Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
File:                     Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json)
Hash identifier:          yoKa0kZo4H0P6whlz8pAicUI7vXooYF98d0d6qOj4Fo=
Subject key identifier:   07:22:D6:7F:5D:7E:DA:B0:28:5A:24:CC:0C:86:7A:96:19:1B:A6:9E
Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47
Certificate issuer:       /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847
Certificate serial:       02E3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
Manifest number:          02E1
Signing time:             Fri 25 Jul 2025 01:43:52 +0000
Manifest this update:     Fri 25 Jul 2025 01:43:51 +0000
Manifest next update:     Fri 01 Aug 2025 01:43:51 +0000
Files and hashes:         1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: 7ROz0HYBgYf0/TmWUgt5nl6JYHsMbvmZ+2HThFDXuy0=)
                          2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl
                          rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 23:53:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 739 (0x2e3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847
        Validity
            Not Before: Jul 25 01:43:51 2025 GMT
            Not After : Aug  1 01:43:51 2025 GMT
        Subject: CN=6882e157-25ba
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:82:40:87:fe:2c:57:a9:27:06:f8:2a:fa:d1:
                    f1:2e:a2:2b:eb:a5:64:41:27:f3:5a:ae:af:02:94:
                    37:0b:d7:67:67:57:8d:00:45:35:88:ce:20:f6:d3:
                    a2:eb:d7:07:36:6e:c0:0f:da:b6:09:d8:7c:e5:07:
                    63:b1:e9:bf:d2:1e:04:ef:1e:20:13:cc:68:df:23:
                    54:e1:e6:d8:22:79:44:23:b1:4c:1a:d5:f0:71:fc:
                    d6:68:74:14:8e:bb:63:3a:1e:be:7c:89:88:9d:3c:
                    aa:d3:53:c5:e7:fa:fd:91:4c:85:63:ab:e9:dc:f1:
                    8c:37:50:80:3f:c6:33:a8:52:6f:3d:6b:a6:90:6e:
                    7c:b2:75:72:b0:12:34:ea:6f:13:ca:04:90:c0:44:
                    cd:0f:fb:f2:44:d1:2f:ad:c2:5e:a6:b7:7a:8c:41:
                    e7:d5:bd:7e:80:e6:d3:93:0b:e2:83:25:bf:b1:a4:
                    0c:5e:96:33:6a:d9:1b:50:21:1e:5e:20:61:c0:5a:
                    45:b9:67:d9:cb:c6:6a:95:f2:51:87:85:0a:05:69:
                    7f:21:52:8b:46:56:9c:c5:85:77:7b:06:2d:b6:b4:
                    29:7e:20:26:91:e1:a9:fd:64:63:0b:4e:a3:08:7e:
                    56:ad:7f:a0:1e:46:b4:c3:a8:98:df:57:5a:6c:a3:
                    8f:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:22:D6:7F:5D:7E:DA:B0:28:5A:24:CC:0C:86:7A:96:19:1B:A6:9E
            X509v3 Authority Key Identifier:
                keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:37:80:61:ff:8b:85:69:89:ba:c0:25:2f:49:bf:34:99:0c:
         98:02:65:62:2b:5f:4d:57:2f:a6:b8:eb:f9:12:a7:05:1c:cb:
         1d:05:dd:79:ab:dd:72:52:d6:51:fd:89:91:88:d8:50:f8:6a:
         0f:8b:98:d5:df:98:f8:10:ca:af:ee:89:80:ae:06:53:b7:d0:
         68:40:ad:03:db:e6:f5:74:c8:70:a5:af:b5:af:1e:34:05:6f:
         4e:f4:95:af:0d:8e:d6:40:44:75:d3:c2:af:65:32:53:d0:87:
         17:4c:7a:9d:82:7b:1e:70:47:5f:9a:a6:70:3a:c0:52:46:79:
         3f:4e:ae:b8:e0:8e:1f:58:a2:96:a3:26:6f:08:e1:63:d5:e7:
         f0:fc:86:47:f9:6b:14:38:71:c6:f9:f1:85:6c:cd:ef:9f:d5:
         2b:17:56:39:b0:09:4d:ef:6a:c9:e3:72:99:d0:a9:5d:6e:fd:
         e6:8c:05:29:66:7d:b5:a2:59:42:1d:1e:54:02:c3:68:6e:b4:
         f7:ce:01:c8:68:fd:db:2b:3e:46:16:c1:7f:c2:7c:f1:cf:0e:
         7f:c9:65:6e:22:4d:ab:e7:4e:67:70:52:92:fc:c4:b2:cf:fb:
         e5:0c:91:9e:c4:1c:e6:ec:e0:2b:b7:66:e8:dd:2b:15:44:a6:
         f8:08:0b:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 04:05:57 2025 by rpki-client