Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
File:                     jhahBq30E6__xY8QEZJ09wDPpZM.mft (raw, json)
Hash identifier:          51bej4WvfXNbMucQBwSscu/RGuEk2vYPV2cfYKniDqE=
Subject key identifier:   AE:2A:BE:17:0B:AA:59:D2:38:F1:20:0C:A2:C9:88:1B:ED:48:E5:8D
Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93
Certificate issuer:       /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593
Certificate serial:       027E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
Manifest number:          027A
Signing time:             Mon 21 Jul 2025 02:01:21 +0000
Manifest this update:     Mon 21 Jul 2025 02:01:20 +0000
Manifest next update:     Mon 28 Jul 2025 02:01:20 +0000
Files and hashes:         1: jhahBq30E6__xY8QEZJ09wDPpZM.crl (hash: fOV+PuygTrccS92imuuI9TeBnmu07ch+n3cpYlq/oKk=)
                          2: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (hash: dftYADdFFUc1O011GFzDE5h9w7SMkc25c1t2QDLUX6k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl
                          rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 02:01:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 638 (0x27e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913EF8E, serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593
        Validity
            Not Before: Jul 21 02:01:20 2025 GMT
            Not After : Jul 28 02:01:20 2025 GMT
        Subject: CN=687d9f71-2e69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:ad:a6:2b:31:89:e3:16:7d:19:bc:84:52:bf:
                    d4:da:f0:99:be:75:5d:38:cb:ab:44:f5:b7:62:c3:
                    9f:94:52:2d:a8:5c:78:39:25:dc:4f:04:f8:35:4a:
                    57:4f:e9:54:48:2c:4a:69:30:48:ef:a7:de:52:94:
                    ed:67:59:44:f4:fa:17:f1:42:84:13:7f:7e:bd:59:
                    4d:c7:30:b3:2c:2c:43:ba:4b:af:6c:25:93:e3:22:
                    2a:e7:d5:4f:be:b3:a4:fc:58:da:f9:ce:02:a8:78:
                    cb:1b:a6:50:4d:ee:1e:fa:ed:38:50:d4:64:5c:43:
                    57:79:08:55:f3:c1:95:a7:19:87:22:00:e3:4c:ac:
                    fc:bd:69:51:46:54:83:1e:54:e4:2a:10:9f:8b:f7:
                    41:c2:5a:01:77:71:37:8d:d8:db:a0:0c:80:6c:24:
                    77:94:69:00:ac:cd:1f:c5:5a:17:b4:e5:48:e3:93:
                    d2:e7:fd:a1:82:12:25:83:26:e2:6d:20:69:a8:09:
                    36:7f:61:0d:60:f2:57:a0:ea:34:64:20:d9:00:21:
                    d3:dd:5a:10:f3:38:43:14:7f:7e:f1:e7:fd:7c:4f:
                    29:46:08:78:4d:b3:67:29:05:6b:ae:1b:23:e1:f2:
                    c3:02:c1:d0:41:1c:dd:68:52:63:e7:34:9a:79:dd:
                    83:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:2A:BE:17:0B:AA:59:D2:38:F1:20:0C:A2:C9:88:1B:ED:48:E5:8D
            X509v3 Authority Key Identifier:
                keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:a4:44:b7:c4:2a:63:e3:77:ef:42:dd:ae:8e:da:7b:71:65:
         00:b9:43:5c:83:ca:07:e5:07:f7:20:45:d3:30:cf:66:2f:a5:
         86:09:e5:e3:ac:19:71:69:23:52:a4:ed:46:7d:49:3c:19:40:
         a8:16:33:ff:59:9e:eb:6a:2d:f1:01:26:b1:19:bf:54:f3:c2:
         07:19:d8:1c:d0:c6:c9:f2:5f:2c:96:cc:ce:38:ff:22:c4:e4:
         e1:9e:0d:26:be:8d:1e:d5:79:2c:3c:39:af:d3:41:6d:1d:73:
         3e:8f:4c:8c:7c:2a:37:2e:46:6a:34:15:2c:d8:ae:f6:aa:79:
         34:21:fe:51:ba:cc:a8:44:12:ca:fd:c9:83:48:95:2f:45:d8:
         26:cb:fb:7e:71:73:4a:8f:85:08:6f:db:69:95:bc:3d:15:a4:
         a4:ed:6e:64:92:fb:8e:6f:38:42:40:4d:be:85:1e:89:45:83:
         e7:47:02:3b:df:6b:b5:16:af:6a:64:4e:b3:a4:c0:a8:af:18:
         29:25:81:ea:97:74:33:15:20:84:82:84:10:1a:62:ab:86:83:
         88:9c:cc:c5:73:91:10:c2:c8:90:f6:ef:e5:96:48:19:3b:8b:
         5a:a2:7a:45:84:7e:39:59:bd:57:02:79:bd:6f:c3:2c:c6:ad:
         b8:2f:a7:b7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0VGOEUxMTAvBgNVBAUTKDhFMTZBMTA2QURGNDEzQUZGRkM1OEYxMDExOTI3NEY3
MDBDRkE1OTMwHhcNMjUwNzIxMDIwMTIwWhcNMjUwNzI4MDIwMTIwWjAYMRYwFAYD
VQQDEw02ODdkOWY3MS0yZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1a2mKzGJ4xZ9GbyEUr/U2vCZvnVdOMurRPW3YsOflFItqFx4OSXcTwT4NUpX
T+lUSCxKaTBI76feUpTtZ1lE9PoX8UKEE39+vVlNxzCzLCxDukuvbCWT4yIq59VP
vrOk/Fja+c4CqHjLG6ZQTe4e+u04UNRkXENXeQhV88GVpxmHIgDjTKz8vWlRRlSD
HlTkKhCfi/dBwloBd3E3jdjboAyAbCR3lGkArM0fxVoXtOVI45PS5/2hghIlgybi
bSBpqAk2f2ENYPJXoOo0ZCDZACHT3VoQ8zhDFH9+8ef9fE8pRgh4TbNnKQVrrhsj
4fLDAsHQQRzdaFJj5zSaed2DdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4qvhcL
qlnSOPEgDKLJiBvtSOWNMB8GA1UdIwQYMBaAFI4WoQat9BOv/8WPEBGSdPcAz6WT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUY4RS8yQUIyNDkxODE3
MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2X194WThRRVpKMDl3RFBw
Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2poYWhCcTMwRTZfX3hZOFFFWkowOXdEUHBaTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
RUY4RS8yQUIyNDkxODE3MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2
X194WThRRVpKMDl3RFBwWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAMpES3xCpj43fvQt2ujtp7cWUAuUNcg8oH5Qf3IEXTMM9mL6WGCeXj
rBlxaSNSpO1GfUk8GUCoFjP/WZ7rai3xASaxGb9U88IHGdgc0MbJ8l8slszOOP8i
xOThng0mvo0e1XksPDmv00FtHXM+j0yMfCo3LkZqNBUs2K72qnk0If5RusyoRBLK
/cmDSJUvRdgmy/t+cXNKj4UIb9tplbw9FaSk7W5kkvuObzhCQE2+hR6JRYPnRwI7
32u1Fq9qZE6zpMCorxgpJYHql3QzFSCEgoQQGmKrhoOInMzFc5EQwsiQ9u/llkgZ
O4taonpFhH45Wb1XAnm9b8Msxq24L6e3
-----END CERTIFICATE-----
Generated at Wed Jul 23 02:27:04 2025 by rpki-client