Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
File:                     bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json)
Hash identifier:          MhcejNf64/NsyO6CCxB5jrxMhPPe6Swum6bitCDjeYM=
Subject key identifier:   29:D2:DC:3B:C5:77:2B:94:E7:B9:B9:0E:23:7F:B2:2C:92:EB:CC:C2
Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C
Certificate issuer:       /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C
Certificate serial:       06A1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
Manifest number:          069A
Signing time:             Thu 24 Jul 2025 22:31:57 +0000
Manifest this update:     Thu 24 Jul 2025 22:31:57 +0000
Manifest next update:     Thu 31 Jul 2025 22:31:57 +0000
Files and hashes:         1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: 3i+isf254AZzBdTO8ACcqqoLJG0em/CGylyQ/Howri0=)
                          2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl
                          rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 22:31:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1697 (0x6a1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C
        Validity
            Not Before: Jul 24 22:31:57 2025 GMT
            Not After : Jul 31 22:31:57 2025 GMT
        Subject: CN=6882b45d-46ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:58:e9:91:9e:83:7e:6d:44:e3:ad:41:13:5c:
                    59:21:bf:77:a0:96:05:9e:ae:bd:31:ce:b4:42:2a:
                    5b:33:54:8c:90:d1:6e:63:0b:51:7e:f0:a0:6d:db:
                    34:2d:f1:bc:9b:e2:a6:b2:51:1c:5e:51:bb:0a:5a:
                    dd:7f:2c:95:a2:78:f6:7a:1d:3b:54:6e:e2:38:52:
                    af:6f:3b:e2:2a:23:ea:ea:e9:64:12:2b:8f:2c:a4:
                    1f:df:a7:50:d7:66:fe:5b:23:d2:ee:89:f1:3c:77:
                    56:59:0d:3a:da:3d:a3:2a:ff:d3:ac:1c:80:bf:91:
                    ca:27:99:a7:79:27:ca:4a:64:17:88:bf:9e:51:19:
                    83:0a:5e:62:cd:a2:3c:56:51:35:12:8c:b0:02:d5:
                    b2:f2:bc:17:7e:92:a7:56:fb:64:1d:b2:52:06:7b:
                    b9:74:de:fd:cb:7c:55:76:71:3d:2d:68:70:a6:4e:
                    16:fd:13:6d:87:2a:3b:e0:b9:f2:d1:23:7b:ca:20:
                    9c:f5:b3:1e:3c:52:c5:d9:86:73:3a:25:11:92:b9:
                    5b:3b:9f:5b:88:a1:5e:a1:1a:6f:ee:c2:2b:8a:ef:
                    ae:61:7f:5b:ac:4a:c1:2b:86:5c:74:c3:a9:2d:48:
                    28:eb:15:d0:7e:b3:3c:19:47:81:e5:aa:4f:2a:89:
                    70:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:D2:DC:3B:C5:77:2B:94:E7:B9:B9:0E:23:7F:B2:2C:92:EB:CC:C2
            X509v3 Authority Key Identifier:
                keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:e8:ce:4e:6f:29:f6:e7:49:55:6d:88:87:f4:fb:8c:68:a7:
         9a:84:e6:b8:13:9c:8c:c8:3f:1f:80:25:12:87:ea:33:b3:5b:
         7c:b6:53:ab:4c:5d:05:36:47:77:39:b1:74:3a:09:4f:79:1d:
         26:8e:44:bf:b9:b2:69:8b:0c:63:c2:83:1d:83:bd:5f:ee:f7:
         34:f6:41:82:0d:3c:b6:d1:20:45:da:32:9b:17:5f:67:60:38:
         36:30:a9:f6:43:ab:38:26:93:ed:63:28:0c:2a:e5:3b:b7:09:
         03:94:6e:b7:b0:3d:d1:fe:0d:14:7f:1e:9b:a9:af:e9:03:b9:
         1e:c5:ee:ba:74:c9:dc:ec:08:5d:05:ab:27:ac:84:4d:cb:78:
         56:64:a8:b4:23:58:ec:6b:8a:e4:3f:01:13:4e:ea:b0:3b:d9:
         58:7b:31:ab:59:6f:97:2b:4c:64:23:b4:c4:49:2d:d4:48:34:
         75:82:5e:02:36:e8:06:8c:31:3d:6e:13:93:be:fc:56:07:61:
         a0:2f:6b:4d:48:2c:03:ae:33:81:97:be:66:ba:f2:a5:ab:f2:
         8a:d5:10:e1:e5:9e:bf:aa:f6:38:9f:9a:e1:77:08:ac:93:6e:
         b9:4a:b9:6f:c1:e5:72:7c:ac:2a:56:c6:37:24:7a:29:30:38:
         d7:6e:fc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:09:13 2025 by rpki-client