Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft
File:                     9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft (raw, json)
Hash identifier:          BldmsBpbRDc0aNdlyTnjj0h67ObQnMpSHD9NHGjIOvo=
Subject key identifier:   1B:B8:A8:61:94:81:CE:38:7C:12:E7:58:E2:3E:FB:83:C9:32:2D:40
Authority key identifier: F6:25:D6:BF:CD:42:1B:D3:DB:97:C6:95:94:14:BC:70:94:6E:AB:C4
Certificate issuer:       /CN=A919834A/serialNumber=F625D6BFCD421BD3DB97C6959414BC70946EABC4
Certificate serial:       1A0B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft
Manifest number:          19CC
Signing time:             Sun 20 Jul 2025 16:25:31 +0000
Manifest this update:     Sun 20 Jul 2025 16:25:30 +0000
Manifest next update:     Sun 27 Jul 2025 16:25:30 +0000
Files and hashes:         1: 9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl (hash: lFK2uTrDZfVyMsHxVOKUCUCxHm/chtGlJeZL3YWLtZM=)
                          2: 48EE1EC6A80311EBA56CEC52C4F9AE02.roa (hash: c2CgFARH3NGyjJVcgLSdMDavs6AC8B7rRi2PB+rzCh4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl
                          rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 16:25:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6667 (0x1a0b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919834A, serialNumber=F625D6BFCD421BD3DB97C6959414BC70946EABC4
        Validity
            Not Before: Jul 20 16:25:30 2025 GMT
            Not After : Jul 27 16:25:30 2025 GMT
        Subject: CN=687d187a-eeea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:18:49:02:bc:11:6d:00:24:45:ae:4f:0a:1d:
                    14:a6:6b:88:08:19:fa:eb:ba:a8:82:8e:e3:f2:f7:
                    f9:dc:f5:f9:0e:98:27:2f:cc:28:2f:3c:d5:8e:59:
                    59:63:42:11:1e:bd:96:88:d1:55:80:98:04:00:d0:
                    df:14:b8:8e:67:d0:55:c9:19:06:1c:8b:6a:82:6e:
                    37:23:79:80:04:d3:3e:4c:6a:42:39:87:8f:8c:e1:
                    f2:fe:a7:5d:87:71:34:7b:4a:3c:bd:7b:e6:cb:99:
                    7b:95:d9:f3:ed:2b:a3:af:db:15:3f:33:2d:17:70:
                    cb:84:cb:53:f5:6f:49:c7:df:eb:e2:6d:4c:11:54:
                    b0:09:dc:81:47:5a:47:a0:2c:d6:2c:ce:00:d2:4e:
                    3c:40:f6:a9:55:c2:ff:25:06:92:43:c7:f5:df:db:
                    9e:d3:4f:87:d5:39:5f:8d:8b:20:eb:c1:82:8d:06:
                    a8:ae:f0:2e:09:c6:2d:2a:f7:6f:a1:ed:34:27:ba:
                    fb:d0:9f:26:7a:75:a1:e3:02:b6:28:e6:6c:84:1b:
                    ab:4a:d1:24:fb:7b:85:dd:88:77:19:ad:69:52:a3:
                    2b:fa:91:65:9a:40:c1:1a:22:70:58:fb:93:04:37:
                    e9:93:5a:62:7f:65:8a:dc:15:cd:6a:59:1a:bd:31:
                    84:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:B8:A8:61:94:81:CE:38:7C:12:E7:58:E2:3E:FB:83:C9:32:2D:40
            X509v3 Authority Key Identifier:
                keyid:F6:25:D6:BF:CD:42:1B:D3:DB:97:C6:95:94:14:BC:70:94:6E:AB:C4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:57:32:96:65:69:9a:d4:a4:a2:ce:91:cd:9c:a7:b2:92:bc:
         2b:01:a1:07:dc:5e:be:13:ba:3c:e6:08:80:6d:e5:07:06:fc:
         3c:9e:35:36:2c:a7:27:b0:d0:f9:e0:21:c1:eb:31:49:f0:5d:
         7e:31:65:23:c0:82:97:ab:72:8b:57:c5:f3:69:6f:01:5b:57:
         81:63:0f:0a:f8:01:77:bc:67:50:aa:42:08:aa:61:d0:17:47:
         09:62:77:89:b8:7b:b3:4d:a8:56:10:48:6c:9c:ed:86:7f:d4:
         43:72:15:3b:2c:ba:75:7a:84:e8:95:a5:4a:df:3b:20:e4:ea:
         82:8e:98:67:8e:12:42:b5:6c:40:91:2a:93:49:76:ae:6c:75:
         ee:a0:9b:b5:c8:9b:ed:eb:08:17:2f:69:66:06:4f:18:fc:2d:
         2c:09:8e:fa:84:cd:bc:76:2f:ff:95:a8:91:48:d0:eb:a1:47:
         9c:64:fa:9c:0e:1a:24:63:26:75:72:e7:0f:d1:67:98:9a:61:
         ee:0a:ec:38:2b:eb:27:39:e5:0a:1e:72:c8:c0:cc:2f:b4:e5:
         27:04:24:e3:8e:34:27:0f:6c:a2:07:84:9c:09:8d:39:3d:25:
         84:47:88:80:7f:8a:a9:71:8e:3d:5d:74:95:de:1c:a9:da:b2:
         fc:18:4b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 05:58:00 2025 by rpki-client