Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft
File:                     Rhwv4neii8iX8PzKT3yRCN2XSQM.mft (raw, json)
Hash identifier:          QYpwIgtwbC6/zTykJyYpvYEsmZYZLs7n1mCOCKWpwZ4=
Subject key identifier:   43:1D:D5:E5:14:CD:99:54:FF:56:EC:FA:5E:3F:2E:D6:57:9A:EA:85
Authority key identifier: 46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03
Certificate issuer:       /CN=A918711E/serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903
Certificate serial:       0ACF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft
Manifest number:          0ACF
Signing time:             Thu 24 Jul 2025 19:34:20 +0000
Manifest this update:     Thu 24 Jul 2025 19:34:19 +0000
Manifest next update:     Thu 31 Jul 2025 19:34:19 +0000
Files and hashes:         1: Rhwv4neii8iX8PzKT3yRCN2XSQM.crl (hash: 5AesQMXwv7VqqxcjPvpqtzQ243o4fHTRXww4APYRfjc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl
                          rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 19:34:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2767 (0xacf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918711E, serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903
        Validity
            Not Before: Jul 24 19:34:19 2025 GMT
            Not After : Jul 31 19:34:19 2025 GMT
        Subject: CN=68828abc-0f74
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:ef:f6:fe:de:52:23:a5:bc:67:d0:f0:c4:e0:
                    b6:8e:d9:97:04:8b:57:13:71:36:9b:6f:ad:8f:5e:
                    59:95:8a:fb:cb:fb:24:49:5f:09:ae:cd:52:dd:c9:
                    7c:d2:fc:b3:a6:ca:81:41:95:1b:91:fe:38:f5:5f:
                    a3:bd:f6:91:70:5c:fa:9a:8b:49:52:70:0e:75:23:
                    a8:6b:3f:31:c7:4d:ac:07:5e:ff:99:37:7f:b4:60:
                    6e:8a:f9:79:40:2b:6a:81:1a:b4:9a:73:c0:90:42:
                    4c:cf:ec:16:fa:02:f1:65:e3:72:9c:06:61:7e:9d:
                    81:1c:78:a9:4b:02:cb:a1:65:ee:3b:96:90:a7:4b:
                    5d:a3:8a:58:d8:6e:f8:29:5e:bc:65:7e:fe:9a:d4:
                    12:55:d5:2a:83:3a:32:cf:74:a5:58:e0:15:f2:ed:
                    65:6e:f3:c6:bd:39:f7:93:4c:f7:19:31:ac:d4:46:
                    9a:58:99:d8:05:f1:16:c8:69:9c:a8:29:17:11:13:
                    ac:8f:31:94:4c:3d:72:20:17:10:c9:24:ef:bd:6e:
                    24:73:cb:d8:dc:28:f7:60:46:fc:05:8a:a1:a6:12:
                    17:05:44:d1:6f:c6:44:85:d4:a5:19:67:17:cb:fd:
                    5c:af:61:f0:06:c8:db:15:3a:52:da:f8:35:30:8c:
                    29:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:1D:D5:E5:14:CD:99:54:FF:56:EC:FA:5E:3F:2E:D6:57:9A:EA:85
            X509v3 Authority Key Identifier:
                keyid:46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:0a:6d:24:1a:b4:c8:2f:bd:29:84:94:d6:7c:b3:83:58:e3:
         8c:14:b0:9a:f3:ea:fd:38:93:98:bf:52:79:8f:c1:fd:98:36:
         73:81:7f:57:81:ac:52:05:d5:7d:f4:a3:98:fe:bc:9a:1b:eb:
         6b:7a:80:97:24:2f:3e:ed:87:2a:f8:7e:93:97:06:f9:9f:c7:
         f7:e7:8a:02:72:53:29:f1:05:f4:71:0b:68:b0:b3:d1:82:75:
         2e:77:4e:49:d6:c7:46:fb:0a:97:49:43:9c:8e:e1:56:c0:60:
         01:96:3b:b7:c5:c8:3f:cc:f3:af:70:20:b5:e1:b4:25:7a:c4:
         97:91:86:eb:ad:75:f7:2b:96:85:4a:4e:79:e4:6f:1c:21:51:
         b6:11:c8:b5:d7:39:12:f9:9b:e5:70:69:8c:21:03:ae:55:11:
         c0:4b:95:a4:c2:05:a2:6c:d2:93:68:b0:bc:58:be:8b:0d:eb:
         90:00:15:d4:e1:26:b2:6f:b4:e1:80:f1:26:fd:fa:6e:69:6a:
         f4:78:96:10:9e:91:06:40:96:b4:32:84:f9:73:22:6a:88:ba:
         f8:52:8e:4e:e0:63:5d:5c:80:1a:59:ff:82:c8:48:6d:49:91:
         9c:44:20:da:1f:51:5f:05:84:ea:c6:0c:35:b0:60:4d:ea:52:
         16:70:95:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 13:30:21 2025 by rpki-client