Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
File:                     Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json)
Hash identifier:          menXQ8LgzmIvLm4QFMtgbX8izNCpWaKG2ZBBfv5emiw=
Subject key identifier:   60:FF:FE:21:B4:52:B1:B2:52:E1:38:6F:26:CE:9B:5E:FF:7E:4F:62
Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47
Certificate issuer:       /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847
Certificate serial:       02E2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
Manifest number:          02E0
Signing time:             Wed 23 Jul 2025 01:47:22 +0000
Manifest this update:     Wed 23 Jul 2025 01:47:22 +0000
Manifest next update:     Wed 30 Jul 2025 01:47:22 +0000
Files and hashes:         1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: AZnaIAVXSwC1Jhb9lYTubxa0g82uR1ppzIt046HG96E=)
                          2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl
                          rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 01:47:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 738 (0x2e2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847
        Validity
            Not Before: Jul 23 01:47:22 2025 GMT
            Not After : Jul 30 01:47:22 2025 GMT
        Subject: CN=68803f2a-20b6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:1f:75:ee:b8:28:f9:95:c7:fd:05:05:52:3c:
                    0f:5f:27:29:43:6e:51:11:1b:4f:b3:2d:a0:81:82:
                    ee:8b:83:86:ae:1f:cb:16:05:bd:dd:2f:0c:09:6d:
                    46:fe:c7:84:0a:2f:8f:00:44:c8:1e:5b:bf:86:fb:
                    63:ef:a8:11:16:d9:ca:34:12:c3:ed:6e:40:7a:a4:
                    c4:c6:d4:b2:11:7b:70:ab:4c:49:4a:74:5b:da:89:
                    74:eb:10:98:ee:e9:b0:d2:13:61:1c:a6:68:39:83:
                    7f:e5:a7:ad:ef:95:ca:9f:b0:a9:8a:49:4f:da:aa:
                    89:2a:0e:aa:c9:1d:2a:10:84:d0:b4:36:07:dc:25:
                    98:66:0a:56:ef:9c:47:9b:8a:1c:72:58:f5:9c:94:
                    c8:c2:f2:45:b1:45:66:28:c0:0a:61:1f:5b:49:68:
                    e5:4e:97:c6:9c:84:58:2b:80:95:34:e0:2a:e4:a8:
                    d0:3c:af:89:c2:cc:7d:01:ab:98:f2:f3:72:35:68:
                    b4:ab:a3:4e:91:1c:0f:49:54:6f:38:65:c2:53:23:
                    f3:92:41:85:e8:61:72:5e:15:28:79:4a:f0:50:0a:
                    01:de:e2:e0:4e:f1:d8:c8:62:2d:8e:e8:c2:bb:b8:
                    72:56:9c:5c:3b:a1:dd:8f:a4:5e:6e:b3:56:f3:19:
                    59:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:FF:FE:21:B4:52:B1:B2:52:E1:38:6F:26:CE:9B:5E:FF:7E:4F:62
            X509v3 Authority Key Identifier:
                keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:5d:1c:40:ca:2a:48:b2:f7:65:af:92:ef:09:06:3b:e7:9d:
         d3:9f:f1:2c:68:ae:e9:21:ee:b1:67:ea:c7:97:f9:b7:b1:35:
         9a:07:18:0b:30:f9:91:61:7f:b0:33:dd:9b:cf:ab:51:89:65:
         e9:9c:71:0e:bc:f6:2b:38:9f:80:5c:c0:12:d2:35:2a:c7:01:
         f8:f3:50:11:d4:4c:2c:30:c4:3e:ce:d3:97:d0:43:f5:f8:8c:
         3a:bc:ea:b4:3b:d9:c5:88:2d:8c:95:bc:1c:00:51:af:3d:1a:
         09:bb:c0:58:75:20:25:04:ef:88:2e:0b:69:fd:8f:51:81:ab:
         f3:54:b2:53:5c:4f:53:14:23:12:fc:06:40:f5:9b:e7:5a:7e:
         d2:70:d2:8b:5b:67:02:73:85:f1:df:fd:b8:a5:28:1c:02:6d:
         78:01:96:b7:3e:a9:c5:f9:a8:63:13:81:ce:2a:2e:c4:12:8e:
         5f:aa:c3:eb:05:7a:c5:e1:86:13:ea:83:50:36:0a:e1:24:e9:
         4e:53:4d:2e:71:ea:f8:0c:8d:a6:78:6d:d8:24:69:fb:f2:cd:
         2b:78:ab:ec:91:7a:77:cd:c9:dc:e2:23:48:ac:ed:4b:11:84:
         cb:5a:e2:1a:1b:d1:bd:0d:58:80:56:03:51:eb:34:f0:9e:55:
         b7:bc:67:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 04:00:46 2025 by rpki-client