Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
File:                     PMd5DiA3Zl70liuB2tL9B-1G-LI.mft (raw, json)
Hash identifier:          0DuAAWqHo6LbA2VY2SnPgjEmhzu2TbQAJFfCJ0tPq54=
Subject key identifier:   64:E8:DB:B8:6B:4F:AF:8B:8E:A3:86:8A:0A:04:02:86:E4:0A:BB:F5
Authority key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2
Certificate issuer:       /CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2
Certificate serial:       B6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
Manifest number:          B4
Signing time:             Mon 21 Jul 2025 06:07:33 +0000
Manifest this update:     Mon 21 Jul 2025 06:07:32 +0000
Manifest next update:     Mon 28 Jul 2025 06:07:32 +0000
Files and hashes:         1: PMd5DiA3Zl70liuB2tL9B-1G-LI.crl (hash: pLjUqI0kzwdGRcOzEMCQL8po7F5ZowbSq3kvYSvySqE=)
                          2: A6449CBA54A011EFB35AED26C4F9AE02.roa (hash: TlHlbn6q/SJJmLaIdFeAVpNRm4YQAAsTE8XrQ+CUo9Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl
                          rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 06:07:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 182 (0xb6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9163EB9, serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2
        Validity
            Not Before: Jul 21 06:07:32 2025 GMT
            Not After : Jul 28 06:07:32 2025 GMT
        Subject: CN=687dd925-c1b9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:69:df:a7:57:0d:68:b4:e5:e2:b2:80:68:60:
                    c0:51:34:7a:2e:0c:2b:d5:af:0a:9e:de:b0:f3:5d:
                    d7:d9:8c:ff:37:8b:8c:05:4e:b1:45:8b:d7:37:bc:
                    84:df:62:38:96:c6:1f:05:c4:e5:df:72:fc:42:a5:
                    e9:14:b4:bc:59:49:8c:71:7a:da:02:43:8c:8f:f9:
                    24:ba:14:1a:6b:5f:11:d8:cd:1f:40:7d:ed:a9:ee:
                    48:19:62:61:82:0a:fb:75:a5:81:b9:da:15:b9:6b:
                    ff:83:fc:d7:c6:d0:a9:37:60:57:93:33:a3:80:45:
                    3e:5e:1f:f8:79:9a:ed:02:fb:c9:f0:5e:dd:c0:db:
                    fc:b9:ed:06:4d:76:d8:d7:58:0c:2f:01:e8:3a:a5:
                    52:1c:d9:71:ea:a4:c4:ec:83:5c:fe:ed:a8:8e:99:
                    d1:8a:dd:48:05:b0:64:56:ff:c3:6e:90:f4:b9:64:
                    3b:84:d3:fb:c0:88:7d:0b:b6:39:b0:10:37:c5:f9:
                    1b:ec:c9:03:b5:4f:dd:01:1c:f0:77:52:79:70:33:
                    fa:b2:7b:24:38:2c:c4:0b:b2:61:91:26:3d:bf:59:
                    90:53:1d:31:62:9b:d5:06:0d:2c:e5:e8:5e:4b:df:
                    94:cf:f5:e6:09:d9:c8:ee:49:29:00:88:7c:ae:14:
                    90:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:E8:DB:B8:6B:4F:AF:8B:8E:A3:86:8A:0A:04:02:86:E4:0A:BB:F5
            X509v3 Authority Key Identifier:
                keyid:3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:99:e1:77:bf:6b:23:4d:bf:f2:4d:08:8e:93:ca:a6:97:0a:
         57:2c:f4:a4:42:52:3a:78:9e:f9:0e:40:e4:62:43:a9:3d:9a:
         74:ea:56:f6:bd:1a:f8:5b:e4:95:9f:7b:d2:3f:b7:f8:da:4f:
         90:ef:3b:57:23:89:cf:4b:93:fa:2a:3e:8e:3d:f2:07:1a:a9:
         ea:6c:88:d2:1a:e7:17:f8:c4:aa:8c:2c:77:83:38:e1:ed:2d:
         52:99:32:0b:76:f8:22:64:a6:12:eb:32:86:86:2a:1f:71:ab:
         9c:4e:09:d6:59:49:e8:fb:8a:29:11:d0:cd:59:90:35:10:ca:
         88:58:85:77:14:0b:cd:9c:ad:49:6c:d0:ce:f2:19:c7:88:84:
         ea:9d:f6:26:0f:9c:33:e0:c4:c0:43:e9:de:fa:86:4b:57:56:
         a1:9e:92:17:08:d7:3e:67:a7:38:db:76:45:f1:45:dc:96:31:
         68:f9:1e:1b:c0:e4:1f:64:75:13:29:3a:f6:39:87:96:31:00:
         0a:23:04:29:0b:d5:1f:95:f4:e1:b7:c2:0c:73:de:ac:34:5b:
         ea:41:ef:9c:75:10:4a:54:76:f0:64:99:48:55:2f:40:88:8c:
         64:fe:1f:1d:f4:63:0b:bc:f1:b2:d2:f8:fc:5b:71:6a:bf:01:
         7d:55:0f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:34:58 2025 by rpki-client