Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/b0XbXSi7uaZT-C0c94J6WYN2RfM.mft
File:                     b0XbXSi7uaZT-C0c94J6WYN2RfM.mft (raw, json)
Hash identifier:          NuokrCAy7/zZmjbfMTa1YlM8KsaFVeuGh2IiJCoJsjQ=
Subject key identifier:   44:27:73:82:7C:36:A1:BB:58:80:9E:E9:C4:74:C2:78:1E:F3:C8:24
Authority key identifier: 6F:45:DB:5D:28:BB:B9:A6:53:F8:2D:1C:F7:82:7A:59:83:76:45:F3
Certificate issuer:       /CN=A9159309/serialNumber=6F45DB5D28BBB9A653F82D1CF7827A59837645F3
Certificate serial:       06
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b0XbXSi7uaZT-C0c94J6WYN2RfM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/b0XbXSi7uaZT-C0c94J6WYN2RfM.mft
Manifest number:          06
Signing time:             Wed 23 Jul 2025 08:33:39 +0000
Manifest this update:     Wed 23 Jul 2025 08:33:39 +0000
Manifest next update:     Wed 30 Jul 2025 08:33:39 +0000
Files and hashes:         1: b0XbXSi7uaZT-C0c94J6WYN2RfM.crl (hash: ZoJPy3jsXqnbAer/kMvUNsZlSOGH4TvemAUDWvhJQJo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/b0XbXSi7uaZT-C0c94J6WYN2RfM.crl
                          rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/b0XbXSi7uaZT-C0c94J6WYN2RfM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b0XbXSi7uaZT-C0c94J6WYN2RfM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 08:33:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6 (0x6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9159309, serialNumber=6F45DB5D28BBB9A653F82D1CF7827A59837645F3
        Validity
            Not Before: Jul 23 08:33:39 2025 GMT
            Not After : Jul 30 08:33:39 2025 GMT
        Subject: CN=68809e63-c6f0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:47:d4:da:a0:cf:04:8e:74:19:a0:1b:b9:dc:
                    89:ca:76:d5:44:86:f4:09:22:06:ad:93:4f:02:ab:
                    2f:a0:21:3f:5a:c6:16:a8:8d:89:91:7c:f8:73:3f:
                    6f:47:35:9c:c1:bc:84:b9:d1:51:ec:b8:cc:6e:74:
                    35:50:d4:e9:d4:24:8c:d2:1d:60:eb:59:ff:ad:61:
                    dc:8c:19:ff:18:7e:9d:38:5b:b1:3b:c1:ae:67:00:
                    b9:1a:95:45:b2:2b:65:7e:8e:63:49:ed:24:4e:35:
                    1c:f4:79:81:2c:1d:86:29:68:bd:dc:93:e0:40:38:
                    b6:e9:32:ab:7a:a9:2a:89:53:72:ab:47:26:1e:a9:
                    07:c6:95:eb:23:c6:4e:67:33:fa:28:97:ef:47:ba:
                    05:41:d9:9a:32:87:d4:7f:11:fd:7b:9a:04:54:fe:
                    81:a4:84:3c:ee:f4:ad:f6:16:6d:83:1e:4c:14:45:
                    5e:4c:62:80:32:eb:33:1b:7e:fb:78:d2:06:d2:db:
                    a3:b3:8e:0f:8b:af:98:d8:bb:a0:e4:6a:65:f0:4c:
                    78:10:60:a0:68:91:3d:78:70:69:f0:6a:d7:4b:eb:
                    08:24:5c:0a:53:ec:91:19:dc:79:ab:45:a5:0b:18:
                    18:e9:d5:5a:e3:2f:58:4c:a8:bb:82:63:c3:f8:a8:
                    8d:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:27:73:82:7C:36:A1:BB:58:80:9E:E9:C4:74:C2:78:1E:F3:C8:24
            X509v3 Authority Key Identifier:
                keyid:6F:45:DB:5D:28:BB:B9:A6:53:F8:2D:1C:F7:82:7A:59:83:76:45:F3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/b0XbXSi7uaZT-C0c94J6WYN2RfM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b0XbXSi7uaZT-C0c94J6WYN2RfM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/b0XbXSi7uaZT-C0c94J6WYN2RfM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:71:13:d3:41:80:01:68:7b:b6:05:a9:37:ab:b7:57:7d:14:
         05:2f:df:40:79:ee:ba:1a:3d:b5:4b:25:1a:3a:a8:bc:7f:4f:
         5f:4a:91:a7:99:b6:26:99:9d:a3:18:83:63:d1:1f:67:79:28:
         75:f0:7e:e7:d6:8f:05:33:f1:de:0d:90:5d:0b:4b:11:61:b9:
         54:6d:2c:6e:8e:c4:51:e6:d4:8f:5a:75:6e:2e:3d:d9:87:9a:
         e9:d3:9a:6c:3c:1d:2a:13:22:9e:90:23:4c:b8:06:1c:b9:ce:
         8d:1f:9f:f9:f7:28:93:fc:cf:63:4c:d5:f7:fa:c6:8b:26:10:
         c5:bf:10:c2:a4:40:2d:ba:f3:1e:5d:9b:fb:34:4a:ee:16:e6:
         e4:92:64:9c:d4:29:7f:46:3f:aa:fd:4e:09:cd:54:84:a2:7d:
         98:de:a1:27:a2:08:c4:86:42:e9:2a:2e:c5:47:96:7a:3e:82:
         d2:ac:be:18:4e:f5:b8:fe:69:27:8d:a4:ce:ef:60:89:32:89:
         96:52:2a:08:9d:07:27:d8:3f:3b:60:f5:32:d2:c6:f7:5f:c4:
         52:50:37:5e:ae:ea:77:9f:2b:98:5d:33:6d:c7:68:5f:86:8b:
         47:3f:49:d8:ae:e8:65:0b:a4:30:2e:d3:49:d4:b8:4b:9f:7c:
         86:64:b8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:02:52 2025 by rpki-client