Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft
File:                     _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json)
Hash identifier:          gSC+oNBIZcxRwPy/5rdqLg5YBmZB5xfLeGOMTCeJDgA=
Subject key identifier:   0D:8E:D9:BA:23:7A:23:71:C1:F9:8A:D6:1D:74:33:92:DD:44:C8:DE
Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5
Certificate issuer:       /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5
Certificate serial:       0B32
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft
Manifest number:          0B2B
Signing time:             Thu 24 Jul 2025 19:21:13 +0000
Manifest this update:     Thu 24 Jul 2025 19:21:13 +0000
Manifest next update:     Thu 31 Jul 2025 19:21:13 +0000
Files and hashes:         1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: +W1QLeAiY5JNnC+sSUaWxs8eS011BhsmwCYV7IuNnBE=)
                          2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl
                          rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 19:21:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2866 (0xb32)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5
        Validity
            Not Before: Jul 24 19:21:13 2025 GMT
            Not After : Jul 31 19:21:13 2025 GMT
        Subject: CN=688287a9-5828
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:f1:98:dd:50:91:b1:f9:f0:f3:32:9e:a6:97:
                    61:76:66:64:16:33:2a:2f:43:41:3b:fd:67:fb:6d:
                    9b:d2:50:f4:f0:4e:d0:00:e5:89:b8:0f:b6:77:e2:
                    13:b6:a3:4c:1b:f0:3b:52:31:fa:7f:59:56:c4:77:
                    73:b2:a3:d5:13:e5:51:cb:9e:b4:c8:a3:dd:16:cb:
                    bd:36:46:21:e7:ed:e2:98:88:1f:dd:66:99:98:f3:
                    a2:14:b1:67:81:ee:37:12:d6:8e:5f:a8:56:b1:49:
                    79:16:c6:c6:30:ed:69:6b:7f:13:9a:fb:b6:ba:6e:
                    c3:50:e3:69:65:1c:96:a8:0d:99:66:1c:05:4b:f8:
                    da:64:67:85:8f:ab:9e:b5:cf:0d:a0:8b:21:c3:31:
                    62:49:98:33:b8:0f:ae:53:93:4b:c6:af:d6:c8:6d:
                    bb:7b:6d:4f:0a:07:c8:53:0e:ce:40:cb:1b:d4:c1:
                    8a:bf:e1:f4:01:be:db:3e:e1:1f:a7:6e:d1:17:e7:
                    f3:27:34:c5:9c:4f:af:b8:c9:38:9f:d9:25:29:66:
                    49:0a:8a:37:24:2e:a4:d4:60:76:da:24:21:31:39:
                    00:2c:22:e1:77:44:7b:da:ff:7f:05:27:86:00:9d:
                    27:d1:88:39:c5:36:f1:fd:eb:ba:99:ab:a2:5d:7d:
                    39:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:8E:D9:BA:23:7A:23:71:C1:F9:8A:D6:1D:74:33:92:DD:44:C8:DE
            X509v3 Authority Key Identifier:
                keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:55:05:d8:93:33:e1:90:52:0e:02:bb:46:f4:c9:6f:60:9c:
         db:27:cc:a0:3f:72:96:2d:06:c7:f9:e8:d5:b7:af:53:59:5d:
         6e:23:39:62:57:a2:d7:ff:d6:aa:77:ba:66:fb:71:64:1c:a4:
         75:ca:20:e4:66:de:7d:a2:a2:8f:2f:4c:85:48:1b:15:04:7b:
         2e:9f:d1:1b:90:75:5b:2d:3c:cf:b0:19:5d:d2:77:b4:b0:e5:
         5b:55:15:d7:ce:ae:d1:f1:ef:e6:03:41:73:7c:37:7e:da:0b:
         b0:f8:fd:41:44:99:64:ae:02:07:24:ec:a2:f0:73:d4:90:a6:
         d1:29:54:0e:63:c7:ee:d0:e2:88:f2:b1:84:1f:c4:6d:e3:8b:
         9e:7f:16:bb:55:cf:b2:93:c0:36:d2:a8:02:42:29:ec:f2:bc:
         3c:83:36:14:7a:d9:b6:91:5a:a4:9f:83:f7:c2:2f:86:dd:b1:
         6a:f9:61:b0:24:35:f6:2b:40:67:06:0c:b9:c3:ae:1d:01:b6:
         11:2a:da:59:eb:96:33:04:a7:2f:3e:18:ca:78:bc:85:7a:7c:
         df:ed:d8:8b:fb:02:3d:37:8e:7c:e3:b6:d2:a9:2b:12:67:3f:
         47:d7:f2:67:43:ef:fc:f4:00:4e:57:34:a6:17:60:77:5c:6b:
         a1:ba:35:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:09:21 2025 by rpki-client