Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
File:                     hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json)
Hash identifier:          jPlC47ppiAvBwBL6K6FG1Fp6VlDeXQe4b1HvwQTztwk=
Subject key identifier:   A2:0F:CB:20:88:28:BE:76:DE:12:FD:C8:ED:61:E1:9F:5F:01:CA:55
Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC
Certificate issuer:       /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC
Certificate serial:       16A0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
Manifest number:          1695
Signing time:             Tue 22 Jul 2025 16:49:39 +0000
Manifest this update:     Tue 22 Jul 2025 16:49:38 +0000
Manifest next update:     Tue 29 Jul 2025 16:49:38 +0000
Files and hashes:         1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: 5OM0bvE5htHyUXWuRnLDmaGeRMJMrgp/dY+sLF2PVzA=)
                          2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl
                          rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 16:49:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5792 (0x16a0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC
        Validity
            Not Before: Jul 22 16:49:38 2025 GMT
            Not After : Jul 29 16:49:38 2025 GMT
        Subject: CN=687fc123-e7ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:4e:3d:5c:53:ad:96:a6:41:ce:1f:ff:11:56:
                    74:3a:82:33:bf:78:0c:6c:37:f5:83:92:fd:6b:66:
                    5b:e2:df:9c:73:3e:10:e5:c9:65:ef:1a:a1:fd:d5:
                    05:6d:37:4e:ff:13:ff:a0:b3:cc:dd:82:29:45:a8:
                    25:3d:78:6f:3f:33:55:a1:70:ca:d2:18:09:ca:96:
                    f6:91:4f:65:c2:8d:58:f2:50:12:f0:d5:07:55:88:
                    d0:c2:ed:da:55:d2:97:a9:39:b8:66:74:25:10:0d:
                    7e:de:c9:e4:b7:5b:de:d0:63:fd:bb:ba:4b:34:f2:
                    42:a6:83:29:83:11:9a:42:b4:91:23:dc:92:fd:a1:
                    82:51:58:22:7d:fe:11:d7:22:ad:06:11:77:e2:d1:
                    f3:29:5e:18:ed:db:ec:72:70:5c:11:7f:37:a5:e6:
                    4b:21:85:06:8e:9f:9a:89:1f:51:5d:4b:57:a9:5b:
                    6f:92:33:ad:fe:cf:12:79:fe:07:f6:db:90:e3:c5:
                    73:eb:86:4b:4a:a0:e6:26:8a:6e:3a:f5:ce:fa:fd:
                    2c:37:db:b2:1b:a2:5a:37:51:c0:46:e5:08:76:f6:
                    9c:e8:31:af:47:ef:f4:2c:2b:aa:90:6f:8c:3c:8b:
                    2b:a4:56:de:63:32:1a:7b:5e:d0:fa:38:4c:c1:90:
                    6e:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:0F:CB:20:88:28:BE:76:DE:12:FD:C8:ED:61:E1:9F:5F:01:CA:55
            X509v3 Authority Key Identifier:
                keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:5e:c8:46:68:39:2a:de:6c:c6:9c:34:31:49:fb:e3:1a:92:
         51:cb:e0:bd:2d:e1:d4:36:d4:7e:57:94:c9:a7:2a:ee:30:c5:
         44:f5:30:00:65:d6:42:14:f6:aa:1a:d9:cf:77:c5:6e:e7:f6:
         e3:a8:a0:9e:7d:89:92:55:4f:0b:99:94:89:d6:7d:33:8b:0d:
         ff:29:36:28:d4:57:c4:b5:e5:fe:9a:ed:1b:ac:3b:16:20:ef:
         16:59:8a:f5:fd:19:d6:12:66:86:ed:4a:b4:43:4e:e0:8d:4f:
         a8:2a:f0:e2:25:6c:ae:6a:07:19:02:32:47:d9:ff:d5:a9:96:
         52:0c:0e:c2:bb:f9:7f:a7:d3:df:c7:d5:25:7c:a2:68:94:b0:
         ae:0f:7b:d4:07:06:39:1c:43:f2:16:98:0a:f5:f2:3b:3c:30:
         67:d2:83:68:1a:73:d1:dd:65:9d:ff:36:b3:70:c0:18:8f:a9:
         b7:35:32:7a:4c:e9:da:19:fc:80:e2:4b:c0:87:59:4e:3f:0e:
         7e:e3:6b:e5:10:c8:da:2e:39:23:63:eb:20:5e:23:a7:fd:16:
         d6:a8:3f:36:5c:92:97:ef:31:c6:b0:58:ce:e0:8a:8a:8f:65:
         a7:d8:f4:f6:db:51:41:a8:15:a8:e7:3d:e8:7f:33:e6:d6:fa:
         f0:c0:81:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:46:42 2025 by rpki-client