Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft
File:                     m8V5k3xyDN2n11YYtyJj0kza_K4.mft (raw, json)
Hash identifier:          0w5asnAHgbtGwMJOl0lJKs77V8n24wWUQ8lRTx6LEoM=
Subject key identifier:   4F:23:67:CD:49:26:F0:F8:B1:7E:89:15:84:8A:7D:29:A9:B0:04:A9
Authority key identifier: 9B:C5:79:93:7C:72:0C:DD:A7:D7:56:18:B7:22:63:D2:4C:DA:FC:AE
Certificate issuer:       /CN=A91396E7/serialNumber=9BC579937C720CDDA7D75618B72263D24CDAFCAE
Certificate serial:       8B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft
Manifest number:          8B
Signing time:             Mon 21 Jul 2025 06:42:09 +0000
Manifest this update:     Mon 21 Jul 2025 06:42:08 +0000
Manifest next update:     Mon 28 Jul 2025 06:42:08 +0000
Files and hashes:         1: m8V5k3xyDN2n11YYtyJj0kza_K4.crl (hash: z111oHLwkWyyDPNtSeMJ78xMrctXi//911oINl87Lug=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.crl
                          rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 06:42:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 139 (0x8b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91396E7, serialNumber=9BC579937C720CDDA7D75618B72263D24CDAFCAE
        Validity
            Not Before: Jul 21 06:42:08 2025 GMT
            Not After : Jul 28 06:42:08 2025 GMT
        Subject: CN=687de141-d9d3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:ee:de:c4:66:14:77:96:e7:e5:aa:de:0d:05:
                    60:ed:e1:8d:21:83:e6:0f:cb:72:17:d3:7b:8d:a7:
                    2f:8d:31:0b:29:d3:e5:80:e7:56:0e:84:09:48:66:
                    28:86:92:ab:ed:38:04:09:91:d9:15:57:30:0a:15:
                    f8:d7:1c:82:04:06:5a:4f:04:24:d9:f9:52:f7:24:
                    36:30:7a:5e:81:80:da:70:18:a6:de:c6:e0:93:80:
                    37:2b:ad:c5:8c:a4:fe:a8:50:03:94:34:6f:7d:2a:
                    9e:49:65:cd:67:62:d2:d3:d2:66:d2:17:06:4d:58:
                    85:07:c0:fe:4c:16:53:1e:f7:87:6e:2d:e9:1e:2f:
                    d1:d9:3f:8d:93:4a:d2:ca:bc:9e:b8:03:7d:ed:43:
                    c9:8a:c8:60:11:7f:6d:db:4b:d8:a4:06:ff:5c:5f:
                    9c:3a:67:6e:fd:77:c0:f1:12:72:f2:8f:6d:ce:47:
                    3d:ec:15:fc:79:24:e1:f9:18:eb:b4:09:1a:e1:5a:
                    26:01:2e:56:0b:d9:fc:f1:e1:2b:58:71:bc:8d:d9:
                    79:f2:8c:38:f9:54:8a:73:a8:c9:1e:c8:a9:6b:a9:
                    e1:e3:61:6f:8d:19:8f:d8:3f:ad:4f:df:3a:45:c0:
                    91:1e:2c:ab:60:32:90:01:2b:58:ab:01:74:de:f9:
                    ac:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:23:67:CD:49:26:F0:F8:B1:7E:89:15:84:8A:7D:29:A9:B0:04:A9
            X509v3 Authority Key Identifier:
                keyid:9B:C5:79:93:7C:72:0C:DD:A7:D7:56:18:B7:22:63:D2:4C:DA:FC:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:d3:ec:ad:7d:75:6f:63:25:54:11:2e:54:fe:d8:09:5e:08:
         54:8b:8f:9a:35:48:c1:b3:1d:c6:9d:a9:ae:31:58:2a:8f:c4:
         0f:21:09:22:0a:c6:24:30:e3:5d:b2:75:2c:9e:2a:30:77:75:
         f3:13:77:ff:e8:e6:4e:ef:10:50:ed:d5:d6:37:04:6d:8a:9e:
         c3:5f:d2:8d:64:dd:c5:b7:13:52:b0:f2:5d:26:e6:42:8d:94:
         10:c6:34:4c:e1:75:3e:69:db:f5:40:ef:d3:a4:51:7d:16:72:
         d1:4c:0a:86:32:f6:d6:fe:ed:d8:9b:a8:27:b9:9f:1e:47:5e:
         d6:72:2f:62:8c:50:98:61:4c:c5:6e:57:9c:3a:d9:f2:88:e1:
         88:5d:d3:5f:b2:bb:97:f4:cd:5a:12:6f:1d:a4:e7:85:db:09:
         a2:98:93:c6:f8:07:7e:7e:18:78:5e:4a:d7:a0:47:a7:ce:b6:
         ac:a9:28:21:64:63:b0:b0:59:f4:80:53:c3:a5:68:fe:d3:46:
         c0:2d:23:e4:d9:4f:3f:95:a6:0f:11:fa:f4:9d:49:06:19:cb:
         47:1b:b7:98:a7:1b:c8:70:c8:06:0b:aa:f4:c0:9a:d5:2a:c7:
         c9:58:86:b2:82:05:34:cd:af:cd:e2:66:11:5e:a0:55:91:9f:
         40:d6:35:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:34:14 2025 by rpki-client