Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft
File:                     J5KVmyX7-evckzm6nH01VXJpaas.mft (raw, json)
Hash identifier:          ac4kGvfv1yfY2XFTxMjjE1fFrmiGqcAet/PW2bauphw=
Subject key identifier:   F2:77:AC:74:6A:F0:8A:28:CC:92:DA:4B:30:E2:1C:CF:9F:30:F3:8C
Authority key identifier: 27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB
Certificate issuer:       /CN=A9189261/serialNumber=2792959B25FBF9EBDC9339BA9C7D3555726969AB
Certificate serial:       0676
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft
Manifest number:          0671
Signing time:             Thu 24 Jul 2025 22:43:13 +0000
Manifest this update:     Thu 24 Jul 2025 22:43:12 +0000
Manifest next update:     Thu 31 Jul 2025 22:43:12 +0000
Files and hashes:         1: J5KVmyX7-evckzm6nH01VXJpaas.crl (hash: HOFh9JkbF/G3SdvoHEGjYxWFSZljGRKStk0dJ8yR/no=)
                          2: CDACEC3686AD11EBBDFD106EC4F9AE02.roa (hash: U3xUizSTWdJYMjLLq4qIbC/HRkla7mf9lgp0wntQ29I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.crl
                          rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 22:43:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1654 (0x676)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9189261, serialNumber=2792959B25FBF9EBDC9339BA9C7D3555726969AB
        Validity
            Not Before: Jul 24 22:43:12 2025 GMT
            Not After : Jul 31 22:43:12 2025 GMT
        Subject: CN=6882b701-3a6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:f6:b5:ab:28:3d:f5:09:42:41:5d:69:03:9d:
                    c3:0c:c5:e9:9a:c2:68:ea:68:87:c0:d4:9b:6d:bb:
                    03:c3:a0:33:f6:df:db:3e:da:59:d5:4c:53:73:77:
                    30:c4:01:c7:84:64:73:4e:4e:c1:99:a0:f0:bb:96:
                    26:0e:d4:e6:1e:ac:62:98:26:d8:45:c5:3c:0d:c6:
                    2b:fd:4d:16:d5:bd:42:13:b8:1f:bf:cc:53:82:65:
                    67:c7:56:c0:8d:03:14:71:80:ef:b0:93:a6:77:27:
                    eb:7e:87:52:b2:0c:d2:c3:d5:4d:1c:7a:9d:b4:f1:
                    8b:2a:93:15:2b:7f:4a:6a:09:98:5d:9e:01:93:0f:
                    93:a9:a8:4a:e8:e7:96:bf:a2:43:11:ba:6c:2e:56:
                    da:19:e4:09:9d:55:c5:f9:cc:bb:d4:f9:8a:d0:fc:
                    2d:dc:7f:85:04:1c:b9:0e:f3:4c:3f:a2:d8:fa:5c:
                    1c:aa:3c:15:03:a6:f6:77:58:05:f6:0f:89:ce:9a:
                    91:51:01:29:40:a3:67:65:e1:5c:ef:b3:bb:35:ee:
                    11:95:7b:0c:88:d4:42:42:a5:17:19:89:d2:a8:85:
                    b3:84:dd:1f:61:31:9c:bd:40:41:b4:75:cd:97:f1:
                    81:90:aa:63:a4:45:a8:a7:0c:f7:38:2a:f5:ed:a3:
                    3f:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:77:AC:74:6A:F0:8A:28:CC:92:DA:4B:30:E2:1C:CF:9F:30:F3:8C
            X509v3 Authority Key Identifier:
                keyid:27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:27:90:0b:69:f6:44:95:3c:5c:d4:ec:d2:f0:ca:7a:87:c4:
         d2:fe:3b:6e:d0:27:19:10:7b:40:1a:4a:9d:f2:99:77:3a:11:
         d8:d8:67:e6:00:9a:a6:60:81:45:74:d1:92:66:f9:0f:ac:61:
         3a:85:67:87:ec:7a:82:2a:51:fe:0d:e6:49:cb:9d:fb:1a:f1:
         30:ea:13:87:86:75:40:12:13:55:a9:af:f4:22:ee:b5:60:c2:
         d5:61:e6:e7:d5:01:68:ce:be:c7:dd:12:eb:4e:9c:0f:5c:71:
         60:a8:a4:d8:05:3e:2e:65:86:9c:41:8b:ee:d9:a8:75:ac:82:
         ab:25:03:7d:3b:3d:ec:22:19:1e:95:d1:83:21:85:07:38:b0:
         e5:5c:78:0f:a5:33:21:87:96:c0:41:b4:9d:f7:88:8d:62:32:
         f5:1b:0d:51:8d:8a:53:a7:27:01:3f:be:34:6f:50:4a:5a:db:
         96:99:44:27:21:2a:a1:e3:ae:52:1b:c3:47:fa:0f:a8:4b:9e:
         10:33:3e:4c:6a:8c:ea:16:d0:37:4a:49:94:8d:f3:eb:d0:1c:
         ac:49:7a:ca:f8:f0:2b:84:2b:7a:4d:1b:e7:4e:6d:49:f4:37:
         ae:c7:61:75:91:ed:4e:18:54:e8:d4:b4:8f:6b:0a:4a:ee:63:
         e0:e3:95:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:03:16 2025 by rpki-client