Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft
File:                     _yC8N52JoNs75vzykPo91S63-iA.mft (raw, json)
Hash identifier:          e2GQj7ii9tYsSk9s7AYS7wJnZIdj7mnph4tM4chmDis=
Subject key identifier:   83:8D:E9:70:A1:DC:BE:7C:34:2F:23:C1:FB:F5:56:BF:FA:8C:B8:12
Authority key identifier: FF:20:BC:37:9D:89:A0:DB:3B:E6:FC:F2:90:FA:3D:D5:2E:B7:FA:20
Certificate issuer:       /CN=A91FC4FB/serialNumber=FF20BC379D89A0DB3BE6FCF290FA3DD52EB7FA20
Certificate serial:       33
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft
Manifest number:          31
Signing time:             Fri 25 Apr 2025 06:39:52 +0000
Manifest this update:     Fri 25 Apr 2025 06:39:51 +0000
Manifest next update:     Fri 02 May 2025 06:39:51 +0000
Files and hashes:         1: _yC8N52JoNs75vzykPo91S63-iA.crl (hash: H3MAyrlQUiZquDmrnoWfZnPIlr5QKdk0+w/f5Wv34CI=)
                          2: F20BD4DEDD5C11EFAA80BB1AC4F9AE02.roa (hash: v5aAOYFTKYQs9mswlL+k53rGpICa845yISkOLh9tIAI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.crl
                          rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 02 May 2025 06:39:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 51 (0x33)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FC4FB, serialNumber=FF20BC379D89A0DB3BE6FCF290FA3DD52EB7FA20
        Validity
            Not Before: Apr 25 06:39:51 2025 GMT
            Not After : May  2 06:39:51 2025 GMT
        Subject: CN=680b2e37-5b87
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:11:f1:aa:7c:2a:eb:25:b0:f9:63:0f:ca:a0:
                    dd:4e:0d:6f:81:64:65:c4:e4:18:f2:87:6e:f1:37:
                    6f:97:af:9e:47:9e:4a:f7:ec:e4:45:d3:cd:20:d7:
                    4b:ad:1b:66:92:a8:3d:4a:de:b0:95:cf:0b:84:ea:
                    4e:89:eb:69:13:4a:ff:46:f1:39:58:49:33:64:f1:
                    c8:16:5c:8d:6d:c5:43:f1:88:22:34:b1:6a:4d:27:
                    e0:a4:df:ea:da:21:1c:2b:0c:4b:f3:4f:53:bb:2c:
                    be:a3:5a:e6:53:d5:32:2b:34:67:a5:1e:69:55:ed:
                    96:66:e2:b8:2c:33:4e:4c:a1:1b:93:60:16:0d:05:
                    ae:a5:90:94:17:3e:0d:11:c7:14:53:7d:2f:69:3b:
                    5f:83:ec:c6:ea:6e:55:3d:33:2d:8b:97:1d:ce:40:
                    c8:08:5d:ca:ae:4b:22:f9:89:92:61:c3:40:94:b3:
                    84:b7:d2:18:f5:02:8d:27:f3:48:d6:6e:9e:03:a2:
                    01:6a:36:bb:b3:0d:a1:0d:b7:2e:03:3f:c2:20:31:
                    98:7c:2e:be:42:b3:32:3f:b9:96:79:14:e4:da:db:
                    5b:34:2f:e3:7a:67:49:b3:2c:90:3c:b7:8c:4a:6d:
                    00:cd:81:54:82:c3:98:53:1a:38:b6:30:58:29:fb:
                    da:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:8D:E9:70:A1:DC:BE:7C:34:2F:23:C1:FB:F5:56:BF:FA:8C:B8:12
            X509v3 Authority Key Identifier:
                keyid:FF:20:BC:37:9D:89:A0:DB:3B:E6:FC:F2:90:FA:3D:D5:2E:B7:FA:20

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:bb:81:c0:a6:ed:16:06:90:2c:34:e2:2c:40:87:8c:a7:be:
         d4:11:98:52:68:03:97:a9:61:e6:ea:cf:6f:89:fc:11:0b:fe:
         bd:1d:2e:b9:20:39:b0:18:bb:67:53:27:32:73:53:1a:cc:ee:
         a8:ad:a9:59:8b:90:a1:4a:94:dd:ba:f0:39:c6:37:48:37:41:
         f9:0a:bf:0e:0d:00:70:97:aa:19:a1:94:70:7b:a2:cf:06:b3:
         a9:3d:1d:9f:33:b7:e7:2c:95:e9:4e:07:db:a2:3e:3a:37:2a:
         2d:a8:cd:82:fd:75:d2:ac:e8:65:63:ca:58:ee:da:62:a6:ff:
         95:ea:3b:1f:50:c1:a2:12:21:23:91:46:ba:09:8d:e6:3c:be:
         a5:27:de:85:43:ba:3f:6c:0c:86:50:5f:b3:9c:5e:5e:db:48:
         c8:83:6b:a6:9c:7e:dc:93:82:5f:9c:4f:24:82:c4:63:f4:c7:
         98:23:cd:54:85:f3:59:7d:97:a8:3b:9b:36:9f:9b:1e:09:1e:
         7f:41:f4:3d:36:1a:28:4c:db:75:67:76:db:20:55:05:50:09:
         62:df:c3:dc:37:03:b0:a3:a5:ae:af:99:05:9f:2b:b9:93:0e:
         f6:54:b6:24:7c:20:16:95:4e:d4:cc:41:f3:25:2c:13:88:d5:
         fa:a2:f8:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:59:00 2025 by rpki-client