Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
File:                     -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json)
Hash identifier:          GqUlBRE4rO1jShpG1iFD3j33uGo4MxVpM60iP5H0QX4=
Subject key identifier:   54:AD:62:E0:51:B0:82:9F:70:BF:1B:94:FB:33:FC:2B:69:B1:38:97
Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37
Certificate issuer:       /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37
Certificate serial:       D8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
Manifest number:          D6
Signing time:             Fri 25 Jul 2025 05:51:48 +0000
Manifest this update:     Fri 25 Jul 2025 05:51:47 +0000
Manifest next update:     Fri 01 Aug 2025 05:51:47 +0000
Files and hashes:         1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: RV365fak6TrKED+TWMQv6h3lII25pdVPkLR2L4AHhZQ=)
                          2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl
                          rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 05:51:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 216 (0xd8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37
        Validity
            Not Before: Jul 25 05:51:47 2025 GMT
            Not After : Aug  1 05:51:47 2025 GMT
        Subject: CN=68831b74-f55b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:fd:f5:23:32:a4:3f:a8:ca:b6:0b:cd:dc:af:
                    52:77:6d:e8:c4:38:93:86:ba:b0:3f:7c:62:d7:c3:
                    02:80:85:6f:20:82:c8:19:db:cc:9a:04:3d:8d:fb:
                    ab:1a:e6:0b:20:1c:a0:5a:cb:9e:fa:4c:c0:3d:bd:
                    03:d5:74:7b:c8:18:1a:13:fd:94:5f:99:79:88:66:
                    5f:61:36:49:b0:e8:4f:3d:19:bc:ac:b6:54:a6:b9:
                    9b:19:c8:4f:5f:a7:44:6f:1c:58:09:e5:2d:ec:01:
                    39:a2:4f:1d:b4:c9:71:00:b8:5a:aa:90:ff:be:7c:
                    a1:08:5d:d4:52:83:e2:ae:af:6a:7f:53:3a:7a:65:
                    23:5f:50:86:03:fe:6c:94:ae:2c:7a:d6:6d:b1:ba:
                    50:9b:ce:0c:5d:3d:f1:96:e9:2e:76:83:8d:a8:1d:
                    d1:82:7d:23:5d:e4:95:74:b4:ea:b8:0f:5e:b7:53:
                    53:94:56:3d:ae:cc:37:a6:a8:75:6b:41:a1:d0:f8:
                    ef:e6:b6:46:de:8a:72:4a:1a:cd:29:44:57:66:6d:
                    b7:da:16:6e:82:bc:95:16:de:cc:bf:46:32:ab:58:
                    cc:20:fe:89:35:fe:d3:2c:07:3b:12:46:86:74:fb:
                    32:c5:34:84:05:b4:9f:83:ba:0d:cc:20:15:d5:c6:
                    82:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:AD:62:E0:51:B0:82:9F:70:BF:1B:94:FB:33:FC:2B:69:B1:38:97
            X509v3 Authority Key Identifier:
                keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:28:57:f9:2e:e7:d2:3e:66:13:16:a2:2e:24:e3:76:87:e7:
         8c:de:5a:7f:14:80:aa:be:81:95:88:2d:bc:73:1a:f8:e7:fb:
         c9:d1:37:77:03:d6:1f:12:eb:4c:5d:87:7e:46:be:f1:2b:96:
         67:af:fc:b1:0d:e7:fc:4d:21:d5:a8:8f:b1:36:68:49:6d:59:
         03:f0:a6:a9:1c:c9:81:79:f1:9f:0d:91:ab:7a:f4:2e:73:13:
         ef:83:db:eb:7a:cc:3a:07:da:1f:c9:21:e4:72:10:34:ae:bc:
         20:48:b8:57:85:94:9f:9f:2a:e2:2a:87:46:cb:e1:f0:5a:ee:
         f1:a5:d1:a6:07:89:20:9f:e6:a8:e9:af:36:78:1f:17:94:a2:
         c9:b8:cb:0f:4d:b2:76:d7:be:e2:13:7c:ed:4e:df:de:32:85:
         81:07:5b:78:33:0c:d6:2e:27:e9:bb:06:9f:6a:46:f2:a0:4d:
         25:f2:0d:c8:75:5d:bc:d5:00:f6:ae:af:a3:43:08:db:43:94:
         dc:01:41:fb:e8:74:64:52:12:14:8b:e7:f5:ab:b1:14:e4:b7:
         77:3e:75:c8:01:00:49:98:d6:d4:43:3d:54:d4:cf:5f:67:5c:
         9f:c1:ff:d0:f0:99:57:f2:4e:06:d7:b8:48:78:cc:a3:71:0e:
         ea:99:4f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:03:19 2025 by rpki-client