hashes:         1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: 7PU30FTh90b3fVli9ga4Kfdv8yiYHasvMdoY6PO7w/s=)
                          2: 7F9864BC278511F08A309E80C4F9AE02.roa (hash: Qmy+i9C5Rc4mKmMkW3mFXP5ni+MgnYfnd/vlrjppwOw=)
                          3: 965254F8278811F09217002CC4F9AE02.roa (hash: 43x78k+dzhsv7ZCDVrgKApUESFB1ajmPRMXQlcEBmxQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl
                          rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 12 Aug 2025 07:46:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 111 (0x6f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09
        Validity
            Not Before: Aug  5 07:46:45 2025 GMT
            Not After : Aug 12 07:46:45 2025 GMT
        Subject: CN=6891b6e5-0aec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:33:ef:bf:f4:2b:35:c8:f4:c9:dd:f6:7f:92:
                    83:ce:d8:59:d5:79:18:f8:7f:78:6d:c9:c0:4d:d5:
                    6b:ad:bc:39:e3:2b:93:36:fb:19:de:0e:64:34:c3:
                    70:e0:a4:78:d9:60:5c:d0:b5:19:5e:92:8f:25:26:
                    db:0d:ed:41:36:7c:15:7e:6f:92:c0:cd:f0:c9:05:
                    4d:15:27:ef:e0:98:8a:37:2c:04:a7:53:89:ad:88:
                    94:f5:f4:bd:18:a7:b3:ec:75:52:5e:70:36:0f:d0:
                    4e:aa:13:5f:7f:cf:6a:e7:09:3b:53:a4:d0:41:0b:
                    67:2d:04:1a:c0:29:70:7a:93:ca:c4:30:59:4b:9c:
                    69:6c:98:3f:27:36:7f:a5:68:f8:09:7a:ca:e0:d5:
                    00:93:53:83:bc:ea:75:cd:29:18:1b:9b:08:ce:55:
                    48:87:fb:5e:6f:1f:e1:f2:5b:bc:9a:07:9c:66:7d:
                    9c:5a:33:b4:e9:2d:89:98:7d:3c:89:76:6b:e3:88:
                    ce:ad:cd:05:45:1c:05:9e:2c:7c:59:02:3c:87:6b:
                    8e:09:0a:34:9f:95:f4:54:5a:e4:cd:e5:bd:b8:ad:
                    3d:2b:3d:f9:e3:d3:3d:35:cf:c1:05:37:57:bb:95:
                    e0:ce:fe:dc:a5:bc:81:70:a0:9e:4e:92:22:73:69:
                    e6:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:88:10:16:3F:59:98:F1:A7:A6:ED:2C:20:AC:FD:63:97:D5:6E:3F
            X509v3 Authority Key Identifier:
                keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:aa:75:51:e6:d7:59:e0:0e:8d:c6:61:24:ae:0e:1c:08:a6:
         78:1a:36:60:02:1e:96:7c:02:a3:f0:09:e4:e1:9f:d4:0d:4e:
         c1:1f:a6:54:43:2d:11:97:28:a2:61:c3:c2:73:6e:08:15:a7:
         af:d1:9e:35:39:6e:6f:e4:0a:9a:65:07:0a:e9:9f:2c:01:ff:
         90:91:5e:92:d2:b9:30:bb:8a:f3:b5:cf:7a:bc:3e:b6:f8:32:
         0e:9a:ab:f6:87:2f:eb:ae:9b:9e:69:bd:0c:88:25:6b:a8:ba:
         8a:c0:1e:63:31:55:b5:ec:76:02:3f:84:44:d0:f2:b6:03:4c:
         8a:24:cd:b7:7b:a5:d5:a0:f5:b1:da:ad:8a:16:33:d8:fe:64:
         f7:e9:eb:2b:9a:b2:87:f5:c2:87:90:fc:cb:4e:d8:52:fc:d4:
         5e:b4:be:6c:9a:db:47:98:45:6e:16:75:e1:ac:60:98:a2:40:
         d4:69:81:c6:a7:87:c2:9f:2b:52:d2:4a:4c:4a:2f:4b:a0:6d:
         ef:a2:96:ec:ac:99:10:d7:b4:b9:93:a9:a6:4b:14:95:67:d1:
         ae:02:a8:72:77:f5:3e:72:d3:10:cd:29:9b:81:78:79:b6:a2:
         2f:5f:33:a0:cc:57:b9:a3:42:8b:b8:0d:db:4a:7f:b2:67:83:
         af:1e:8d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:13:22 2025 by rpki-client