Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft
File:                     CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json)
Hash identifier:          r5zdMJRXrGboZIRDcDJSOz9Orv2bOCcIMGPHR+VmmKY=
Subject key identifier:   07:33:56:CD:D3:8F:2B:78:17:9E:F2:09:1D:20:F7:BE:4F:67:B1:95
Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD
Certificate issuer:       /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD
Certificate serial:       06B8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft
Manifest number:          06B6
Signing time:             Tue 22 Jul 2025 22:25:48 +0000
Manifest this update:     Tue 22 Jul 2025 22:25:48 +0000
Manifest next update:     Tue 29 Jul 2025 22:25:48 +0000
Files and hashes:         1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: Hz59NE1CXW9vdnpZxMDug7ryZ31Xro2u0ReMcGsi/zI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl
                          rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 22:25:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1720 (0x6b8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD
        Validity
            Not Before: Jul 22 22:25:48 2025 GMT
            Not After : Jul 29 22:25:48 2025 GMT
        Subject: CN=68800fec-dbf8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:3d:07:c3:85:01:44:1d:dc:21:e7:aa:6c:b6:
                    a0:c2:51:43:79:cf:c0:db:ed:fb:5c:d7:e6:97:92:
                    f1:37:93:2d:ee:05:a9:64:14:74:8d:09:08:46:29:
                    4f:be:6b:48:2d:fa:85:58:b0:0d:5f:f7:13:cf:2b:
                    af:a8:e9:57:b5:db:a4:30:4a:4d:33:c0:fc:39:8c:
                    24:9f:eb:ab:cd:e4:84:e9:e8:b9:77:a7:12:3a:e1:
                    35:fb:88:e8:1b:95:78:9e:3d:81:01:d6:7e:b9:79:
                    6a:7d:99:1c:04:a0:20:16:07:18:08:28:fe:7c:84:
                    12:30:57:a9:5f:44:1d:1a:c9:55:60:ec:ad:00:e7:
                    a7:0b:35:0f:2e:7d:68:bf:cd:d4:a4:c5:de:f4:a5:
                    3e:0c:dd:85:b7:80:2e:41:12:16:17:af:38:e6:01:
                    d9:7c:37:aa:16:da:99:81:a6:12:9c:e0:15:d1:8d:
                    c5:43:61:6f:52:cb:8f:d8:1c:d1:c3:9a:cc:c0:75:
                    7b:ad:0f:20:1b:c7:8c:e0:a9:e2:9e:8b:69:78:0f:
                    9b:74:a5:51:46:99:d7:f0:6f:05:c3:a5:a8:26:74:
                    f9:8d:20:ac:c1:4c:70:7e:1a:a9:f6:96:17:b0:1f:
                    93:e2:4b:ea:47:0a:24:7f:77:ca:26:69:df:2a:39:
                    25:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:33:56:CD:D3:8F:2B:78:17:9E:F2:09:1D:20:F7:BE:4F:67:B1:95
            X509v3 Authority Key Identifier:
                keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:8c:e8:16:ba:ce:bd:dc:6f:1c:06:e0:9b:e3:c5:d9:05:d4:
         52:97:3b:33:52:76:63:63:34:62:08:bf:0f:e8:4d:a4:b7:56:
         e3:df:a0:5e:f3:c9:ea:1d:41:bc:70:b6:4d:cd:e3:47:9c:3d:
         0f:0b:5a:55:12:03:79:55:a7:9a:cf:ad:31:90:10:15:fe:c1:
         10:ae:0f:16:f5:8f:d0:cf:6e:3b:26:32:83:d4:0c:5c:a7:d0:
         48:21:00:73:5a:e9:30:7e:cd:5c:dc:02:39:fd:a5:c5:3a:2f:
         e3:e8:d7:da:3b:64:2d:62:16:e6:20:d4:6c:5c:46:fa:40:56:
         15:74:1d:1e:79:f5:4c:00:51:ba:3e:37:75:2f:1a:2d:2a:4f:
         2f:9e:2e:dc:f0:29:2a:9d:1d:80:3d:69:6b:c1:ad:77:25:51:
         71:d9:9a:76:eb:a2:2d:04:e7:39:2a:1f:b8:0d:f4:c5:f7:3b:
         66:f3:b1:be:58:f4:57:58:af:07:26:a4:9f:77:64:e5:3c:0e:
         77:da:dd:aa:ce:5c:b6:fe:7e:28:0c:3e:61:21:f5:f9:7f:f4:
         2d:76:0d:ab:44:3c:7f:e1:ef:41:de:26:56:eb:58:af:ff:d0:
         90:c9:21:91:47:8e:b8:eb:13:e2:8e:ee:4d:4f:1c:86:60:41:
         24:eb:f0:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:32:54 2025 by rpki-client