Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft
File:                     IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json)
Hash identifier:          3oX6qTgWXCaPWvSjjT56WUXSnHo8ErnxmDTZMlMNaoc=
Subject key identifier:   79:24:09:50:70:8C:F0:93:D3:9C:8C:26:B5:5E:D2:6E:3C:E9:A3:9B
Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99
Certificate issuer:       /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99
Certificate serial:       CB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft
Manifest number:          C8
Signing time:             Mon 21 Jul 2025 05:54:57 +0000
Manifest this update:     Mon 21 Jul 2025 05:54:56 +0000
Manifest next update:     Mon 28 Jul 2025 05:54:56 +0000
Files and hashes:         1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: ozatRHhLgWP4wfJ5pS6YVYX/XXSA1+rCpeERu8WMGhE=)
                          2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: wZz+OlqUMy/mBTlpV+JPL6/+u7+0FBG8gjwEC4u2wAU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl
                          rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 05:54:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 203 (0xcb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99
        Validity
            Not Before: Jul 21 05:54:56 2025 GMT
            Not After : Jul 28 05:54:56 2025 GMT
        Subject: CN=687dd631-3a2d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:52:0b:d9:4e:b7:54:bc:d6:ec:bf:d0:10:d7:
                    87:96:a7:e2:17:d1:fb:0e:67:ca:7f:1f:d8:d2:bc:
                    d4:a8:50:f4:0e:4e:33:ca:89:ca:b1:37:fe:0f:64:
                    f8:ee:01:96:13:64:a9:eb:25:5d:81:bd:2e:17:1b:
                    31:a6:f5:45:95:97:f7:22:a4:bd:6d:a2:a6:d8:a6:
                    bc:c2:48:d9:5c:e4:b1:77:d3:f6:5a:e6:9c:3d:c5:
                    04:28:10:e3:2c:60:2f:cb:e5:dd:ba:fe:d7:11:c1:
                    f0:78:95:0c:09:c1:5d:47:f5:25:36:77:d3:27:e5:
                    8d:a5:f2:24:99:ca:ab:4c:5a:c1:97:0f:dd:d5:6d:
                    79:45:a5:c8:a8:d1:14:3f:3c:60:9f:4b:d8:15:a0:
                    94:d1:5a:38:4c:3d:56:0f:a6:b0:f4:1a:89:21:d0:
                    a6:ef:0b:1e:c5:51:af:cc:1a:af:5c:16:15:42:6d:
                    93:39:a8:27:cb:32:97:db:82:db:1f:ff:00:f5:5b:
                    83:57:88:b6:5a:43:ce:65:d4:a6:b8:d2:26:8d:d4:
                    c2:6a:1f:b6:0b:81:7e:9c:74:e0:4f:1b:d9:11:b0:
                    6f:f1:d7:c7:1e:49:96:cd:0e:75:38:40:f1:de:2d:
                    26:c0:57:cc:a2:ba:c9:49:51:9f:1d:a3:34:aa:df:
                    da:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:24:09:50:70:8C:F0:93:D3:9C:8C:26:B5:5E:D2:6E:3C:E9:A3:9B
            X509v3 Authority Key Identifier:
                keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:f9:cc:40:a8:b5:2a:cb:a5:80:e7:ac:f5:b7:dd:47:f5:73:
         67:e9:f0:de:88:cf:35:d8:bc:f7:9c:ef:05:2b:0e:df:be:d6:
         28:31:83:0a:79:af:f5:b7:19:e0:fe:4d:eb:75:5d:66:67:c7:
         d5:5d:ba:21:a0:c1:2b:14:4b:ee:91:62:80:49:5d:8b:72:2c:
         69:0b:fe:9c:31:24:e8:f3:f7:aa:0b:bc:b3:42:6c:f3:ff:6b:
         39:c5:e0:c7:1f:f2:81:4a:0e:8a:1f:27:af:8c:b1:4f:db:65:
         4f:35:f1:9b:9e:bc:fa:38:13:bd:a5:bd:73:d4:41:ea:ea:6d:
         70:09:18:70:e1:81:a8:49:ba:48:5e:7a:2e:ad:82:3c:00:df:
         fb:30:72:33:0d:dc:8a:f3:25:9c:c7:68:b4:c3:8e:9d:aa:d2:
         8c:67:12:2b:a9:8a:9a:34:43:2f:15:1c:83:bc:71:3f:0d:ea:
         96:37:fe:02:25:d2:2e:b6:d6:4e:a2:cb:ce:11:d8:55:70:88:
         e0:cd:22:d2:cc:97:6b:82:1a:2a:34:87:29:f8:f4:d2:2a:a4:
         5e:31:f7:9c:43:88:f3:d8:f6:5d:ee:da:00:48:49:11:55:23:
         71:ad:ae:3e:f5:8f:b3:7c:7f:4c:76:4f:59:17:4d:9c:3f:79:
         df:41:45:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:14:59 2025 by rpki-client