Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
File:                     AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft (raw, json)
Hash identifier:          /mQdHinSHzXTGxPrlF86NBwHr9GDrm1ep7/Xkd5iL+U=
Subject key identifier:   0E:F2:62:F4:6E:95:D7:6B:53:C1:A3:73:3E:BE:D3:F6:32:BE:04:64
Authority key identifier: 00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB
Certificate issuer:       /CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB
Certificate serial:       0B6C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
Manifest number:          0B63
Signing time:             Tue 22 Jul 2025 19:19:09 +0000
Manifest this update:     Tue 22 Jul 2025 19:19:08 +0000
Manifest next update:     Tue 29 Jul 2025 19:19:08 +0000
Files and hashes:         1: AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl (hash: VFZofzEVKaKwS+5YyxGP4ML0ljtrlVPlpu6Zb5f4qQs=)
                          2: 32DDB7DA368B11EA9713E971C4F9AE02.roa (hash: KCGgayyIaV9bw3+jN02UdfN4476+RHEdK89wpH03TIg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl
                          rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 19:19:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2924 (0xb6c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91735C9, serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB
        Validity
            Not Before: Jul 22 19:19:08 2025 GMT
            Not After : Jul 29 19:19:08 2025 GMT
        Subject: CN=687fe42c-475c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:9d:45:e6:91:d4:a6:3a:a9:65:f1:70:d7:88:
                    e5:73:14:9e:82:a3:44:17:ed:02:34:6f:e6:e3:51:
                    a0:4d:b7:37:39:51:98:b1:b4:b7:91:70:dc:d1:51:
                    93:c9:bc:07:15:df:76:86:b5:f0:b9:5f:6f:e1:33:
                    ef:50:78:b0:8f:7d:d8:69:2f:6d:e4:3b:48:e3:47:
                    36:96:b1:50:24:7c:77:24:60:ea:e6:ce:3e:83:08:
                    2a:67:29:a2:43:cd:7a:72:dc:76:12:80:88:40:12:
                    aa:b5:b6:84:57:bc:1d:e4:b4:1f:a6:7e:60:cd:cc:
                    c1:5b:5c:59:f8:50:d3:27:fd:a8:02:78:b0:ae:d2:
                    a3:d4:b4:52:02:e8:4e:43:96:bb:fe:08:ae:be:c7:
                    ae:21:16:43:5f:a6:45:e9:e8:67:5b:9e:03:26:b5:
                    c6:f1:2c:2c:92:f5:8a:fe:32:f5:86:45:b8:6e:07:
                    40:9a:13:45:99:e7:01:40:94:af:b2:28:09:99:12:
                    a7:43:95:25:11:1e:53:9a:5f:58:08:16:ad:14:b5:
                    c8:61:23:9c:17:a7:8a:95:10:95:db:fb:04:82:af:
                    19:d1:de:75:72:b5:4d:8c:75:cc:dc:60:c5:3c:30:
                    69:19:b3:86:c5:02:f4:0e:dc:39:56:da:93:ca:1d:
                    63:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:F2:62:F4:6E:95:D7:6B:53:C1:A3:73:3E:BE:D3:F6:32:BE:04:64
            X509v3 Authority Key Identifier:
                keyid:00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:49:bd:0e:90:91:e9:24:22:7e:99:cc:94:b7:22:0b:cb:e4:
         d8:b9:41:ff:19:7c:60:dd:31:19:64:9e:f9:09:5f:fb:cc:bc:
         41:f9:33:bc:33:ce:01:1b:cd:34:1e:46:e9:35:95:ed:ee:f8:
         6e:35:4d:f2:40:a8:3b:b3:39:d8:71:ee:55:6c:fd:6e:52:f9:
         63:0f:d5:40:6f:ff:05:f8:76:50:ae:ae:ac:f3:00:bc:a8:5f:
         d7:10:07:ca:a3:a6:4b:99:ef:bc:60:d4:09:31:4d:2f:84:dd:
         26:b4:81:98:f2:b7:43:89:92:ac:c3:d0:9d:5f:ae:d0:72:50:
         f7:a6:e3:f5:0f:16:df:03:27:42:9f:2e:2e:5e:32:db:f8:c0:
         82:c5:07:2c:8a:ec:22:9f:ac:40:f1:ee:87:73:b7:4e:08:5e:
         29:cd:5e:20:81:85:fe:c8:5a:6b:f7:b2:4f:2e:5b:b9:08:92:
         fc:68:64:65:d1:25:80:28:fc:ff:5e:5c:42:41:fa:2a:40:10:
         95:36:6a:c2:6a:6d:63:a0:db:8d:5c:19:90:05:4a:a3:a9:6c:
         c2:8f:f2:8f:b9:1b:21:b9:95:7d:ff:d3:e7:70:d9:3c:7e:62:
         3b:cb:f9:14:bf:51:d7:83:e8:4d:5d:77:f1:af:22:fd:1d:1d:
         6a:a1:9e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:16:59 2025 by rpki-client