Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft
File:                     ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json)
Hash identifier:          mGb9eim2XtHAAXJsSzPCIDxIuhUckTOHUjZl5tAX1OM=
Subject key identifier:   E0:66:14:89:7E:A5:B9:8F:8A:25:EE:BC:BB:00:9B:65:37:94:C1:06
Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F
Certificate issuer:       /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F
Certificate serial:       0888
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft
Manifest number:          0881
Signing time:             Tue 22 Jul 2025 20:51:23 +0000
Manifest this update:     Tue 22 Jul 2025 20:51:23 +0000
Manifest next update:     Tue 29 Jul 2025 20:51:23 +0000
Files and hashes:         1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: A6JX99mYLj95dxmwM7UJ5wKN58CxzrsjpENliqGL6+4=)
                          2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: 3y+P8Wjw2NbNvaqBtjPXBVu0eGWr6eeBTOCTDHgw4uI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl
                          rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 20:51:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2184 (0x888)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919A285, serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F
        Validity
            Not Before: Jul 22 20:51:23 2025 GMT
            Not After : Jul 29 20:51:23 2025 GMT
        Subject: CN=687ff9cb-4418
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:c4:c8:04:9e:5d:a6:e0:be:f3:32:38:29:a9:
                    eb:14:7b:fe:05:91:2d:81:b9:0f:18:ff:96:83:26:
                    63:8d:f5:c2:fb:f7:ac:c2:8d:aa:30:f8:2d:35:a1:
                    15:46:16:96:ac:30:01:9f:3c:12:6f:25:04:f7:98:
                    c8:cc:d8:06:5b:8b:c8:2a:5e:6d:d5:d8:a0:a8:c7:
                    c4:13:af:59:bc:fe:a2:e6:a8:9f:79:0b:d5:45:54:
                    f8:be:fa:de:45:e5:aa:2a:b2:a8:9b:9a:9b:af:03:
                    20:9e:bd:d5:8f:cb:ae:0b:06:e4:ba:c1:92:df:3d:
                    23:9b:2a:98:16:bf:6e:d4:94:d3:3d:82:2e:3a:77:
                    5a:ea:0d:50:f5:94:fb:6e:ab:1d:16:59:fc:a9:12:
                    34:b2:c0:9d:3f:f4:a0:3d:c8:9a:4c:ec:23:0c:b5:
                    f7:62:37:d2:e4:73:f5:d5:7b:40:03:cb:01:56:d6:
                    8b:63:00:98:ec:8d:cb:5b:fd:0a:1b:54:78:c2:c8:
                    a7:53:51:f1:75:a0:e2:6c:a2:1a:2f:bd:75:f2:b3:
                    db:fa:f3:f7:f5:91:08:ca:7e:2f:0f:64:15:2c:49:
                    de:1a:6c:da:00:4f:0d:52:ce:57:7f:d6:53:8f:70:
                    cb:b0:f8:7b:bb:c9:26:bd:40:ac:98:20:71:ba:6d:
                    fe:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:66:14:89:7E:A5:B9:8F:8A:25:EE:BC:BB:00:9B:65:37:94:C1:06
            X509v3 Authority Key Identifier:
                keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:53:23:d4:bb:71:a7:ad:1d:a5:c6:7e:3b:30:72:cf:2e:39:
         36:a0:25:b4:fa:03:5a:4c:af:ae:34:14:86:fa:81:8b:12:4e:
         92:62:1f:0f:67:a3:1c:77:52:25:d5:86:c2:da:a7:3f:12:0e:
         8b:ae:1c:22:27:bf:2b:1c:ba:85:1f:6b:3e:71:d4:be:4a:8a:
         96:c3:3a:36:a7:ad:5b:13:e5:dc:21:b6:e4:37:bd:a2:10:8f:
         62:66:59:84:37:8d:96:12:de:a3:85:21:ef:01:99:d8:47:ee:
         42:6b:9f:a3:ff:6e:d1:55:f0:aa:5a:4d:7b:71:74:1f:24:35:
         74:71:00:01:11:86:4f:a1:24:cb:27:37:b1:10:b3:17:f3:cc:
         bf:e6:78:74:4e:39:cf:75:02:bd:f4:1e:e8:e0:ce:f6:1d:33:
         d4:99:0b:95:f8:99:8d:94:95:97:e9:c4:fa:e5:f5:87:a1:07:
         e2:bf:99:b5:5d:03:55:2a:43:9c:f0:79:1b:4d:88:4d:16:e8:
         17:2b:ad:fe:9c:2e:05:03:cc:7e:ec:6f:87:a6:bc:30:e2:a4:
         3e:27:9f:90:34:59:2f:07:da:52:42:c8:b8:11:28:67:ab:80:
         f6:5d:ba:8c:1d:3e:51:bc:68:1d:f8:18:1d:1c:25:6b:d8:09:
         93:85:0c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:06:59 2025 by rpki-client